公开(公告)号：US10740109B2

公开(公告)日：2020-08-11

申请号：US15466841

申请日：2017-03-22

Applicant: VMware, Inc.

Inventor： Jason Roszak ,  Craig Newell ,  Shravan Shantharam ,  Varun Murthy ,  Kalyan Regula ,  Blake Watts

IPC: G06F9/44 ,  G06F9/4401 ,  G06F8/61

Abstract: Systems and methods are included for causing a computing device to assemble and boot from a managed operating system. When the computing device is powered on, it can execute firmware that specifies a server to contact. The server can identify an operating system (OS) to boot, and the location of a pre-enrollment installer for assembling the OS image. The pre-enrollment installer can download base OS images in one or more pieces from multiple locations determined based on ownership information of the computing device. The multiple OS images can relate to enterprise management and company-specific applications and drivers. Once the pre-enrollment installer has combined the base OS images, the computing device reboots using the combined OS image.

公开(公告)号：US20190392135A1

公开(公告)日：2019-12-26

申请号：US16526002

申请日：2019-07-30

Applicant: VMware, Inc.

Inventor： Jason Roszak ,  Varun Murthy ,  Shravan Shantharam ,  Blake Watts ,  Kalyan Regula

IPC: G06F21/52 ,  H04L29/08 ,  G06F21/62 ,  G06F21/50 ,  G06F21/10 ,  G06F21/56 ,  G06F9/48

Abstract: Various examples for performing automated enrollments of client devices with a management service after being accessed by a staging user account are described. A client device can be configured to identify a user account active on the client device and determine whether the user account is a staging user account or an end user account associated with an intended recipient of the client device. In an instance in which the user account is the staging user account, the client device can create an event listener on the client device that monitors a subsequent login of a user account performed through an operating system of the client device, the subsequent login of the user account being the end user account. In an instance in which the subsequent login of the user account is detected by the event listener, the client device can perform an automated enrollment with a remote management service.

公开(公告)号：US11709684B2

公开(公告)日：2023-07-25

申请号：US16987876

申请日：2020-08-07

Applicant: VMware, Inc.

Inventor： Jason Roszak ,  Craig Newell ,  Shravan Shantharam ,  Varun Murthy ,  Kalyan Regula ,  Blake Watts

IPC: G06F9/4401 ,  G06F8/61

CPC classification number: G06F9/4416 ,  G06F9/4406 ,  G06F8/63

Abstract: Systems and methods are included for causing a computing device to assemble and boot from a managed operating system. When the computing device is powered on, it can execute firmware that specifies a server to contact. The server can identify an operating system (OS) to boot, and the location of a pre-enrollment installer for assembling the OS image. The pre-enrollment installer can download base OS images in one or more pieces from multiple locations determined based on ownership information of the computing device. The multiple OS images can relate to enterprise management and company-specific applications and drivers. Once the pre-enrollment installer has combined the base OS images, the computing device reboots using the combined OS image.

公开(公告)号：US11165808B2

公开(公告)日：2021-11-02

申请号：US16249226

申请日：2019-01-16

Applicant: VMware, Inc.

Inventor： Varun Murthy ,  Jason Roszak ,  Blake Ryan Watts ,  Matthew Conover ,  Arvind Ahuja

IPC: G06F21/00 ,  H04L29/06 ,  G06F21/57 ,  G06F8/65

Abstract: Disclosed are various approaches to automate vulnerability assessment implement policy-based mitigation. A plurality of vulnerability records from respective ones of a plurality of vulnerability feeds are aggregated. Each of the plurality of vulnerability records are stored in a standardized format. A plurality of enterprise-specific severity scores are generated by calculating an enterprise-specific severity score for each of the plurality of vulnerability records. Then, a web page can be created that includes at least a subset of the plurality of enterprise-specific severity scores and respective ones of the plurality of vulnerability records.

公开(公告)号：US20200225929A1

公开(公告)日：2020-07-16

申请号：US16249214

申请日：2019-01-16

Applicant: VMware, Inc.

Inventor： Mohamed Elsherif ,  Kishore Krishnakumar ,  Ian Drennan ,  Ondrej Stastny ,  Brooks Peppin ,  Jason Roszak ,  Ahmad Bilal

IPC: G06F8/65 ,  G06F8/61 ,  H04L12/24 ,  G06F9/445 ,  H04L29/08

Abstract: Disclosed are various approaches for remotely deploying provisioned packages. An installer for an application is stored in a cache location of the client device. A hash of the installer is then written to a registry of the client device. The installer is then executed to install the application on the client device. Then, the client device is registered with a management service. Subsequently, a registration confirmation is received from the management service. The hash of the installer is then confirmed and the installed application is identified to the management service as a managed application installed on the client device.

公开(公告)号：US20230119675A1

公开(公告)日：2023-04-20

申请号：US18068016

申请日：2022-12-19

Applicant: VMware, Inc.

Inventor： Mohamed Elsherif ,  Kishore Krishnakumar ,  Ian Drennan ,  Ondrej Stastny ,  Brooks Peppin ,  Jason Roszak ,  Ahmad Bilal

IPC: G06F8/65 ,  G06F8/61 ,  H04L67/00 ,  G06F9/445 ,  H04L41/0803

Abstract: Disclosed are various approaches for remotely deploying provisioned packages. An installer for an application is stored in a cache location of the client device. A hash of the installer is then written to a registry of the client device. The installer is then executed to install the application on the client device. Then, the client device is registered with a management service. Subsequently, a registration confirmation is received from the management service. The hash of the installer is then confirmed and the installed application is identified to the management service as a managed application installed on the client device.

公开(公告)号：US11531532B2

公开(公告)日：2022-12-20

申请号：US16249214

申请日：2019-01-16

Applicant: VMware, Inc.

Inventor： Mohamed Elsherif ,  Kishore Krishnakumar ,  Ian Drennan ,  Ondrej Stastny ,  Brooks Peppin ,  Jason Roszak ,  Ahmad Bilal

IPC: G06F8/65 ,  G06F8/61 ,  H04L67/00 ,  G06F9/445 ,  H04L41/0803

Abstract: Disclosed are various approaches for remotely deploying provisioned packages. An installer for an application is stored in a cache location of the client device. A hash of the installer is then written to a registry of the client device. The installer is then executed to install the application on the client device. Then, the client device is registered with a management service. Subsequently, a registration confirmation is received from the management service. The hash of the installer is then confirmed and the installed application is identified to the management service as a managed application installed on the client device.

公开(公告)号：US20200233651A1

公开(公告)日：2020-07-23

申请号：US16250404

申请日：2019-01-17

Applicant: VMware, Inc.

Inventor： Shravan Shantharam ,  Blake Ryan Watts ,  Kalyan Regula ,  Varun Murthy ,  Jason Roszak ,  Nitin Radhakrishna Rao ,  Mohan Guttikonda

IPC: G06F8/61 ,  G06F9/445 ,  G06F21/64 ,  G06F21/12 ,  H04L9/32 ,  H04L9/06 ,  G06F8/65

Abstract: Disclosed are various implementations for distributing and installing packages in response to user logon events. A logon event associated with a user account is detected for a client device. A query containing a respective user account identifier is sent to a provisioning service to retrieve a set of packages to install on the client device. The set of packages are received from the provisioning service and installed on the client device.

公开(公告)号：US20200228560A1

公开(公告)日：2020-07-16

申请号：US16249226

申请日：2019-01-16

Applicant: VMware, Inc.

Inventor： Varun Murthy ,  Jason Roszak ,  Blake Ryan Watts ,  Matthew Conover ,  Arvind Ahuja

IPC: H04L29/06 ,  G06F21/57 ,  G06F8/65

Abstract: Disclosed are various approaches to automate vulnerability assessment implement policy-based mitigation. A plurality of vulnerability records from respective ones of a plurality of vulnerability feeds are aggregated. Each of the plurality of vulnerability records are stored in a standardized format. A plurality of enterprise-specific severity scores are generated by calculating an enterprise-specific severity score for each of the plurality of vulnerability records. Then, a web page can be created that includes at least a subset of the plurality of enterprise-specific severity scores and respective ones of the plurality of vulnerability records.

公开(公告)号：US10572240B2

公开(公告)日：2020-02-25

申请号：US15658421

申请日：2017-07-25

Applicant: VMWARE, INC.

Inventor： Shravan Shantharam ,  Vijay Narayan ,  Kalyan Regula ,  Varun Murthy ,  Jason Roszak ,  Achyutha Bharadwaj ,  Abheesh Kumar Thaleppady

IPC: G06F8/65 ,  G06F8/61 ,  H04L29/08 ,  H04W4/08

Abstract: Operating system update management for enrolled devices is disclosed according to various examples. In one example, a computing environment can receive an identifier from at least one of a multitude of client devices enrolled with a management service, where the identifier is indicative of a software update available for the at least one of the plurality of client devices. The computing environment can query a service using the identifier to identify information pertaining to the software update and cause a display of the information in at least one user interface. In response to a specification of a subset of the client devices being received, for example, by an administrator, the computing environment can cause the subset of the plurality of client devices to perform an installation of the software update.