Provisioning a network appliance
First Claim
Patent Images
1. A computer implemented method, comprising:
- receiving a user login at a network appliance; and
initializing the network appliance without user input in response to receiving the user login, the initializing comprising;
determining that the network appliance is not initialized;
generating a provisionally unique identifier from the network appliance for identifying the network appliance;
generating, by the network appliance, a digital certificate signing request (CSR);
sending a message to a service provider, the message comprising the CSR, the provisionally unique identifier, time information associated with the CSR and information about the user login;
receiving a signed certificate from the service provider at the network appliance, wherein the signed certificate was generated in response to the message having been evaluated to determine whether the provisionally unique identifier is unique to the service provider and whether the time information indicates that the message was received within a predetermined time period; and
initializing the network appliance using the received signed certificate.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and system for generating identity certificates. The method may include receiving a user login at a network appliance, determining that the network appliance is not initialized, and generating a provisionally unique identifier from the network appliance for identifying the network appliance. The method may include generating a certificate signing request (CSR) and sending the CSR, the provisionally unique identifier, and information about the user login to a service provider. Upon receiving a signed certificate from the service provider at the network appliance, the network appliance is initialized using the received signed certificate.
-
Citations
18 Claims
-
1. A computer implemented method, comprising:
-
receiving a user login at a network appliance; and initializing the network appliance without user input in response to receiving the user login, the initializing comprising; determining that the network appliance is not initialized; generating a provisionally unique identifier from the network appliance for identifying the network appliance; generating, by the network appliance, a digital certificate signing request (CSR); sending a message to a service provider, the message comprising the CSR, the provisionally unique identifier, time information associated with the CSR and information about the user login; receiving a signed certificate from the service provider at the network appliance, wherein the signed certificate was generated in response to the message having been evaluated to determine whether the provisionally unique identifier is unique to the service provider and whether the time information indicates that the message was received within a predetermined time period; and initializing the network appliance using the received signed certificate. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer implemented method, comprising:
-
receiving a user login at a network appliance; and initializing the network appliance without user input in response to receiving the user login, the initializing comprising; determining whether the network appliance comprises a signed certificate from a service provider; if the network appliance does not have a signed certificate, generating a digital certificate signing request (CSR) by the network appliance that includes a provisionally unique identifier for identifying the network appliance; sending a message to a service provider, the message comprising the CSR, time information associated with the CSR and the provisionally unique identifier, to determine whether the network appliance is to be activated; and in response to receiving a signed certificate, initializing the network appliance, wherein the signed certificate was generated in response to the message having been evaluated to determine whether the provisionally unique identifier is unique to the service provider and whether the time information indicates that the message was received within a predetermined time period. - View Dependent Claims (7, 8, 9)
-
-
10. A non-transitory machine-accessible medium including instructions that, when executed by a network appliance, cause the network appliance to perform a computer implemented method comprising:
initializing the network appliance without user input in response to receiving a user login at the network appliance, the initializing comprising; determining that the network appliance is not initialized; generating a provisionally unique identifier by the network appliance for identifying the network appliance; generating a certificate signing request (CSR) by the network appliance; sending a message to a service provider, the message comprising the CSR, time information associated with the CSR and the provisionally unique identifier; receiving a signed certificate from the service provider at the network appliance, wherein the signed certificate was generated in response to the message having been evaluated to determine whether the provisionally unique identifier is unique to the service provider and whether the time information indicates that the message was received within a predetermined time period; and initializing the network appliance using the received signed certificate. - View Dependent Claims (11, 12, 13, 14, 15)
-
16. A computing system, comprising:
-
a network appliance, to receive a user login, to determine whether a signed certificate exists on the network appliance, and if not, to automatically initialize the network appliance, wherein to automatically initialize the network appliance, the network appliance generates a provisionally unique identifier of the network appliance to be transmitted to a service provider; and the service provider networked with the network appliance, to receive a certificate signing request (CSR) from the network appliance, the certificate signing request including the provisionally unique identifier and time information associated with the CSR, and to sign a certificate for the network appliance if login credentials from the user login are recognized, the provisionally unique identifier is unique to the service provider, and the time information indicates that the CSR was received within a predetermined time period. - View Dependent Claims (17, 18)
-
Specification