公开(公告)号：US20170223010A1

公开(公告)日：2017-08-03

申请号：US15488067

申请日：2017-04-14

Applicant: VMware, Inc.

Inventor： Anthony J. WILKINSON ,  Per Olov LARSSON ,  Ashley NUTTALL ,  Hans CHRISTENSON ,  Tom ELLIOTT ,  Steven SIGEL ,  Adam GROSS

IPC: H04L29/06

CPC classification number: H04L63/0815 ,  G06F21/335 ,  G06F21/34 ,  G06F21/41 ,  G06F21/445 ,  G06F2009/45587 ,  H04L9/3226 ,  H04L9/3234 ,  H04L9/3263 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0884 ,  H04L63/10 ,  H04L2209/56

Abstract: A user accesses a remote session, the connection to which is managed by a connection broker, according to a single sign-on (SSO) process. The SSO process includes the user entering his or her credentials and being authenticated to the connection broker. In addition to user authentication, the SSO process includes connection broker authentication to confirm that the connection broker is trustworthy. When the connection broker is authenticated, the user credentials are transmitted to the connection broker in a secure manner and the connection broker forwards them onto a machine hosting the remote session so that the user can be logged into the remote session without entering his or her credentials again.

公开(公告)号：US20150200932A1

公开(公告)日：2015-07-16

申请号：US14587923

申请日：2014-12-31

Applicant: VMware, Inc.

Inventor： Anthony WILKINSON ,  Per Olov LARSSON ,  Ashley NUTTALL ,  Hans CHRISTENSON ,  Tom ELLIOTT ,  Steven SIGEL ,  Adam GROSS

IPC: H04L29/06

CPC classification number: H04L63/0815 ,  G06F21/335 ,  G06F21/34 ,  G06F21/41 ,  G06F21/445 ,  G06F2009/45587 ,  H04L9/3226 ,  H04L9/3234 ,  H04L9/3263 ,  H04L9/3273 ,  H04L63/0428 ,  H04L63/0807 ,  H04L63/0823 ,  H04L63/083 ,  H04L63/0853 ,  H04L63/0884 ,  H04L63/10 ,  H04L2209/56

Abstract: A user accesses a remote session, the connection to which is managed by a connection broker, according to a single sign-on (SSO) process. The SSO process includes the user entering his or her credentials and being authenticated to the connection broker. In addition to user authentication, the SSO process includes connection broker authentication to confirm that the connection broker is trustworthy. When the connection broker is authenticated, the user credentials are transmitted to the connection broker in a secure manner and the connection broker forwards them onto a machine hosting the remote session so that the user can be logged into the remote session without entering his or her credentials again.

Abstract translation: 根据单点登录（SSO）进程，用户访问远程会话，由连接代理管理的连接。 SSO进程包括用户输入他或她的凭据并被认证给连接代理。 除了用户身份验证之外，SSO进程还包括连接代理身份验证，以确认连接代理是值得信赖的。 当连接代理被认证时，用户凭证以安全的方式传送到连接代理，并且连接代理将它们转发到托管远程会话的机器上，以便用户可以登录远程会话而不输入他或她的凭证 再次。