Flexible WLAN access point architecture capable of accommodating different user devices
DCFirst Claim
1. A method for controlling user terminal access to a wireless local area network, comprising the steps of:
- receiving from a user terminal a request to access the wireless local area network;
transmitting to the user terminal an identity request message;
receiving from the user terminal a response to the identity request message;
determining whether the user terminal is IEEE 802.1x compliant in response to the response to the identity request message;
selecting an authenticating mechanism utilizing IEEE 802.1x if said user terminal is IEEE 802.1x compliant;
selecting an authentication mechanism, compatible with the user terminal, in response to a determination that the user terminal is not IEEE 802.1x compliant, for allowing user terminal access to the wireless local area network; and
if the user terminal is not IEEE 802.1x compliant, redirecting an authentication request to an HTTP server for utilizing a browser based authentication protocol.
3 Assignments
Litigations
0 Petitions
Accused Products
Abstract
The invention provides an apparatus and a method for improving the control of access by a terminal device in a WLAN environment having an access point for determining whether the device utilizes an IEEE 802.1x protocol by the access point communicating to the device, a packet, whereby if the devices utilizes a IEEE 802.1x protocol the device appropriately responds and otherwise the access point determines that the terminal device protocol does not employ a IEEE 802.1x protocol and selects an authentication mechanism compatible with the terminal device. If the device is not an IEEE 802.1x client, an IP packet filtering is configured to redirect a user HTTP request to a local server, and when the HTTP requests are thereby redirected, the HTTP server presents the terminal device with information specifically related to the browser based authentication.
58 Citations
20 Claims
-
1. A method for controlling user terminal access to a wireless local area network, comprising the steps of:
-
receiving from a user terminal a request to access the wireless local area network; transmitting to the user terminal an identity request message; receiving from the user terminal a response to the identity request message; determining whether the user terminal is IEEE 802.1x compliant in response to the response to the identity request message; selecting an authenticating mechanism utilizing IEEE 802.1x if said user terminal is IEEE 802.1x compliant; selecting an authentication mechanism, compatible with the user terminal, in response to a determination that the user terminal is not IEEE 802.1x compliant, for allowing user terminal access to the wireless local area network; and if the user terminal is not IEEE 802.1x compliant, redirecting an authentication request to an HTTP server for utilizing a browser based authentication protocol. - View Dependent Claims (2, 3, 4, 5)
-
-
6. An access point in communication with a user terminal in a wireless local area network, comprising:
-
means to determine if the user terminal utilizes an IEEE 802.1x protocol; means for employing the IEEE 802.1x. protocol in said access point, if said user terminal utilizes the IEEE 802.1x. protocol; and
,means for employing an authentication means compatible with the user terminal if the user terminal employs a protocol other than the IEEE 802.1x protocol; wherein the means to determine includes means for communicating to the user terminal a Request-Identity extensible authentication protocol packet and if the user terminal utilizes the IEEE 802.1x protocol the access point receives a Response-Identity extensible authentication protocol packet. - View Dependent Claims (7, 8)
-
-
9. A method for controlling access by a user terminal in a wireless local area network by determining whether the user terminal utilizes an IEEE 802.1x protocol comprising the steps of:
-
an access point communicating to the user terminal a request to identify, and if the user terminal utilizes an IEEE 802.1x protocol, acknowledging the request to identify, otherwise the access point determining that the user terminal is not IEEE 802.1x compliant and selecting an authentication mechanism compatible with the user terminal; wherein the access point determines that the user terminal is not IEEE 802.1x compliant when it does not receive an extensible authentication protocol identity response packet after a timeout value. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method for controlling access of a user terminal in a wireless local area network by determining whether the user terminal utilizes an IEEE 802.1x protocol, comprising the steps of:
communicating through an access point to the user terminal a request to identify, and if the user terminal utilizes an IEEE 802.1x protocol, acknowledging the request to identify, otherwise determining by the access point that the user terminal is not IEEE 802.1x compliant, selecting an authentication mechanism compatible with the user terminal, detecting in the access point if the user terminal is not IEEE 802.1x compliant, then configuring an internet protocol packet filter means, and redirecting a user request to a local server. - View Dependent Claims (16, 17, 18, 19, 20)
Specification