公开(公告)号：US20140373090A1

公开(公告)日：2014-12-18

申请号：US14467749

申请日：2014-08-25

Applicant: CITRIX SYSTEMS, INC.

Inventor： Marco Murgia ,  Larry Tomlin ,  Ivan Bojer ,  Jong Kann ,  Pierre Rafiq

IPC: H04L29/06 ,  G06F21/45

CPC classification number: H04L63/20 ,  G06F21/45 ,  H04L63/083 ,  H04L63/102

Abstract: The present invention is directed towards systems and methods for establishing and applying a policy group to control a user's access to an identified resource. A policy group representing an aggregate of one or more access configurations for a user to access one or more identified resources may be established via a policy manager. The policy group may include a login point component representing an entry point to access the identified resource. The login point may be configured via the policy manager to specify a uniform resource locator for the entry point. One or more authentication and authorization methods may be selected for the login point component. The device may receive a request to access the uniform resource locator. The device may initiate the policy group for evaluation. The device may initiate, with the user, one or more authentication and authorization methods specified by the login point component.

Abstract translation: 本发明涉及用于建立和应用策略组以控制用户对所识别的资源的访问的系统和方法。 可以经由策略管理器来建立代表用户访问一个或多个所识别的资源的一个或多个访问配置的集合的策略组。 策略组可以包括表示访问所识别的资源的入口点的登录点组件。 可以通过策略管理器配置登录点，以指定入口点的统一资源定位符。 可以为登录点组件选择一个或多个认证和授权方法。 设备可以接收访问统一资源定位符的请求。 设备可以启动用于评估的策略组。 设备可以与用户一起发起由登录点组件指定的一个或多个认证和授权方法。

公开(公告)号：US09363292B2

公开(公告)日：2016-06-07

申请号：US14467749

申请日：2014-08-25

Applicant: Citrix Systems, Inc.

Inventor： Marco Murgia ,  Larry Tomlin ,  Ivan Bojer ,  Jong Kann ,  Pierre Rafiq

IPC: H04L29/06 ,  G06F21/45

CPC classification number: H04L63/20 ,  G06F21/45 ,  H04L63/083 ,  H04L63/102

Abstract: The present invention is directed towards systems and methods for establishing and applying a policy group to control a user's access to an identified resource. A policy group representing an aggregate of one or more access configurations for a user to access one or more identified resources may be established via a policy manager. The policy group may include a login point component representing an entry point to access the identified resource. The login point may be configured via the policy manager to specify a uniform resource locator for the entry point. One or more authentication and authorization methods may be selected for the login point component. The device may receive a request to access the uniform resource locator. The device may initiate the policy group for evaluation. The device may initiate, with the user, one or more authentication and authorization methods specified by the login point component.

Abstract translation: 本发明涉及用于建立和应用策略组以控制用户对所识别的资源的访问的系统和方法。 可以经由策略管理器来建立代表用户访问一个或多个所识别的资源的一个或多个访问配置的集合的策略组。 策略组可以包括表示访问所识别的资源的入口点的登录点组件。 可以通过策略管理器配置登录点，以指定入口点的统一资源定位符。 可以为登录点组件选择一个或多个认证和授权方法。 设备可以接收访问统一资源定位符的请求。 设备可以启动用于评估的策略组。 设备可以与用户一起发起由登录点组件指定的一个或多个认证和授权方法。