Unlock instant, AI-driven research and patent intelligence for your innovation.

User access authority control system and method thereof

A technology for access rights and control systems, applied in transmission systems, electrical components, etc., to solve problems such as inability to finely control user access rights

Inactive Publication Date: 2012-07-11
北京神州数码云科信息技术有限公司
View PDF1 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] In view of the above-mentioned technical problems, the object of the present invention is to provide a user access authority control system and method based on DHCPv6 and 802.1x, which solves the problem of inability to finely control users after 802.1x authentication when users access the network in the prior art. access rights issue

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • User access authority control system and method thereof
  • User access authority control system and method thereof
  • User access authority control system and method thereof

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] The present invention will be further described below in conjunction with the accompanying drawings and through specific embodiments.

[0035] figure 2 It is a system block diagram of a user access authority control system in an embodiment of the present invention. Such as figure 2As shown, the user access control system includes multiple user terminals, access layer switches, aggregation layer switches, DHCPv6 servers, and authentication servers. In this embodiment, the authentication server is preferably a user service remote dial-up authentication (Remote Authentication Dial In User Service, Radius) server. Among them, the user terminal is connected to the network through the access switch, and the aggregation switch collects the DHCPv6 information forwarded by the access switch to forward to the DHCPv6 server and forwards the data packets from the access switch, and the Radius server checks the information sent by the access switch through the aggregation switch...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a user access authority control system comprising a user terminal, an access switch, a convergence switch, an address distribution server, and an authentication server, wherein the address distribution server is connected with the convergence switch by a network. The access switch is used to add access information to an option 37 filed for an address distribution request of the user terminal. The address distribution server selects an address pool distribution address according to the added access information. The authentication server issues network access authority information of a user terminal address to the access switch according to the distributed address. And the access switch updates an access control list (ACL) item according to the network access authority information so as to control the user terminal access authority. According to the invention, a dynamic host configuration protocol (DHCP) v6 interception unit that is accessed to a switch is used, so that classified management on user access authorities is realized.

Description

technical field [0001] The invention relates to the field of computer data communication, in particular to a system and method for controlling user access rights based on DHCPv6 and 802.1x. Background technique [0002] In a computer network, if a user terminal sends a network access request, the server responsible for IP address allocation in the network will assign a network (IP) address to the user terminal sending the network access request, so that the user terminal can access the network. Currently, the servers participating in the network access of user terminals in the network are usually DHCPv6 servers and DHCPv6 relay servers using a Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol, DHCP) supporting IPv6. DHCPv6 is a protocol for dynamically assigning IPv6 addresses and is widely used in various IPv6 networks. [0003] In the prior art, when a user terminal performs network access, the user terminal first sends a DHCP request message to the...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/12
Inventor 梁小冰
Owner 北京神州数码云科信息技术有限公司