Distributed configuration management method of safety certificate gateways based on resource service management systems

Abstract

The invention discloses a distributed configuration management method of safety certificate gateways based on resource service management systems. The safety certificate gateways complete basic configuration work by aid of a local configuration module, and synchronizes resource information in a local resource service management system to the safety certificate gateways by aid of resource synchronization programs; the local resource service management system checks requests of accessing local sharing resources by remote safety certificate gateways, after the requests are passed, resource service management systems of both parties issue strategies, the resource synchronization programs are configured to respectively safety certificate gateway device configuration bases, and the safety certificate gateway executive programs are informed to execute new strategies. The distributed configuration management method has the advantages that the configuration work is clear in labor division, the configuration information is automatically synchronized, and the configuration processing is simple in logic; the strategy distribution processing is high in efficiency and does not cause large expense to the systems; real-time response of the control strategies is supported; the idea of graded deployment and secondary check is adopted, and the distributed sharing resource access model is strict.

Description

technical field [0001] The invention relates to a distributed configuration and management method of a security authentication gateway based on a resource service management system. By combining the resource service management system with a resource synchronization program, the security authentication gateway is configured synchronously to control the user's local or cross-domain access behavior. Background technique [0002] The general security authentication gateway device policy configuration method provides a configuration interface for the device, such as a web interface or a dedicated configuration management system, and completes the operation policy configuration of the own device such as the network address and the policy configuration for interacting with other devices in the configuration interface. [0003] The security authentication gateway is connected in series with the network path for the user to access the protected application. The user's behavior usually...

AI Technical Summary

Problems solved by technology

In the general policy configuration mode, the user's cross-domain access behavior requires interactive configuration between security authentication gateways, especially in the case of multiple security authentication gateways, different security authentication gateways manage different users and protect different application resources At this time, when users access application resources through security authentication gateways, users, applications, and permission information need to be manually configured in the security authentication gateways that the user access path passes through, and because the management domains of security authentication gateways are different, the configuration work is very complicated. time consuming

Images