Enabling two-factor authentication for terminal services
First Claim
Patent Images
1. A method executed at a client device for authenticating a request for a remote presentation comprising:
- Receiving an authentication token using a first process running on the client device, the authentication token being received from an authentication server;
writing data from the authentication token to a file on the client device using the first process, the file being accessible to a second process running on the client device, the second process being separate from the first process and being configured to enable a remote presentation between the client device and a terminal services device;
passing authentication data from the file to a communications module using the second process, the communications module being configured to communicate data from the client device to the terminal services device and to the authentication server based on a protocol associated with the remote presentation;
sending the authentication data in a format associated with the protocol to the terminal services device using the communications module;
sending native authentication information to the terminal services device in the format associated with the protocol using the communications module; and
receiving an indication that the terminal services device verified the authentication data with the server and that the terminal services device verified the native authentication information, the indication being received using the communications module.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for enabling two-factor authentication for terminal services are described. A client receives an authentication token from an authentication server. The authentication token is used as a factor for authenticating the client to a terminal services device. Native authentication of the client is also performed.
-
Citations
19 Claims
-
1. A method executed at a client device for authenticating a request for a remote presentation comprising:
-
Receiving an authentication token using a first process running on the client device, the authentication token being received from an authentication server; writing data from the authentication token to a file on the client device using the first process, the file being accessible to a second process running on the client device, the second process being separate from the first process and being configured to enable a remote presentation between the client device and a terminal services device; passing authentication data from the file to a communications module using the second process, the communications module being configured to communicate data from the client device to the terminal services device and to the authentication server based on a protocol associated with the remote presentation; sending the authentication data in a format associated with the protocol to the terminal services device using the communications module; sending native authentication information to the terminal services device in the format associated with the protocol using the communications module; and receiving an indication that the terminal services device verified the authentication data with the server and that the terminal services device verified the native authentication information, the indication being received using the communications module. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A computer-readable storage device having stored therein instructions to authenticate a request for a remote presentation that upon execution on a first device at least cause the first device to:
-
receive of an authentication token using a first process running on the first device, the authentication token being received from an authentication computing device; write data from the authentication token to a file on the first device using the first process, the file being accessible to a second process running on the first device, the second process being separate from the first process and being configured to enable a remote presentation between the first device and a terminal services device; pass authentication data from the file to a communications module using the second process, the communications module being configured to communicate data from the first device to the terminal services device and to the authentication computing device based on a protocol associated with the remote presentation; send the authentication data in a format associated with the protocol to the terminal services device using the communications module; send native authentication information to the terminal services device in the format associated with the protocol using the communications module; and receive an indication that the terminal services device verified the authentication data with the server and that the terminal services device verified the native authentication information, the indication being received using the communications module. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A system for authenticating a request for a remote presentation, comprising:
-
a processor; and memory coupled to the processor having stored thereon instructions that upon execution on the processor cause the system to; receive of an authentication token using a first process running on the system, the authentication token being received from an authentication computing device; write data from the authentication token to a file on the system using the first process, the file being accessible to a second process running on the system, the second process being separate from the first process and being configured to enable a remote presentation between system and a terminal services device; pass authentication data from the file to a communications module using the second process, the communications module being configured to communicate data from the system to the terminal services device and to the authentication computing device based on a protocol associated with the remote presentation; send the authentication data in a format associated with the protocol to the terminal services device using the communications module; send native authentication information to the terminal services device in the format associated with the protocol using the communications module; and receive an indication that the terminal services device verified the authentication data with the server and that the terminal services device verified the native authentication information, the indication being received using the communications module. - View Dependent Claims (16, 17, 18, 19)
-
Specification