Client-side network access policies and management applications
First Claim
1. A remote access client for enabling communication between a remote data terminal configured to access a public network;
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the remote access client comprising;
a connection agent on the remote data terminal configured to establish, in accordance with a selected carrier of the public network, a connection to a point of presence on the public network; and
at least one application program interface (API) on the remote data terminal, the remote access client employing the at least one API to exchange data with a predetermined application on the remote data terminal to receive verification of a predetermined status of said predetermined application, wherein said predetermined application is launched by the remote access client in accordance with a client policy of the remote access client, the remote access client enabling the connection agent to establish the connection to the point of presence upon receipt of said verification;
wherein the connection to the point of presence enables establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network.
14 Assignments
0 Petitions
Accused Products
Abstract
A remote access client is provided for enabling communication between a remote data terminal configured to access a public network, and an enterprise network by way of a VPN tunnel through the public network. The remote access client includes at least one application program interface (API) to receive a first verification of the operating state of a predetermined application of the remote data terminal to enable a connection agent for establishing a point of presence on the public network. Upon connection to the point of presence, the API exchanges data between the remote access client and the predetermined application of the remote data terminal. The remote access client receives a second periodic verification of the operating state of the predetermined application via the API for terminating the connection to the point of presence upon the absence of the second verification. The point of presence enables the VPN tunnel for transporting data from the remote data terminal to the enterprise network across the public network.
-
Citations
21 Claims
-
1. A remote access client for enabling communication between a remote data terminal configured to access a public network;
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the remote access client comprising;
a connection agent on the remote data terminal configured to establish, in accordance with a selected carrier of the public network, a connection to a point of presence on the public network; and at least one application program interface (API) on the remote data terminal, the remote access client employing the at least one API to exchange data with a predetermined application on the remote data terminal to receive verification of a predetermined status of said predetermined application, wherein said predetermined application is launched by the remote access client in accordance with a client policy of the remote access client, the remote access client enabling the connection agent to establish the connection to the point of presence upon receipt of said verification; wherein the connection to the point of presence enables establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network. - View Dependent Claims (2, 3)
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the remote access client comprising;
-
4. A remote access client for enabling communication between a remote data terminal configured to access a public network;
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the remote access client comprising;
a connection agent on the remote data terminal configured to establish, in accordance with a selected carrier of the public network, a connection to a point of presence on the public network; and at least one application program interface (API) on the remote data terminal, the remote access client employing the at least one API to exchange data with a predetermined application of the remote data terminal upon connection to the point of presence, the predetermined application having been launched by the remote access client prior to the connection to the point of presence in accordance with a client policy of the remote access client, and the at least one API receiving periodic verification of a predetermined status of the predetermined application; wherein the connection to the point of presence enables establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network and wherein the connection agent terminates the connection to the point of presence upon the absence of said verification. - View Dependent Claims (5, 6, 7)
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the remote access client comprising;
-
8. A method of enabling communication between a remote data terminal configured to access a public network;
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the method comprising;
launching a remote access client of the remote data terminal, the remote access client having at least one application program interface (API); launching a predetermined application of the remote data terminal in accordance with a client policy of the remote access client, the remote access client employing the at least one API to exchange data with the predetermined application to receive verification of a predetermined status of the predetermined application; and enabling a connection agent to establish a connection to a point of presence upon receipt of said verification; wherein the connection to the point of presence enables establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network. - View Dependent Claims (9)
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the method comprising;
-
10. A method of enabling communication between a remote data terminal configured to access a public network;
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the method comprising;
launching a remote access client of the remote data terminal, the remote access client having at least one application program interface (API); launching a predetermined application of the remote data terminal in accordance with a client policy of the remote access client, the remote access client employing the at least one API to receive a first verification of a first predetermined status of the predetermined application and to exchange data with the predetermined application; enabling a connection agent to establish a connection to the point of presence upon receipt of said first verification, the connection to the point of presence enabling establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network; periodically receiving a second verification of a second predetermined status of the predetermined application via the at least one API; and terminating the connection to the point of presence upon the absence of said second verification.
- and an enterprise network, the communication being by way of a VPN tunnel through the public network, the method comprising;
-
11. A non-transitory computer readable recording medium including computer program instructions that cause a computer to implement a method to access a public network;
- and an enterprise network by way of a VPN tunnel through the public network, the method comprising;
launching a remote access client of the remote data terminal, the remote access client having at least one application program interface (API); launching a predetermined application of the remote data terminal in accordance with a client policy of the remote access client, the remote access client employing the at least one API to receive a first verification of a first predetermined status of the predetermined application and to exchange data with the predetermined application; enabling a connection agent to establish a connection to a point of presence upon receipt of said first verification, the connection to the point of presence enabling establishment of the VPN tunnel in accordance with a VPN client on the remote data terminal for transporting data between the remote data terminal and the enterprise network across the public network; periodically receiving a second verification of the a second predetermined status operating state of the predetermined application via the at least one API; and terminating the connection to the point of presence upon the absence of said second verification.
- and an enterprise network by way of a VPN tunnel through the public network, the method comprising;
-
12. A virtual private network system for accessing a public network;
- and an enterprise network by way of a VPN tunnel through the public network, the system comprising;
a remote data terminal including; i. a remote access client for enabling establishment of a data communications link for transporting data over a VPN link in accordance with a VPN protocol of a VPN client on the remote data terminal, the remote access client having a connection agent for establishing, in accordance with a selected carrier of the public network, a connection to a point of presence on the public network, and at least one application program interface (API), the remote access client employing the at least one API to exchange data with a predetermined application of the remote data terminal to receive a verification of a predetermined status of said predetermined application, the remote access client enabling the connection agent to establish the connection to the point of presence upon receipt of said verification, ii. a policy profile for identifying the predetermined application and the predetermined status, the predetermined application being launched by the remote access client in accordance with a policy in the policy profile, and iii. a user experience log for storing at least one connection parameter detailing a connection history between the remote data terminal and a point of presence of an access provider, the connection to the point of presence being established in response to commands from the connection agent for providing the connection upon receipt of said verification, the access provider receiving the contents of the user experience log from the remote data terminal upon connection; wherein the connection to the point of presence enables establishment of the VPN tunnel in accordance with the VPN client for transporting data between the remote data terminal to and the enterprise network across the public network. - View Dependent Claims (13, 14, 15, 16)
- and an enterprise network by way of a VPN tunnel through the public network, the system comprising;
-
17. A method of providing access to an enterprise network by way of a public network, for enabling a virtual private network connection between the private network and a remote data terminal via the public network, comprising:
-
providing an application suite to a remote user of the remote data terminal, the application suite including; i. a remote access client configuring a VPN link between the enterprise network and the remote data terminal in accordance with a VPN client on the remote data terminal, ii. at least one policy-compliant application, iii. at least one application program interface (API) for use by the remote access client to exchange data with the at least one policy-compliant application to receive verification of a predetermined status of the at least one policy-compliant application, and iv. a phone book including contact indicia for establishing connection to the public network via the remote access client, wherein a policy profile of the remote data terminal is employed for detailing the cooperative execution of the at least one policy-compliant application relative to the remote access client, the at least one policy-compliant application being launched by the remote access client and the predetermined status of the at least one policy-complaint application being verified before establishment of the connection to the public network. - View Dependent Claims (18, 19, 20, 21)
-
Specification