公开(公告)号：US20220337629A1

公开(公告)日：2022-10-20

申请号：US17301928

申请日：2021-04-19

Applicant: Cisco Technology, Inc.

Inventor： Robert E. BARTON ,  Bart A. BRINCKMAN ,  Jerome HENRY ,  Carlos M. PIGNATARO ,  Nagendra Kumar NAINAR ,  Matthew MACPHERSON

IPC: H04L29/06

Abstract: A method includes receiving, at an access node of a local network, a connection request from a device and in response to the connection request, establishing a connection with an identity provider. The device, the access node, the local network, and the identity provider are members of an identity federation. The method further includes receiving an indication that the device previously violated a network policy of a network different from the local network and after the device is authenticated with the identity provider, determining, by the access node and based on the indication, whether to allow the device to communicate over the access node.

公开(公告)号：US20230021627A1

公开(公告)日：2023-01-26

申请号：US17443287

申请日：2021-07-23

Applicant: Cisco Technology, Inc.

Inventor： Jerome HENRY ,  Louis G. SAMUEL ,  Mark GRAYSON ,  Bart A. BRINCKMAN ,  Robert E. BARTON ,  Carlos M. PIGNATARO ,  Nagendra Kumar NAINAR ,  Matthew MACPHERSON

IPC: H04W12/08 ,  H04W12/69 ,  H04W12/06 ,  H04L29/06

Abstract: Federation policy exchange is provided in response to receiving a sharing query from an Access Point (AP) indicating that an associated wireless network supports federated identities with data sharing, determining whether the sharing query is within sharing preferences; and in response to determining that the sharing query is within the sharing preferences, transmitting, to the AP, a positive response for identity sharing that authorizes collection and sharing of identity data with at least one entity identified in a sharing policy for the associated wireless network. In various embodiments, federation policy exchange includes transmitting a support notification, via an AP, indicating support for federated identities with data sharing within a wireless network associated with the AP; and in response to receiving a first identify sharing preference from a User Equipment (UE) that indicates that negotiation is preferred, transmitting a sharing policy for the wireless network to the UE.