公开(公告)号：US11848931B2

公开(公告)日：2023-12-19

申请号：US17495239

申请日：2021-10-06

Applicant: VMware, Inc.

Inventor： Eugene Liderman ,  Rahul Parwani ,  Kiran Rohankar ,  Keith Robertson

IPC: H04L9/40 ,  H04L9/32 ,  G06F9/54

CPC classification number: H04L63/0884 ,  G06F9/546 ,  H04L9/321 ,  H04L9/3236 ,  H04L9/3268 ,  H04L63/083 ,  H04L63/0823 ,  G06F2209/548

Abstract: Disclosed are various embodiments for delegating authentication to certificate authorities. A connector service identifies a certificate request from a messenger service. The certificate request includes a credential identifier for a certificate authority. An authentication credential is retrieved using the credential identifier. A certificate request and the certificate authority authentication credential are transmitted to the certificate authority. A certificate is retrieved and provided as a response to the certificate request.

公开(公告)号：US20230403302A1

公开(公告)日：2023-12-14

申请号：US17835382

申请日：2022-06-08

Applicant: VMware, Inc.

Inventor： Aditya Shrotri ,  Sagar Date ,  Kunal Ghosh ,  Rahul Parwani ,  Ryan Stallings ,  Huseyin Erenoglu

IPC: H04L9/40

CPC classification number: H04L63/20 ,  H04L63/10

Abstract: Disclosed are various embodiments for managing the state of client devices using device-driven management workflows. The device-driven management workflow can be evaluated to determine a current state of the computing device, install software, and direct the computing device to watch at least one value stored in memory for a modification. When at the at least one value stored in memory is modified, the computing device can execute the device-driven management workflow to resolve a discrepancy between the expected state and the current state or perform a remedial action to prevent unwanted access to secure resources.

公开(公告)号：US11665065B2

公开(公告)日：2023-05-30

申请号：US17509527

申请日：2021-10-25

Applicant: VMware, Inc.

Inventor： Brian Link ,  Rahul Parwani

IPC: H04L41/22 ,  H04L41/0806 ,  H04L9/40 ,  H04L41/12 ,  H04L41/0226 ,  H04L41/28 ,  H04L41/0893 ,  G06F8/76

CPC classification number: H04L41/22 ,  G06F8/76 ,  H04L41/0226 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/28 ,  H04L63/20

Abstract: Examples of device-driven management are described. A management service can generate a management console that includes a set of workflow objects to use in a workflow creation user interface. A device-driven management workflow is defined through the workflow creation user interface. The management service identifies that device-driven management workflow lacks a condition specified in a comprehensiveness definition. A workflow object for the condition specified in a comprehensiveness definition is generated for display. A user interaction incorporates the workflow object into the device-driven management workflow so that device-driven management workflow considers the specified condition.

公开(公告)号：US11470149B2

公开(公告)日：2022-10-11

申请号：US17221858

申请日：2021-04-05

Applicant: VMWARE, INC.

Inventor： Jonathon Deriso ,  Saransh Bhatnagar ,  Rahul Parwani ,  Brian Link ,  Mohan Guttikonda ,  Satish Venkatakrishnan

IPC: G06F15/16 ,  H04L67/1074 ,  H04L67/104 ,  H04L41/0604 ,  H04L67/306 ,  H04L67/01

Abstract: Disclosed are various embodiments for managing the state of client devices using device-driven management workflows. A computing device can be evaluated to determine the current state of the computing device. Then, the current state of the computing device is compared to an expected state of the computing device. The expected state of the computing device may be based at least in part on a result of execution of at least one device-driven management workflow by the computing device. In response to a determination that the current state of the computing device fails to match the expected state of the computing device, the device-driven management workflow can be executed to resolve the discrepancy between the expected state and the current state.

公开(公告)号：US20210273817A1

公开(公告)日：2021-09-02

申请号：US16804511

申请日：2020-02-28

Applicant: VMware, Inc.

Inventor： Jonathon Deriso ,  Sagar Date ,  Rahul Parwani

IPC: H04L9/32 ,  H04L9/08

Abstract: Disclosed are various embodiments for securely distributing certificates or encryption keys. A management service can receive an enrollment request from a client device. The management service can then send a key request to a certificate provider, the key request comprising a user identifier. The management service can also send a skeleton payload to an enterprise gateway. In response, the management service can receive an encrypted profile from the enterprise gateway, the encrypted profile comprising the skeleton payload with an encryption key inserted by the enterprise gateway into the skeleton payload. Finally, the management service can send the encrypted profile to the client device.