Systems and methods for providing authentication using a managed input/output port
First Claim
1. An information handling system comprising:
- a processor;
an input/output port communicatively coupled to the processor and configured to receive an external input/output device and communicatively couple the external input/output device to one or more information handling resources of the information handling system; and
an access controller communicatively coupled to the processor and configured to;
provide out-of-band management of the information handling system via a communications channel separate from and physically isolated from a network interface for in-band communication between the processor and an external network;
responsive to detecting an attempt to perform any management operation selected from a group of management operations requiring an administrator physically present at the information handling system;
determine if the external input/output device is coupled to the input/output port; and
determine if the external input/output device is authenticated as a trusted input/output device;
responsive to determining that the external input/output device is authenticated as a trusted input/output device, allow execution of the attempted management operation; and
responsive to determining that the external input/output device is not coupled to the input/output port, disallow execution of the attempted management operation;
wherein the group of management operations requiring the administrator physically present at the information handling system includes;
powering off the information handling system via a power button;
booting to basic input/output system option read-only memories;
booting to a boot manager;
booting to pre-operating system environment;
provisioning the information handling system from a local user interface via a liquid crystal display screen for remote management purposes;
booting from an operating system stored on an external storage medium;
configuring a baseboard management controller; and
automatically configuring information handling system settings with information stored on an external storage medium.
14 Assignments
0 Petitions
Accused Products
Abstract
In accordance with embodiments of the present disclosure, an information handling system may include a processor, an input/output port communicatively coupled to the processor, and an access controller communicatively coupled to the processor. The an input/output port may be configured to receive an external input/output device and communicatively couple such input/output device to one or more information handling resources of the information handling system. The access controller may be configured to responsive to an attempted management operation at the information handling system, determine if an input/output device coupled to the input/output port is authenticated as a trusted input/output device. The access controller may also be configured to, responsive to determining that the input/output device is authenticated as a trusted input/output device, allow execution of the attempted management operation.
-
Citations
9 Claims
-
1. An information handling system comprising:
-
a processor; an input/output port communicatively coupled to the processor and configured to receive an external input/output device and communicatively couple the external input/output device to one or more information handling resources of the information handling system; and an access controller communicatively coupled to the processor and configured to; provide out-of-band management of the information handling system via a communications channel separate from and physically isolated from a network interface for in-band communication between the processor and an external network; responsive to detecting an attempt to perform any management operation selected from a group of management operations requiring an administrator physically present at the information handling system; determine if the external input/output device is coupled to the input/output port; and determine if the external input/output device is authenticated as a trusted input/output device; responsive to determining that the external input/output device is authenticated as a trusted input/output device, allow execution of the attempted management operation; and responsive to determining that the external input/output device is not coupled to the input/output port, disallow execution of the attempted management operation; wherein the group of management operations requiring the administrator physically present at the information handling system includes; powering off the information handling system via a power button; booting to basic input/output system option read-only memories; booting to a boot manager; booting to pre-operating system environment; provisioning the information handling system from a local user interface via a liquid crystal display screen for remote management purposes; booting from an operating system stored on an external storage medium; configuring a baseboard management controller; and automatically configuring information handling system settings with information stored on an external storage medium. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
Specification