Switching apparatus, authentication server, authentication system, authentication method, and computer program product
First Claim
1. A switching apparatus comprising:
- a memory having computer executable components stored therein; and
a processor communicatively coupled to the memory, the processor configured to facilitate execution of the computer executable components, the computer executable components, comprising;
an authentication client unit that requests user authentication to a user authentication server that performs user authentication of the switching apparatus, and, in response to the user authentication being successfully performed, receives from the user authentication server, success information indicating success of the user authentication, wherein the success information comprises setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server;
an authentication setting unit that sets the setting information and the shared secret information to an authentication relay unit in response to receipt of the success information by the authentication client unit, wherein the authentication relay unit relays a terminal authentication; and
a control unit that allows the authentication relay unit to relay the terminal authentication when the setting information and the shared secret information is set to the authentication relay unit.
1 Assignment
0 Petitions
Accused Products
Abstract
A switching apparatus includes an authentication client unit that requests user authentication to a user authentication server that performs user authentication of the switching apparatus, and, when the requested user authentication is successfully performed, receives from the user authentication server, information of success of the user authentication and setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication; an authentication setting unit that sets the setting information to an authentication relay unit that relays terminal authentication; and a control unit that allows the authentication relay unit to relay the terminal authentication when the setting information is set to the authentication relay unit.
17 Citations
15 Claims
-
1. A switching apparatus comprising:
-
a memory having computer executable components stored therein; and a processor communicatively coupled to the memory, the processor configured to facilitate execution of the computer executable components, the computer executable components, comprising; an authentication client unit that requests user authentication to a user authentication server that performs user authentication of the switching apparatus, and, in response to the user authentication being successfully performed, receives from the user authentication server, success information indicating success of the user authentication, wherein the success information comprises setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server; an authentication setting unit that sets the setting information and the shared secret information to an authentication relay unit in response to receipt of the success information by the authentication client unit, wherein the authentication relay unit relays a terminal authentication; and a control unit that allows the authentication relay unit to relay the terminal authentication when the setting information and the shared secret information is set to the authentication relay unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An authentication system comprising:
-
a switching apparatus; and a user authentication server that performs user authentication of the switching apparatus and is connected the switching apparatus, wherein the switching apparatus includes a memory having computer executable components stored therein; and a processor communicatively coupled to the memory, the processor configured to facilitate execution of the computer executable components, the computer executable components, comprising; an authentication client unit that requests the user authentication server to perform user authentication, and, in response to the user authentication being successfully performed, receives from the user authentication server, success information of success of the user authentication, wherein the success information includes setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs the terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server, an authentication setting unit that sets the setting information and the shared secret information to an authentication relay unit in response to receipt of the success information by the authentication client unit, wherein the authentication relay unit relays the terminal authentication, a control unit that allows the authentication relay unit to relay the terminal authentication when the setting information is set to the authentication relay unit, and a processor for executing at least the authentication client unit, and the user authentication server includes an authenticating unit that receives a request for user authentication, and, in response to the request for user authentication being successfully performed, transmits to the switching apparatus the information of the success of the user authentication, the setting information, and the shared secret information, and a control unit that requests the terminal authentication server to set the terminal authentication based on the shared secret information.
-
-
13. An authentication method performed in a switching apparatus, comprising:
-
requesting user authentication to a user authentication server that performs user authentication of the switching apparatus; receiving, in response to the user authentication being successfully performed, from the user authentication server, success information of success of the user authentication, wherein the success information comprises setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server; setting the setting information and the shared secret information to an authentication relay unit in response to the receiving the success information, wherein the authentication relay unit relays a terminal authentication; and allowing the authentication relay unit to relay the terminal authentication when the setting information is set to the authentication relay unit.
-
-
14. An authentication method performed in an authentication system including a switching apparatus and a user authentication server that performs user authentication of the switching apparatus and is connected the switching apparatus, the method comprising:
-
requesting, by the switching apparatus, user authentication to a user authentication server that performs user authentication of the switching apparatus; receiving by the switching apparatus, in response to the user authentication being successfully performed, from the user authentication server, success information of success of the user authentication, the success information including setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server; setting by the switching apparatus, the setting information and the shared secret information to an authentication relay unit in response to the receiving the success information by the switching apparatus, wherein the authentication relay unit relays terminal authentication; and allowing the authentication relay unit to relay the terminal authentication by the switching apparatus when relay of the terminal authentication is set to the authentication relay unit; receiving, a request for user authentication by the user authentication server; transmitting, by the user authentication server, in response to the user authentication being successfully performed, the information of the success of the user authentication, setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and the shared secret information to the switching apparatus, the shared secret information being generated each time the requested user authentication is successfully performed; and requesting by the user authentication server to the terminal authentication server to set the terminal authentication based on the shared secret information.
-
-
15. A computer program product having a non-transitory computer readable medium including programmed instructions for performing an authentication method executed in a switching apparatus, wherein the instructions, in response to execution, cause a computer to perform operation including:
-
requesting user authentication to a user authentication server that performs user authentication of the switching apparatus; receiving, in response to the requested user authentication being successfully performed, from the user authentication server, success information of success of the user authentication, wherein the success information comprises setting information used when terminal authentication of a terminal to be connected to the switching apparatus is relayed to a terminal authentication server that performs terminal authentication, and shared secret information, the shared secret information being generated in the user authentication server each time the requested user authentication is successfully performed and being information for secure communication between the terminal and the terminal authentication server; setting the setting information and the shared secret information to an authentication relay unit in response to the receiving the success information, wherein the authentication relay unit relays a terminal authentication; and allowing the authentication relay unit to relay the terminal authentication when the setting information is set to the authentication relay unit.
-
Specification