Method and system for third party client authentication
First Claim
1. A method of authenticating a client using a third party authentication server, the method being performed by an intermediate server configured to communicate with the client and the third party authentication server, the method comprising:
- requesting, by a plug-in executing on the intermediate server and associated with a third party authentication server, a list of supported credential types of said third party authentication server,wherein the list of supported credential types is selected from the group comprising;
a password, a single sign-on (SSO) authentication token, a PIN, and a smart card credential;
receiving, from the plug-in, said list of supported credential types of the third party authentication server;
sending, to the client, an identification of the supported credential types of the third party authentication server in the list;
receiving, from the client, credential information and a selected credential type from the list of supported credential types;
sending the credential information and the selected credential type to the plug-in;
determining, by the plug-in, if the selected credential type is supported by the third party authentication server, andtransmitting the credential information received from the client to the third party authentication server for authenticating the client, in response to determining the selected credential type is supported by the third party authentication server;
wherein the plug-in is selected from a plurality of plug-ins, and each of the plurality of plug-ins is associated with a different third party authentication server.
4 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for third party client authentication of a client. A method includes displaying a user interface on a display of the client, the user interface including an option to select a supported credential type of a third party authentication server, receiving a command selecting the supported credential type, and sending credential information and the selected supported credential type to an authentication server for third party authentication by the third party authentication server. The third party authentication server may support a token-based authentication protocol for implementing single sign on (SSO).
104 Citations
15 Claims
-
1. A method of authenticating a client using a third party authentication server, the method being performed by an intermediate server configured to communicate with the client and the third party authentication server, the method comprising:
-
requesting, by a plug-in executing on the intermediate server and associated with a third party authentication server, a list of supported credential types of said third party authentication server, wherein the list of supported credential types is selected from the group comprising;
a password, a single sign-on (SSO) authentication token, a PIN, and a smart card credential;receiving, from the plug-in, said list of supported credential types of the third party authentication server; sending, to the client, an identification of the supported credential types of the third party authentication server in the list; receiving, from the client, credential information and a selected credential type from the list of supported credential types; sending the credential information and the selected credential type to the plug-in; determining, by the plug-in, if the selected credential type is supported by the third party authentication server, and transmitting the credential information received from the client to the third party authentication server for authenticating the client, in response to determining the selected credential type is supported by the third party authentication server; wherein the plug-in is selected from a plurality of plug-ins, and each of the plurality of plug-ins is associated with a different third party authentication server. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium storing instructions for authenticating a client using a third party authentication server, the instructions for execution by an intermediate server configured to communicate with the client and the third party authentication server, wherein when the instructions are executed, the instructions configure a processor of the intermediate server to:
-
request, by a plug-in executing on the intermediate server and associated with the third party authentication server, a list of supported credential types of said third party authentication server, wherein the list of supported credential types is selected from the group comprising;
a password, a single sign-on (SSO) authentication token, a PIN, and a smart card credential;receive, from the plug-in, said list of supported credential types of the third party authentication server; send, to a client, an identification of the supported credential types of the third party authentication server in the list; receive, from the client, credential information and a selected credential type from the list of supported credential types; send the credential information and the selected credential type to the plug-in; determine, by the plug-in, if the selected credential type is supported by the third party authentication server, and transmit the credential information received from the client to the third party authentication server for authenticating the client, in response to determining the selected credential type is supported by the third party authentication server; wherein the plug-in is selected from a plurality of plug-ins, and each of the plurality of plug-ins is associated with a different third party authentication server.
-
-
9. An intermediate server configured to communicate with a client and a third party authentication server to allow the client to be authenticated using the third party authentication server, the intermediate server comprising:
-
a hardware processor configured to provide a plug-in associated with the third party authentication server; wherein the hardware processor is further configured to; request, by the plug-in, a list of supported credential types of said third party authentication server wherein the list of supported credential types is selected from the group comprising;
a password, a single sign-on (SSO) authentication token, a PIN, and a smart card credential;receive, from the plug-in, said list of supported credential types of the third party authentication server; send, to a client, an identification of the supported credential types of the third party authentication server in the list; receive, from the client, credential information and a selected credential type from the list of supported credential types; send the credential information and the selected credential type to the plug-in; determine, by the plug-in, if the selected credential type is supported by the third party authentication server, and transmit the credential information received from the client to the third party authentication server for authenticating the client, in response to determining the selected credential type is supported by the third party authentication server; wherein the plug-in is selected from a plurality of plug-ins, and each of the plurality of plug-ins is associated with a different third party authentication server. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
Specification