A method and system for controlling the user network access right

A technology for network access rights and users, applied in user identity/authority verification, transmission systems, electrical components, etc., can solve the problems of increasing firewall pressure, network access rights relying on hardware devices, and complex management, to achieve the effect of simplifying dependence

Active Publication Date: 2007-10-17
ZTE CORP
View PDF0 Cites 37 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0002]With the rapid development of Internet applications, there are various users in the network managed by operators, and the control of network access rights after authentication of different types of users has complicated management, Network access rights are overly dependent on hardware devices, and access control cannot be performed for specific users, etc.
After the current client is authenticated, if the address translation control is performed on the port according to NAT conversion, it cannot be specific to a certain user; there are also specific address access control based on the firewall, which increases the pressure on the firewall, and the cost of the firewall is also high. Relatively high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for controlling the user network access right
  • A method and system for controlling the user network access right

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The technical solution of the present invention will be described in more detail below with reference to the drawings and embodiments.

[0039] A method for controlling user network access authority, comprising pre-configuration of network access authority, dynamic address request and network access authority selection after user authentication, and IP address allocation for controlling user network access authority.

[0040] Pre-configuration phase:

[0041] (1) Network equipment configures the corresponding relationship between address segments and network access rights, which is controlled and configured by network equipment for ACL (Access Control List) of different address segments, and said network equipment includes switches, routers, access servers, etc.

[0042] (2) RADIUS configures the corresponding relationship between the unique identifier of the user equipment and the level of network access authority. The corresponding relationship can be but not limited ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method and system for controlling the user network access authority, including the presetting phase: the corresponding relationship between the network equipment configuration address portion and the network access authority; the corresponding relationship between the combination configured unique user equipment identifier for RADIUS server and DHCP server and address pool information. After the user authentication, IP address allocation phase for dynamic address request and network access authority selection, controlling of user network access authority: the DHCP server and RADIUS server may get the address pool information according to the unique identifier of user equipment and return to the user equipment, the user equipment may get the network access authority for corresponding network equipment configuration according to this address pool information. With the invention, directly control during the authentication, and dynamic address acquisition, simply and effectively realize the network access authority control for different user authenticated, simplify the dependency for network equipment.

Description

technical field [0001] The invention relates to a method for controlling network access authority after user authentication by combining RADIUS (remote authentication user dial-in service) authentication with DHCP (dynamic host configuration protocol) address management. Background technique [0002] With the rapid development of Internet applications, there are various users in the network managed by operators, and the control of network access rights after authentication of different types of users has complicated management, network access rights are too dependent on hardware devices, and access control cannot be performed for specific users. And other issues. After the current client is authenticated, if the address translation control is performed on the port according to NAT conversion, it cannot be specific to a certain user; there are also specific address access control based on the firewall, which increases the pressure on the firewall, and the cost of the firewall...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/32H04L29/06
Inventor 丁柏潘大乾解华国
Owner ZTE CORP
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap