Methods and apparatus for scalable secure remote desktop access
First Claim
1. A method of enrolling networked resources via an enrollment system communicating with an enrollment administration system permitting enrollment based on enrollment rules stored in an enrollment database, the method comprising:
- (a) enrolling a networked resource to later access the networked resource remotely, wherein enrolling the networked resource comprises;
(1) receiving, by an enrollment system executing on a computing machine, an enrollment request from a console that is physically attached to the networked resource and from a user to enroll the networked resource;
(2) authenticating, by the enrollment system, an identity of the user;
(3) sending, by the enrollment system to an enrollment administration system executing on the computer machine, the enrollment request;
(4) determining, by the enrollment administration system, if the user is permitted to enroll the networked resource based upon identifying at least one of a plurality of enrollment rules in an enrollment database;
(5) determining, by the enrollment administration system, if the user sent the enrollment request from the console that is physically attached to the networked resource;
(6) enrolling, by the enrollment administration system, the networked resource responsive to determining (i) if the user is permitted to enroll the networked resource and (ii) if the user sent the enrollment request from the console that is physically attached to the networked resource;
(b) establishing an initial remote connection to access the networked resource, wherein establishing the initial remote connection comprises;
(1) receiving, by a remote access system, an access request from the user to access the networked resource from a remote location, wherein the access request is distinct from the enrollment request;
(2) verifying, by the remote access system, the identity of the user;
(3) determining, by the remote access system, if network resource has been previously enrolled by the user; and
(4) granting, by the remote access system, responsive to the determination, remote access to the network resource.
7 Assignments
0 Petitions
Accused Products
Abstract
The invention provides scalable, secure, and easily administerable methods and systems for providing remote access to networked resources by combing aspects of physical access limitation measures with traditional computer access limitation measures. The methods and systems utilize an enrollment administration system for specifying enrollment rules, an enrollment system configured to communicate with the enrollment administration system to permit enrolling a first networked resource if permitted by specified enrollment rules, and a remote access system for granting a user remote access to the first networked resource if the user successfully enrolled the first networked resource.
-
Citations
20 Claims
-
1. A method of enrolling networked resources via an enrollment system communicating with an enrollment administration system permitting enrollment based on enrollment rules stored in an enrollment database, the method comprising:
-
(a) enrolling a networked resource to later access the networked resource remotely, wherein enrolling the networked resource comprises; (1) receiving, by an enrollment system executing on a computing machine, an enrollment request from a console that is physically attached to the networked resource and from a user to enroll the networked resource; (2) authenticating, by the enrollment system, an identity of the user; (3) sending, by the enrollment system to an enrollment administration system executing on the computer machine, the enrollment request; (4) determining, by the enrollment administration system, if the user is permitted to enroll the networked resource based upon identifying at least one of a plurality of enrollment rules in an enrollment database; (5) determining, by the enrollment administration system, if the user sent the enrollment request from the console that is physically attached to the networked resource; (6) enrolling, by the enrollment administration system, the networked resource responsive to determining (i) if the user is permitted to enroll the networked resource and (ii) if the user sent the enrollment request from the console that is physically attached to the networked resource; (b) establishing an initial remote connection to access the networked resource, wherein establishing the initial remote connection comprises; (1) receiving, by a remote access system, an access request from the user to access the networked resource from a remote location, wherein the access request is distinct from the enrollment request; (2) verifying, by the remote access system, the identity of the user; (3) determining, by the remote access system, if network resource has been previously enrolled by the user; and (4) granting, by the remote access system, responsive to the determination, remote access to the network resource. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for enrolling networked resources via an enrollment system communicating with an enrollment administration system permitting enrollment based on enrollment rules stored in an enrollment database, the system comprising:
-
(a) an enrollment system executing on a computing machine, the enrollment system; (1) receiving an enrollment request from a console that is physically attached to the networked resource and from a user to enroll a networked resource; (2) authenticating an identity of the user; (b) an enrollment administration system executing on the computing machine to enroll the networked resource to later access the network resource remotely, the enrollment administration system; (1) receiving, an enrollment request from the enrollment system; (2) determining if the user is permitted to enroll the networked resource based upon identifying at least one of a plurality of enrollment rules in an enrollment database; (3) determining if the user sent the enrollment request from the console that is physically attached to the networked resource; (4) enrolling the networked resource responsive to determining (i) if the user is permitted to enroll the networked resource and (ii) if the user sent the enrollment request from the console that is physically attached to the networked resource; (c) a remote access system to establish an initial remote connection to access the networked resource, executing on the computing machine, the remote access system; (1) receiving an access request from the user to access the networked resource from a remote location, wherein the access request is distinct from the enrollment request; (2) verifying the identity of the user; (3) determining, if network resource has been previously enrolled by the user; and (4) granting, responsive to the determination, remote access to the network resource. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification