Electrical computers and digital processing systems: multicomput – Computer-to-computer session/connection establishing – Network resources access controlling
Reexamination Certificate
2007-05-29
2007-05-29
Flynn, Nathan J. (Department: 2154)
Electrical computers and digital processing systems: multicomput
Computer-to-computer session/connection establishing
Network resources access controlling
C709S217000, C709S219000, C709S227000, C713S150000, C713S168000, C713S170000
Reexamination Certificate
active
10310572
ABSTRACT:
A method is disclosed for creating and storing troubleshooting information for providing access control information to a network device. A provisioning of one or more access control lists, and one or more associations of the access control lists to users of the network device, are received. As part of authenticating a user login request, a name of a first access control list is provided to the network device, selected from among the one or more access control lists that based on the associations. A request is received from the network device for a first access control list that is associated with a user of the network device. The request includes the name of the access control list. The first access control list is sent to the network device in response to the request. Embodiments may use RADIUS packets for communicating ACLs from an authentication server to a firewall, and a de-fragmentation approach is disclosed for downloading ACLs that exceed the maximum RADIUS packet size. Further, using an ACL renaming approach the firewall is forced to update its cache when a user subsequently logs in and the corresponding ACL has changed in the interim.
REFERENCES:
patent: 6088451 (2000-07-01), He et al.
patent: 6339830 (2002-01-01), See et al.
patent: 6463474 (2002-10-01), Fuh et al.
patent: 6553375 (2003-04-01), Huang et al.
patent: 6609154 (2003-08-01), Fuh et al.
patent: 6928558 (2005-08-01), Allahwerdi et al.
patent: 2004/0097217 (2004-05-01), McClain
patent: 2005/0254651 (2005-11-01), Porozni et al.
C. Rigney et al., “Remote Authentication Dial In User Service (RADIUS),” Jun. 2000, pp. 1-76.
Cisco Systems, Inc., “Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide,” Nov. 2001, pp. 1-654 (text provided on CD-ROM).
Clymer Andrew M.
Potter Darran
Flynn Nathan J.
Hickman Palermo & Truong & Becker LLP
Wasel Mohamed
LandOfFree
Method and apparatus for retrieving access control information does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Method and apparatus for retrieving access control information, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for retrieving access control information will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-3733780