Provisioning a network appliance
First Claim
Patent Images
1. A computer implemented method, comprising:
- determining that a network appliance is not initialized; and
initializing the network appliance without user input, the initializing comprising;
logging on to a server;
receiving from the server a unique identifier at the network appliance for identifying the network appliance;
generating a digital certificate signing request (CSR) by the network appliance;
sending the CSR and the unique identifier to the server with a timestamp;
receiving a signed certificate from the server at the network appliance, wherein the signed certificate was generated by the server in response to the server evaluating the CSR to determine that the timestamp has not expired and to verify a location of the network appliance, the location including an IP address; and
initializing the network appliance using the received signed certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for generating identity certificates. The method may include receiving a user login at a network appliance, determining that the network appliance is not initialized, and requesting and receiving a unique identifier from a service provider, where the unique identifier is used for identifying the network appliance. The method may include generating a certificate signing request (CSR) and sending the CSR with the unique identifier to the service provider. Upon receiving a signed certificate from the service provider at the network appliance, the network appliance is initialized using the received signed certificate.
45 Citations
19 Claims
-
1. A computer implemented method, comprising:
-
determining that a network appliance is not initialized; and initializing the network appliance without user input, the initializing comprising; logging on to a server; receiving from the server a unique identifier at the network appliance for identifying the network appliance; generating a digital certificate signing request (CSR) by the network appliance; sending the CSR and the unique identifier to the server with a timestamp; receiving a signed certificate from the server at the network appliance, wherein the signed certificate was generated by the server in response to the server evaluating the CSR to determine that the timestamp has not expired and to verify a location of the network appliance, the location including an IP address; and initializing the network appliance using the received signed certificate. - View Dependent Claims (2, 3, 4)
-
-
5. A computer implemented method, comprising:
-
determining whether a network appliance possesses a signed certificate from a service provider; and initializing the network appliance without user input, the initializing comprising; if the network appliance does not have a signed certificate, logging into the service provider using login credentials and requesting activation, and in response, receiving from the service provider, at the network appliance, a unique identifier for identifying the network appliance; generating a digital certificate signing request (CSR) by the network appliance that includes the received unique identifier and that further includes time information; sending the CSR, the time information and the unique identifier to the service provider to determine whether the network appliance is to be activated; and in response to receiving a signed certificate, initializing the network appliance, wherein the signed certificate was generated by the service provider in response to the service provider evaluating the CSR to determine that the time information shows that the CSR was timely received and to verify a location of the network appliance, the location including an IP address. - View Dependent Claims (6, 7, 8, 9)
-
-
10. A non-transitory machine-accessible medium including instructions that, when executed by a first machine, cause the first machine to perform a computer implemented method comprising:
-
determining that a network appliance is not initialized; and initializing the network appliance without user input, the initializing comprising; requesting and receiving a unique identifier from a service provider for identifying the network appliance; generating a certificate signing request (CSR); sending the CSR, a timestamp and the received unique identifier to the service provider; receiving a signed certificate from the service provider at the network appliance, wherein the signed certificate was generated by the service provider in response to the service provider evaluating the CSR to determine that the timestamp has not expired and to verify a location of the network appliance, the location including an IP address; and initializing the network appliance using the received signed certificate. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A computing system, comprising:
-
a data store to store a signed certificate of a network appliance; and a processing device, coupled to the data store, wherein the processing device is configured to; receive a user login for the network appliance; receive credentials for logging on to a service provider; determine whether the signed certificate exists on the network appliance; and obtain the signed certificate without user input, the obtaining comprising; in response to determining that the signed certificate does not exist on the network appliance, requesting and receiving a unique identifier from the service provider, generating a certificate signing request (CSR), sending the CSR and the unique identifier to the service provider with time information, and receiving the signed certificate from the service provider, wherein the signed certificate was generated by the service provider in response to the service provider evaluating the CSR to determine that the time information shows that the CSR was timely received and to verify a location of the network appliance, the location including an IP address. - View Dependent Claims (17, 18, 19)
-
Specification