Authenticating using cloud authentication
First Claim
1. A domain server comprising:
- a processor;
a local area network connection to a plurality of client devices;
a wide area network connection to a cloud authentication mechanism;
a database comprising user identification and passwords;
a domain authentication mechanism configured to perform a method comprising;
receiving a first authentication request from a first client device, said authentication request comprising a first user identification and a first password;
transmitting said first user identification and said first password to said cloud authentication mechanism;
receiving a first acceptance token from said cloud authentication mechanism;
based on said first acceptance token, storing said first user identification and said first password in said database;
transmitting a second acceptance token to said first client devicereceiving a second authentication request from a second client device, said second authentication request comprising said first user identification and said first password;
looking up said first user identification and said first password in said database and determining that said first user identification and said first password are found in said database; and
transmitting a third acceptance token to said second client device without performing a cloud authentication.
4 Assignments
0 Petitions
Accused Products
Abstract
An authentication mechanism in a local area network may use a cloud authentication mechanism to allow or deny authentication requests. A user may gain access within a local area network by entering a cloud identification and password, which may be verified by a cloud authentication mechanism. If the authentication is successful from the cloud authentication mechanism, the user identification and password are stored locally for subsequent authentication requests. In some embodiments, the cloud password may be periodically flushed so that subsequent requests may be passed to the cloud authentication mechanism. The authentication mechanism may be used in both domain and workgroup local area networks, and may operate in parallel with other users who may have local area network or client credentials which may not be authenticated from the cloud.
-
Citations
18 Claims
-
1. A domain server comprising:
-
a processor; a local area network connection to a plurality of client devices; a wide area network connection to a cloud authentication mechanism; a database comprising user identification and passwords; a domain authentication mechanism configured to perform a method comprising; receiving a first authentication request from a first client device, said authentication request comprising a first user identification and a first password; transmitting said first user identification and said first password to said cloud authentication mechanism; receiving a first acceptance token from said cloud authentication mechanism; based on said first acceptance token, storing said first user identification and said first password in said database; transmitting a second acceptance token to said first client device receiving a second authentication request from a second client device, said second authentication request comprising said first user identification and said first password; looking up said first user identification and said first password in said database and determining that said first user identification and said first password are found in said database; and transmitting a third acceptance token to said second client device without performing a cloud authentication. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 14)
-
-
13. A workgroup computer comprising:
-
a processor; a wide area network connection to a cloud authentication mechanism; a database comprising user identification and passwords; a domain authentication mechanism configured to perform a method comprising; receiving a first authentication request for a first user, said first authentication request comprising a first user identification and a first password; determining if the first authentication request is configured for cloud authentication; transmitting said first user identification and said first password to said cloud authentication mechanism when the first authentication request is configured for cloud authentication; receiving a first acceptance token from said cloud authentication mechanism; based on said first acceptance token, storing said first user identification and said first password in said database; permitting access for said first user to said workgroup computer; receiving a second authentication request for said first user, said second authentication request comprising said first user identification and said first password; looking up said first user identification and said first password in said database and determining that said first user identification and said first password are found in said database; and permitting access for said first user to said workgroup computer without performing a cloud authentication.
-
-
15. A computer-readable storage medium not comprising a signal, said medium comprising computer executable instructions configured to perform a method comprising:
-
receiving a first authentication request for a first user, said first authentication request comprising a first set of credentials; determining that said first user has a cloud authenticated account and transmitting said first set of credentials to a cloud authentication mechanism; receiving a first acceptance token from said cloud authentication mechanism; storing said first set of credentials to a user database; permitting access for said first user to a computer system based on said first acceptance token; receiving a second authentication request for the first user, said second authentication request comprising a second set of credentials; determining that said second set of credentials are not a match to credentials in said user database; transmitting said second set of credentials to said cloud authentication mechanism; receiving a second acceptance token from said cloud authentication mechanism; and updating said user database by replacing the first set of credentials for the first user with the second set of credentials. - View Dependent Claims (16, 17, 18)
-
Specification