Systems and methods for the rapid deployment of network security devices
First Claim
1. A system, comprising:
- a security server configured to associate an identifier of a network security device with a deployment package for the network security device, wherein the deployment package comprises an authentication credential, and wherein the security server is configured to provide the deployment package to a network security device over a network in response to a request from the network security device received over the network that comprises the device identifier of the network security device;
a computer-readable storage medium that stores a production configuration for the network security device, the production configuration comprising a deployment-specific security policy comprising one or more deployment-specific configuration parameters for the network security device; and
a management server configured to associate the device identifier of the network security device with the stored production configuration,wherein the management server is configured to receive a request for the production configuration from the network device, the request comprising the identifier of the network security device, to authenticate the request by use of the authentication credential provided to the network security device in the deployment package, and provide the production configuration associated with the device identifier of the network security device in response to authenticating the network security device,wherein the deployment package comprises a feature key that defines one or more licensed features of the network security device.
8 Assignments
0 Petitions
Accused Products
Abstract
A configuration service comprises a deployment package and a production configuration for a network security device. One or more configuration parameters of the production configuration may be defined by an administrator of the network security device (e.g., the customer). The network security device may be preconfigured with a network address and identifier. The network security device may be configured to automatically request and apply the deployment package at deployment time by use of the preconfigured network address and identifier. The network security device may automatically request and apply the production configuration from the configuration service in response to applying the deployment package.
16 Citations
18 Claims
-
1. A system, comprising:
-
a security server configured to associate an identifier of a network security device with a deployment package for the network security device, wherein the deployment package comprises an authentication credential, and wherein the security server is configured to provide the deployment package to a network security device over a network in response to a request from the network security device received over the network that comprises the device identifier of the network security device; a computer-readable storage medium that stores a production configuration for the network security device, the production configuration comprising a deployment-specific security policy comprising one or more deployment-specific configuration parameters for the network security device; and a management server configured to associate the device identifier of the network security device with the stored production configuration, wherein the management server is configured to receive a request for the production configuration from the network device, the request comprising the identifier of the network security device, to authenticate the request by use of the authentication credential provided to the network security device in the deployment package, and provide the production configuration associated with the device identifier of the network security device in response to authenticating the network security device, wherein the deployment package comprises a feature key that defines one or more licensed features of the network security device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for automatically configuring a network security device, comprising:
-
associating, within a management server, an identifier of a network security device with a deployment package and a production configuration, the production configuration comprising a deployment-specific security policy comprising one or more deployment-specific configuration parameters for the network security device; providing the deployment package to the network security device over a network in response to a request from the network security device received over the network, the request comprising the identifier of the network security device, wherein the deployment package comprises an authentication credential; authenticating a request for a production configuration from the network security device by use of the authentication credential provided to the network security device in the deployment package; and providing the production configuration to the network security device in response to authenticating the request from the network security device, wherein the production configuration comprises a configuration of one or more security features of the network security device, wherein the deployment package comprises a feature key that defines one or more licensed features of the network security device. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification