Methods systems and articles of manufacture for implementing user access to remote resources
First Claim
1. A computer implemented method for implementing user access to a remote resource, comprising:
- receiving, at a first computer, a request from a user computing device through a first network to access the remote resource, wherein the remote resource resides on a second computer accessible by the first computer through a second network;
performing, at the first computer, automatic logon for the user using stored user credentials, performing automatic logon comprising;
identifying or creating a new session between the first computer and the second computer, andcausing the user to be authenticated or authorized to the second computer via the new session utilizing an aggregation process, causing the user to be authenticated or authorized comprising;
invoking the aggregation process on the first computer,using the aggregation process to retrieve or identify a user credential stored and accessible by the first computer, andtransmitting the user credential to the second computer for authenticating or authorizing the user on the second computer, wherein the stored user credentials authenticate or authorize the user to access the remote resource on the second computer when the user uses the stored user credentials to separately log onto the second computer, the new session between the first computer and the second computer through the second network is identified or created without using a single-sign-on mechanism in which one or more tickets are passed between the first computer and the second computer to service the remote resource to the user, and authentication of the user on the first computer grants the user access to the remote resource on the second computer; and
enabling, by the first computer, the user to access the remote resource by using the new session.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems, and articles of manufacture for implementing user access to remote resources residing on an external domain. Various implementations include authenticating and authorizing a user on a first system and receiving user request to access remote resources. The first system invokes processes or modules to initiate a new session to perform auto logon on behalf of the user on a second system by using stored user'"'"'s credentials and subdomain delegation techniques without user intervention. The second system authenticates and authorizes this new session to allow user access to remote resources residing thereupon. The first system further prepares the user'"'"'s system to take over the new session by setting cookie(s) and also by redirecting the URL so the user may continue to use the new session to access the desired remote resources residing on the second system.
-
Citations
25 Claims
-
1. A computer implemented method for implementing user access to a remote resource, comprising:
-
receiving, at a first computer, a request from a user computing device through a first network to access the remote resource, wherein the remote resource resides on a second computer accessible by the first computer through a second network; performing, at the first computer, automatic logon for the user using stored user credentials, performing automatic logon comprising; identifying or creating a new session between the first computer and the second computer, and causing the user to be authenticated or authorized to the second computer via the new session utilizing an aggregation process, causing the user to be authenticated or authorized comprising; invoking the aggregation process on the first computer, using the aggregation process to retrieve or identify a user credential stored and accessible by the first computer, and transmitting the user credential to the second computer for authenticating or authorizing the user on the second computer, wherein the stored user credentials authenticate or authorize the user to access the remote resource on the second computer when the user uses the stored user credentials to separately log onto the second computer, the new session between the first computer and the second computer through the second network is identified or created without using a single-sign-on mechanism in which one or more tickets are passed between the first computer and the second computer to service the remote resource to the user, and authentication of the user on the first computer grants the user access to the remote resource on the second computer; and enabling, by the first computer, the user to access the remote resource by using the new session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A system for implementing user access to a remote resource, comprising a first computer that communicates with a user through a first network and is configured to at least
receive at the first computer, a request from the user through the first network to access the remote resource, wherein the remote resource resides on a second computer accessible by the first computer through a second network, perform, at the first computer, automatic logon for the user using stored user credentials, which authenticate or authorize the user to access the remote resource on the second computer when the user uses the stored user credentials to separately log onto the second computer, and a new session between the first computer and the second computer through the second network without using a single-sign-on mechanism in which one or more tickets are passed between the first computer and the second computer to service the remote resource to the user, and authentication of the user on the first computer grants the user access to the remote resource on the second computer, and enable, by the first computer, the user to access the remote resource by using the new session, the first computer being further configured to identify or create the new session between the first computer and the second computer, cause the user to be authenticated or authorized to the second computer via the new session by using an aggregation process, invoke the aggregation process on the first computer, use the aggregation process to retrieve or identify a user credential that is stored and accessible by the first computer, transmit the user credential to the second computer for authenticating or authorizing the user on the second computer, cause a sub domain delegation for a sub domain of a parent domain to be created on the second computer hosting the remote resource, wherein the first computer that is configured to cause the subdomain delegation to be created is further configured to: - create or configure a zone and domain name server records for the sub domain of the parent domain; and
create or configure a third system for the zone and the domain name server records for the sub domain of the parent domain. - View Dependent Claims (19, 20, 21)
- create or configure a zone and domain name server records for the sub domain of the parent domain; and
-
22. An article of manufacture comprising a non-transitory computer accessible storage medium having one or more instructions which, when executed by at least one processor, cause the at least one processor to perform a process for implementing user access to a remote resource, the process comprising:
- receiving, at the first computer, a request from a user through a first network to access the remote resource, wherein the remote resource resides on a second computer accessible by the first computer through a second network, performing, at the first computer, automatic logon for the user using stored user credentials, which authenticate or authorize the user to access the remote resource on the second computer when the user uses the stored user credentials to separately log onto the second computer, and a new session between the first computer and the second computer through the second network without using a single-sign-on mechanism in which one or more tickets are passed between the first computer and the second computer to service the remote resource to the user, and authentication of the user on the first computer grants the user access to the remote resource on the second computer, and enabling, by the first computer, the user to access the remote resource by using the new session, the action of performing the automatic logon for the user further comprising;
identifying or creating the new session between the first computer and the second computer, causing the user to be authenticated or authorized to the second computer via the new session by using an aggregation process, invoking the aggregation process on the first computer, using the aggregation process to retrieve or identify a user credential that is stored and accessible by the first computer, transmitting the user credential to the second computer for authenticating or authorizing the user on the second computer, causing a subdomain delegation for a sub domain of a parent domain to be created on the second computer hosting the remote resource, the action of causing the subdomain delegation to be created comprising;
creating or configuring a zone and domain name server records for the sub domain of the parent domain, and creating or configuring a third system for the zone and the domain name server records for the subdomain of the parent domain. - View Dependent Claims (23, 24, 25)
- receiving, at the first computer, a request from a user through a first network to access the remote resource, wherein the remote resource resides on a second computer accessible by the first computer through a second network, performing, at the first computer, automatic logon for the user using stored user credentials, which authenticate or authorize the user to access the remote resource on the second computer when the user uses the stored user credentials to separately log onto the second computer, and a new session between the first computer and the second computer through the second network without using a single-sign-on mechanism in which one or more tickets are passed between the first computer and the second computer to service the remote resource to the user, and authentication of the user on the first computer grants the user access to the remote resource on the second computer, and enabling, by the first computer, the user to access the remote resource by using the new session, the action of performing the automatic logon for the user further comprising;
Specification