Managing hardware reboot and reset in shared environments
First Claim
1. A computer-implemented method, comprising:
- under control of one or more computer systems configured with executable instructions,provisioning a customer on at least one of a plurality of host machines using at least one provisioning system on a network;
causing at least one switch, associated with communications between the at least one provisioned host machine and the at least one provisioning system, to disable communications between each provisioned host machine and each provisioning system for a duration of a time the customer is utilizing the at least one host machine, and while maintaining access to other communication paths of the network; and
causing the at least one switch between the at least one provisioned host machine and the at least one provisioning system to enable communications between each provisioned host machine and each provisioning system after the customer is no longer provisioned on the at least one host machine.
0 Assignments
0 Petitions
Accused Products
Abstract
In an environment such as a cloud computing environment where various guests can be provisioned on a host machine or other hardware device, it can be desirable to prevent those users from rebooting or otherwise restarting the machine or other resources using unauthorized information or images that can be obtained from across the network. A cloud manager can cause one or more network switches or other routing or communication processing components to deny communication access between user-accessible ports on a machine or device and the provisioning systems, or other specific network resources, such that the user cannot cause the host machine to pull information from those resources upon a restart or reboot of the machine. Further, various actions can be taken upon a reboot or attempted reboot, such as to isolate the host machine or even power off the specific machine.
-
Citations
20 Claims
-
1. A computer-implemented method, comprising:
under control of one or more computer systems configured with executable instructions, provisioning a customer on at least one of a plurality of host machines using at least one provisioning system on a network; causing at least one switch, associated with communications between the at least one provisioned host machine and the at least one provisioning system, to disable communications between each provisioned host machine and each provisioning system for a duration of a time the customer is utilizing the at least one host machine, and while maintaining access to other communication paths of the network; and causing the at least one switch between the at least one provisioned host machine and the at least one provisioning system to enable communications between each provisioned host machine and each provisioning system after the customer is no longer provisioned on the at least one host machine. - View Dependent Claims (2, 3, 4)
-
5. A computing system, comprising:
-
a processor; and a memory including instructions that, when executed by the processor, cause the processor to; enable a user to utilize a hardware device by setting configuration information for at least one switch along any communications path between the hardware device and an administrative resource to disable communications between the hardware device and the administrative resource, the hardware device being unable to access the at least one administrative resource to modify configuration information of the hardware device for a duration of a time the user is utilizing the hardware device; and when the user is finished utilizing the at least one hardware device, enable the communication path between the hardware device and the administrative resource. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A non-transitory computer-readable medium including instructions that, when executed by a processor, cause a computing device to:
-
provision a customer on a host machine using a provisioning system on a network; cause a switch associated with communications between the provisioned host machine and the provisioning system to disable communications between the provisioned host machine and the provisioning system for a duration of a time the customer is utilizing the host machine and while maintaining access to other communication paths of the network; and cause the switch between the provisioned host machine and the provisioning system to enable communications between the provisioned host machine and the provisioning system after the customer is no longer provisioned on the host machine. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification