CN112260863A - Organization-level network equipment connection management method and device and computer equipment - Google Patents
Organization-level network equipment connection management method and device and computer equipment Download PDFInfo
- Publication number
- CN112260863A CN112260863A CN202011103251.4A CN202011103251A CN112260863A CN 112260863 A CN112260863 A CN 112260863A CN 202011103251 A CN202011103251 A CN 202011103251A CN 112260863 A CN112260863 A CN 112260863A
- Authority
- CN
- China
- Prior art keywords
- network
- configuration information
- target
- network configuration
- network device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 230000008520 organization Effects 0.000 title claims abstract description 353
- 238000007726 management method Methods 0.000 title abstract description 211
- 238000000034 method Methods 0.000 claims abstract description 85
- 238000003860 storage Methods 0.000 claims abstract description 21
- 230000006870 function Effects 0.000 claims description 35
- 230000005540 biological transmission Effects 0.000 claims description 21
- 238000004590 computer program Methods 0.000 claims description 15
- 238000007619 statistical method Methods 0.000 claims description 10
- 238000012795 verification Methods 0.000 claims description 8
- 238000010586 diagram Methods 0.000 description 19
- 230000008569 process Effects 0.000 description 14
- 238000005516 engineering process Methods 0.000 description 11
- 238000004364 calculation method Methods 0.000 description 9
- 238000012545 processing Methods 0.000 description 5
- 230000001960 triggered effect Effects 0.000 description 5
- 238000004891 communication Methods 0.000 description 4
- JTJMJGYZQZDUJJ-UHFFFAOYSA-N phencyclidine Chemical compound C1CCCCN1C1(C=2C=CC=CC=2)CCCCC1 JTJMJGYZQZDUJJ-UHFFFAOYSA-N 0.000 description 4
- 238000013478 data encryption standard Methods 0.000 description 3
- 238000012544 monitoring process Methods 0.000 description 3
- 238000013475 authorization Methods 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 230000005856 abnormality Effects 0.000 description 1
- 238000013473 artificial intelligence Methods 0.000 description 1
- 238000004422 calculation algorithm Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000012937 correction Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000036541 health Effects 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000000737 periodic effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/16—Threshold monitoring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0891—Revocation or update of secret information, e.g. encryption key update or rekeying
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The application relates to a network equipment connection management method and device at an organization level, computer equipment and a storage medium. The method comprises the following steps: acquiring target network configuration information which is recorded on a network equipment management interface and corresponds to a target organization identifier, wherein the network equipment management interface is used for uniformly managing network equipment groups at an organization level; acquiring current network configuration information which is common to the network equipment group and corresponds to the target organization identification; comparing the target network configuration information with the current network configuration information to obtain changed network configuration information; and respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information. By adopting the method, the connection management efficiency of the network access equipment can be improved.
Description
Technical Field
The present application relates to the field of network technologies, and in particular, to an information configuration method and apparatus for a network device, a computer device, and a storage medium.
Background
When information configuration of a network device is required, a user usually opens a local configuration page entering the network device to perform information configuration of the network device. Or, the user performs information configuration on the network device through a platform of a manufacturer of the network device. However, the existing network device connection management method has the problem of low connection management efficiency of the network device.
Disclosure of Invention
In view of the foregoing, it is desirable to provide a method, an apparatus, a computer device and a storage medium for managing network device connection at an organization level, which can improve the connection management efficiency of the network device.
A method of organization-level network device connection management, the method comprising:
acquiring target network configuration information which is recorded on a network equipment management interface and corresponds to a target organization identifier, wherein the network equipment management interface is used for uniformly managing network equipment groups at an organization level;
acquiring current network configuration information which is common to the network equipment group and corresponds to the target organization identification;
comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
An apparatus for connection management of network devices at an organization level, the apparatus comprising:
the network equipment management interface is used for carrying out unified management on network equipment groups at an organization level;
the organization management module is used for acquiring current network configuration information which is public by the network equipment group and corresponds to the target organization identification;
the object model module is used for comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and the forwarding module is used for respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
In one embodiment, the operation platform module is configured to acquire network configuration information periodically reported by a target network device in the network device group; the organization management module is used for acquiring the stored latest network configuration information; the object model module is used for carrying out difference comparison on the latest network configuration information and the reported network configuration information to obtain a difference comparison result; the forwarding module is configured to send the difference network configuration information to the target network device through a connection channel with the target network device when the difference comparison result includes the difference network configuration information, so that the target network device performs wireless network configuration based on the difference network configuration information.
In one embodiment, the object model module is configured to, when the reported network configuration information is network configuration information of the target network device itself, compare the reported network configuration information with latest network configuration information in a device shadow file of the target network device to obtain a difference comparison result;
when the reported network configuration information contains the network configuration information of the target network device and the network configuration information matched with each other between the network devices, the latest network configuration information in the device shadow file of the target network device is combined with the public configuration information corresponding to the target organization identifier, and difference comparison is carried out on the latest network configuration information and the reported network configuration information, so that a difference comparison result is obtained.
In one embodiment, the operation platform module is configured to store the reported network configuration information; performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report; and sending the statistical form to a management terminal corresponding to the target organization identifier so that the management terminal displays the statistical form.
In one embodiment, the network device supports different types of networks; the target network configuration information corresponds to a target network type. The organization management module is used for acquiring the stored latest network configuration information of other network types except the target network type corresponding to the target organization identification;
the operation platform module is used for carrying out information conflict check on the target network configuration information of the target network type and the latest network configuration information of other network types;
and the organization management module is used for acquiring the current network configuration information which is public by the network equipment group corresponding to the target organization identification after the verification is passed.
In one embodiment, the object model module is configured to, when the sending of the changed network configuration information fails, resend the changed network configuration information to the network device that failed in sending; counting the number of times of retransmitting the changed network configuration information aiming at the network equipment with the failed transmission; and when the times reach a time threshold value, triggering an alarm aiming at the network equipment of which the counted times reach the time threshold value.
In one embodiment, the apparatus further comprises a key management module; the operation platform module is used for acquiring a secret key generation mode which is recorded in the network equipment management interface and corresponds to the target organization identifier; the secret key management module is used for calling a secret key generation function corresponding to the secret key generation mode based on the user secret key generation request to generate a user secret key when the user secret key generation request sent by any network device in the network device group is obtained; the forwarding module is configured to send the user key to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device updates the key based on the user key.
In one embodiment, the apparatus further comprises a key management module; the operation platform module is used for acquiring a secret key generation mode which is recorded in the network equipment management interface and corresponds to the target organization identifier; the secret key management module is used for calling a secret key generation function corresponding to the secret key generation mode based on a user secret key update request to generate an updated user secret key when the user secret key update request sent by a user terminal of any network device in a connected network device group is obtained; the forwarding module is configured to send the updated user key to the user terminal, and synchronize the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key update based on the updated user key.
In one embodiment, the forwarding module is configured to obtain a key set reported by a target network device in the network device group at regular time; the key management module is used for acquiring a current key set commonly used by the network equipment group; comparing the current key set with the reported key set to obtain a changed key; the forwarding module is configured to send the changed key to the target network device, so that the target network device updates the key based on the changed key.
In one embodiment, the operation platform is configured to acquire a network type entered on a network device management interface and a network access right corresponding to the network type; the key management module is used for generating a user key corresponding to the network type, and the user key has a network access right corresponding to the network type; the forwarding module is configured to send the user key and the network access right corresponding to the user key to each network device in the network device group, so that each network device configures the corresponding network access right for the user key.
In one embodiment, the operation platform is configured to receive a device binding request associated with a network device that does not join an organization identifier, where the device binding request includes a target organization identifier corresponding to the network device that does not join the organization identifier; the organization management module is used for establishing the binding relationship between the network equipment which is not added with the organization identifier and the target organization identifier based on the equipment binding request; and the operation platform is used for adding the equipment identifier of the network equipment bound with the target organization identifier to a network equipment management interface of the target organization identifier based on the binding relationship.
In one embodiment, the apparatus further comprises a key management module; the forwarding module is used for receiving connection information sent by the network device bound with the target organization identifier through a corresponding connection channel; the organization management module is used for acquiring current network configuration information which is common to the network equipment group corresponding to the target organization identifier when detecting that the network equipment bound with the target organization identifier does not carry out information initialization based on the connection information; the key management module is used for acquiring a current user key set which is public by the network equipment group and corresponds to the target organization identifier; the forwarding module is configured to send the current network configuration information and the current user key set to the network device to which the target organization identifier has been bound, so that the network device to which the target organization identifier has been bound performs initialization configuration based on the current network configuration information and the current user key set.
A computer device comprising a memory and a processor, the memory storing a computer program, the processor implementing the following steps when executing the computer program:
acquiring target network configuration information which is recorded on a network equipment management interface and corresponds to a target organization identifier, wherein the network equipment management interface is used for uniformly managing network equipment groups at an organization level;
acquiring current network configuration information which is common to the network equipment group and corresponds to the target organization identification;
comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
A computer-readable storage medium, on which a computer program is stored which, when executed by a processor, carries out the steps of:
acquiring target network configuration information which is recorded on a network equipment management interface and corresponds to a target organization identifier, wherein the network equipment management interface is used for uniformly managing network equipment groups at an organization level;
acquiring current network configuration information which is common to the network equipment group and corresponds to the target organization identification;
comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
According to the method, the device, the computer equipment and the storage medium for managing the network equipment connection at the organization level, the target network configuration information corresponding to the target organization identifier can be input into a network equipment management interface, and the network equipment group at the organization level is uniformly managed, namely, a network configuration inlet at the organization level is provided; the network configuration information input on the interface is compared with the current network configuration information shared by the network equipment group to obtain changed network configuration information, and the changed network configuration information is sent to each network equipment, so that the configuration of the network equipment under the same organization identifier can be issued only by configuring the organization identifier, and each equipment does not need to be configured respectively, thereby improving the connection management efficiency of the network equipment.
Drawings
FIG. 1 is a diagram of an application environment for a method of connection management for network devices at an organizational level in one embodiment;
FIG. 2 is an architectural diagram of an organization level network device connection management in one embodiment;
FIG. 3 is a flow diagram that illustrates a method for connection management for network devices at an organizational level, according to one embodiment;
FIG. 4 is a block diagram that illustrates an architectural flow diagram for a method for connection management for network devices at an organizational level, according to an embodiment;
FIG. 5 is a block diagram illustrating an exemplary architecture for network configuration information synchronization in accordance with an embodiment;
fig. 6 is a schematic flow chart illustrating a user key distribution process in an embodiment;
fig. 7 is a schematic flow chart illustrating an architecture for issuing a user key according to an embodiment;
FIG. 8 is a block diagram illustrating key update in one embodiment;
FIG. 9 is a block diagram of a function computation engine in one embodiment;
FIG. 10 is a flow diagram that illustrates binding of network devices in one embodiment;
FIG. 11 is a block diagram of an organization level network device connection management apparatus in one embodiment;
FIG. 12 is a diagram illustrating an internal structure of a computer device according to an embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
The method for managing the connection of the network equipment at the organization level can be applied to the application environment shown in fig. 1. The management terminal 110 communicates with the server 120 via a network, and the server 120 communicates with the network device 130 via the network. The management terminal 110 may be, but is not limited to, various personal computers, notebook computers, smart phones, tablet computers, and portable wearable devices. Network device 130 refers to a device for accessing a network. For example, the network device 130 may be a network Access device, such as an AC (Access Controller), an AP (Access Point), and the like. The server 120 may be an independent physical server, a server cluster or a distributed system formed by a plurality of physical servers, or a cloud server providing basic cloud computing services such as a cloud service, a cloud database, cloud computing, a cloud function, cloud storage, a network service, cloud communication, a middleware service, a domain name service, a security service, a CDN, a big data and artificial intelligence platform, and the like. The management terminal 110 may be, but is not limited to, a smart phone, a tablet computer, a notebook computer, a desktop computer, a smart speaker, a smart watch, and the like. The management terminal 110 and the server 120 may be directly or indirectly connected through wired or wireless communication, and the present application is not limited thereto. Cloud technology refers to a hosting technology for unifying serial resources such as hardware, software, network and the like in a wide area network or a local area network to realize calculation, storage, processing and sharing of data. Cloud technology (Cloud technology) is based on a general term of network technology, information technology, integration technology, management platform technology, application technology and the like applied in a Cloud computing business model, can form a resource pool, is used as required, and is flexible and convenient. Cloud computing technology will become an important support. Background services of the technical network system require a large amount of computing and storage resources, such as video websites, picture-like websites and more web portals. With the high development and application of the internet industry, each article may have its own identification mark and needs to be transmitted to a background system for logic processing, data in different levels are processed separately, and various industrial data need strong system background support and can only be realized through cloud computing. Public Cloud (Public Cloud) generally refers to a Cloud that can be used by a third party provider for a user, and is generally available through the Internet (free or low-cost), and the core attribute of the Public Cloud is a shared resource service. There are many instances of such a cloud that can provide services throughout the open public network today. The management terminal 110 is configured to display a network device management interface, and may enter target network configuration information corresponding to the target organization identifier in the network device management interface. The number of the management terminals 110, the servers 120, and the network devices 130 is not limited.
In one embodiment, as shown in FIG. 2, an architectural diagram of an organizational level network device connection management in one embodiment. The application end is located in the management terminal 110 in fig. 1, the cloud end is located in the server 120 in fig. 1, and the device end is located in the network device 130 in fig. 1. The application terminal can be realized by at least one of an applet, a webpage, a public number and an application program, but is not limited to the realization. That is, the network device management interface may be at least one of an applet, a web page, a public number, and an application program, but is not limited thereto. The cloud terminal mainly comprises four modules of organization management, secret key management, an operation platform and an object model. The organization management, the key management, the operation platform and the physical model can be in the same server, or can be in different servers but in the same server cluster.
The device side can be unified to access network equipment of different producers to the high in the clouds and manage through implanting the wireless configuration subassembly on the authority controller. The wireless configuration component provides functions of periodic data reporting, event reporting and data receiving and issuing. The wireless configuration component keeps long connection with the cloud end through a websocket protocol, the heartbeat is reported periodically, and the cloud end can monitor the running condition of the equipment in real time. And the authority controller and the wireless access point in the equipment end are both network equipment. The heartbeat refers to that in equipment monitoring, the server and each piece of equipment periodically send information to judge the health condition of the equipment and judge whether an opposite side is alive.
When a user issues wireless network configuration information aiming at a certain organization, the cloud service can automatically synchronize the network configuration information to all equipment under the organization. The network configuration information includes: the list of AC devices, the wireless network switch, SSID (Service Set Identifier), surfer scope, surfer authorization, guest password configuration, etc. are not limited thereto.
Key management is responsible for generating PPSK (Private pre-shared key) for an organization according to rules and ensuring that PPSK of each user in an organization is unique. The keys comprise an employee key, a visitor key, an organization asset key and the like, and different keys have respective network access authority, terminal connection limitation and the like. The administrator can configure through the application side.
The operation platform provides operation monitoring functions for the network equipment, including monitoring the flow rate, uplink and downlink rates, warning lamps of the network equipment and the like of the network equipment. Meanwhile, an organization level configuration interface is provided for the application end, and a user does not need to issue specific network equipment when carrying out network configuration and only needs to configure an organization identifier.
The object model records the configuration attribute of the network equipment, contains network configuration information and PPSK configuration, and determines whether to control and configure the equipment according to the period of the network equipment and the data reported by the events.
The Application can be accessed in a variety of different ways, including but not limited to applets, web pages, public numbers, and applications, using an API (Application Programming Interface) provided by the cloud.
According to the method for managing the connection of the network equipment at the organization level, a complete network configuration scheme is provided for the network equipment at the organization level, specific equipment does not need to be operated from the perspective of a user, all configuration is performed according to the organization level, the cloud service is responsible for interacting with all equipment under the organization, the equipment can be directly connected with the cloud service through the wireless configuration component, the user does not need to perform any configuration, the equipment can be used in a plug-and-play mode after power on and power on, meanwhile, the difference of different equipment manufacturers can be shielded, the cloud service is accessed through a unified protocol, the presentation and management are performed through a unified platform, automatic operation and maintenance can be completed through the wireless configuration component, and automatic error correction and alarm are performed on the problems that abnormality occurs in the use of the equipment, the configuration.
In an embodiment, as shown in fig. 3, a flowchart of a method for managing network device connection at an organization level in an embodiment is provided, and the method is described as applied to the server 120 in fig. 1, and includes the following steps:
The network equipment management interface is used for uniformly managing the network equipment groups at the organization level. The network device group at the organization level is a network device group in units of organization. For example, the organization may be a business, an organization, etc., and the organization identifier may be a business identifier, an organization identifier, etc. The target organization identification may be, but is not limited to, a target enterprise identification, a target organization identification. The target network configuration information refers to network configuration information input on a network equipment management interface. The target network configuration information may specifically refer to target network connection configuration information, which is used to configure configuration information related to network device connection. For example, the target network configuration information may be a wireless network switch, SSID (Service Set Identifier), surfer range, surfer authorization, wireless network name, wireless signal strength, wireless signal coverage, and the like, but is not limited thereto.
Specifically, a network device management interface is displayed on a management terminal that logs in with an account having administrator authority. And the management terminal acquires the recorded target network configuration information corresponding to the target organization identifier. The target organization identification can be input on a network equipment management interface, or can be automatically displayed on a management terminal after being logged in by an account with administrator authority. And the server acquires target network configuration information which is recorded on the network equipment management interface and corresponds to the target organization identification.
Each target organization identifier has a corresponding network device group. And the network device group includes at least two network devices. The network device group is configured with some network configuration information in common, that is, the current network configuration information of each device is the same.
Specifically, the server side obtains the stored current network configuration information which is common to the network device group corresponding to the target organization identification. The current network configuration information common to the network device group refers to the server-stored network configuration information common to and being used by the network device group. For example, the current network configuration information common to the network device group may be the wireless network name "network of company a". And the target network configuration item in the target network configuration information corresponds to the current network configuration item in the acquired current network configuration information. For example, the target network configuration information includes a wireless network switch and an SSID, and then the current network configuration item also includes the wireless network switch and the SSID.
Specifically, the server compares the target network configuration information with the current network configuration information to obtain the changed network configuration information. For example, the target network configuration information includes "a corporation's wireless hotspot" and "wireless network open", and the current network configuration information includes "a corporation's network" and "wireless network open", then the changed network configuration information is "a corporation's network changes to a corporation's wireless hotspot".
And 308, respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively performs wireless network configuration based on the changed network configuration information.
The network equipment group comprises at least two network equipment. Each network device in the network device group may be directly or indirectly connected to the server through the network. For example, the server and each network device in the network device group are connected through a WebSocket protocol. WebSocket is a Protocol for full duplex communication over a single TCP (Transmission Control Protocol) connection.
Specifically, the server side sends the changed network configuration information to each network device through a connection channel with each network device in the network device group. After receiving the changed network configuration information, each network device respectively performs wireless network configuration based on the changed network configuration information. For example, the network device group includes a network device a and a network device B. The server sends the changed network configuration information to the network equipment A through a connecting channel with the network equipment A, and the network equipment A carries out wireless network configuration based on the changed network configuration information; and the server sends the changed network configuration information to the network equipment B through a connecting channel with the network equipment B, and the network equipment B carries out wireless network configuration based on the changed network configuration information.
In this embodiment, each network device in the network device group is installed with a wireless configuration component. And each network device has a unique device identification for the network device in its wireless configuration component. The wireless configuration component may be an SDK (Software Development Kit) for configuring the wireless network. The server sends the changed network configuration information to the wireless configuration component of each network device through a connection channel with each network device in the network device group, so that each network device respectively performs wireless network configuration based on the changed network configuration information in the wireless configuration component.
According to the method for managing the network equipment connection at the organization level, target network configuration information corresponding to a target organization identifier can be input into a network equipment management interface, and a network equipment group at the organization level is managed in a unified manner, namely a network configuration inlet at the organization level is provided; the network configuration information input on the interface is compared with the current network configuration information shared by the network equipment group to obtain changed network configuration information, and the changed network configuration information is sent to each network equipment, so that the configuration of the network equipment under the same organization identifier can be issued only by configuring the organization identifier, and each equipment does not need to be configured respectively, thereby improving the connection management efficiency of the network equipment.
In one embodiment, the method for connection management of network devices at the organization level further comprises: acquiring network configuration information reported by target network equipment in a network equipment group at regular time; acquiring the stored latest network configuration information; carrying out difference comparison on the latest network configuration information and the reported network configuration information to obtain a difference comparison result; and when the difference comparison result comprises the difference network configuration information, sending the difference network configuration information to the target network equipment through a connecting channel with the target network equipment so that the target network equipment performs wireless network configuration based on the difference network configuration information.
The target network device may be any network device in the network device group. The reported network configuration information comprises network configuration information which is stored in the target network equipment and is common to the network equipment group. The reported network configuration information may also include other network configuration information, for example, network configuration information of interworking between the target network device and other network devices. The server stores the latest network configuration information including the latest network configuration information of the target network device stored by the server. The latest network configuration information stored by the server may also include network configuration information of interworking between the target network device and other network devices.
Specifically, the network devices in the network device group may report the network configuration information stored in the network device to the server at regular time. The server acquires network configuration information reported by target network equipment in the network equipment group at regular time. Wherein the timing period may be, but is not limited to, 1 hour, 2 hours, 1 day, 1 month, etc. The timing period may be configured as desired. The server acquires the latest network configuration information stored locally, and performs difference comparison on the latest network configuration information and the reported network configuration information to obtain a difference comparison result. And when the difference comparison result comprises the difference network configuration information, the server sends the difference network configuration information to the target network equipment through a connecting channel with the target network equipment so that the target network equipment carries out wireless network configuration based on the difference network configuration information. When the difference comparison result does not contain the difference network configuration information, the information does not need to be returned to the target network equipment.
In the method for managing the connection of the network devices at the organization level, the network devices under the identification of the target organization have the same target network configuration information as the requirement of the configuration of the network devices at the organization level, but in the use process of the network devices, due to network factors or human factors, for example, when a server issues network configuration, a certain network device is restarted or powered off, the network configuration information of the network device may be different from the network configuration information stored by the server, at the moment, the network device is required to report the network configuration information of itself at regular time, the stored latest network configuration information is compared with the reported network configuration information in a difference way to obtain a difference comparison result, and when the difference network configuration information is included, the difference network configuration information is returned, and the target network device is enabled to perform wireless network configuration based on the difference network configuration information, the method can correct errors in time after the network configuration of the network equipment is maliciously tampered.
In one embodiment, the performing a difference comparison between the latest network configuration information and the reported network configuration information to obtain a difference comparison result includes: when the reported network configuration information is the network configuration information of the target network equipment, comparing the reported network configuration information with the latest network configuration information in the equipment shadow file of the target network equipment to obtain a difference comparison result; when the reported network configuration information contains the network configuration information of the target network equipment and the network configuration information matched with the network equipment, the latest network configuration information in the equipment shadow file of the target network equipment is combined with the public configuration information corresponding to the target organization identifier, and difference comparison is carried out on the latest network configuration information and the reported network configuration information, so that a difference comparison result is obtained.
The stored latest network configuration information may include latest network configuration information in a device shadow of the network device, and may also include network configuration information of interworking between network devices.
The network configuration information of the target network device itself refers to network configuration information that the target network device can implement independently. And when the network equipment information of the network equipment changes, the network configuration information of other network equipment is not influenced. For example, the network configuration information of the target network device itself may be "network of company a", and the SSID of the target network device itself changes without affecting the configuration of other network devices. The network configuration information of the network devices is network configuration information that needs to be matched with each other. And if one of the network configuration information of the network devices that are coordinated with each other changes, the configuration information of other network devices may be affected. The device shadow file may be a JSON (JavaScript Object Notation) file. JSON is a lightweight data exchange format. The device shadow file stores the latest network configuration of a network device. The latest network configuration information for the target network device is stored in the device shadow file for the target network device. The public network configuration information of the target organization identifier refers to the public network configuration information of the network devices in the network device group of the target organization identifier. For example, the common network configuration information of the target organization identification may be wireless network coverage, wireless network coverage or network signal strength, etc. That is, the public network configuration information of the target organization identifier may be a global policy, and the server needs to perform difference comparison based on the network configuration information of the public network configuration information and the network configuration information of the network devices that are matched with each other, so as to obtain a difference comparison result.
Specifically, when only the network configuration information of the target network device is included in the network configuration information reported by the target network device, the server only needs to obtain the device shadow file of the target network device, and compares the reported network configuration information with the latest network configuration information in the device shadow file of the target network device, so as to obtain a difference comparison result.
When the reported network configuration information contains the network configuration information of the target network equipment and the network configuration information matched with each other between the network equipment, comparing the network configuration information of the target network equipment with the latest network configuration information in the equipment shadow file of the target network equipment; and carrying out difference comparison on the public configuration information corresponding to the target organization identification and the network configuration information matched with the network equipment to obtain a difference comparison result. For example, the network device transmits a wireless signal, and the wireless signals of the network devices in the network device group intersect with each other, then the target network device reports its own network signal strength and the detected signal strengths of other network devices, and the common configuration information requires that the wireless signal strength received by the user terminal reaches Y. And the server calculates the actual signal intensity of the target network equipment based on the network signal intensity reported by the target network equipment and the detected signal intensities of other network equipment. And the server compares the actual signal intensity with Y, and when the actual signal intensity cannot reach Y, the server can calculate the target signal intensity of the target network equipment according to Y and the detected signal intensities of other network equipment, wherein the target signal intensity is the difference network configuration information.
In the method for managing the network equipment connection at the organization level, when the reported network configuration information only comprises the network configuration information of the target network equipment, the reported network configuration information is only required to be compared with the latest network configuration information in the equipment shadow file; some network configurations of the multiple network devices need to be matched with each other, so when the reported network configuration information includes network configuration information of the target network device itself and network configuration information matched with each other between the network devices, the device shadow file of the target network device needs to be combined with public configuration information corresponding to the target organization identifier, and the method can be applied to more use scenes and can obtain a more accurate difference comparison result.
In one embodiment, the method for connection management of network devices at the organization level further comprises: storing the reported network configuration information; performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report; and sending the statistical form to a management terminal corresponding to the target organization identifier so that the management terminal displays the statistical form.
The display form of the statistical form may be a list display, and the like, but is not limited thereto.
Specifically, the server stores the network configuration information reported by the network device. And performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report. For example, if XX information is reported by network device a in X month and X day of X year and difference information is obtained after comparison, the server needs to generate a statistical report from the device A, XX information and the difference information. Or, the server may count the network configuration information and the corresponding difference network configuration information respectively reported by each network device in the network device group within a period of time, classify based on the device identifier of the network device, and count the number of times of sending the difference information corresponding to each network device and form a statistical report.
According to the method for managing the network equipment connection at the organization level, the network configuration information is reported and the differential network configuration information is issued invisible, so that statistical analysis needs to be carried out on the basis of the reported network configuration information and the corresponding differential network configuration information to generate a statistical report, the statistical report is sent to the management terminal corresponding to the target organization identifier, the statistical report is displayed on the management terminal, an administrator can know the running condition of the network equipment, and corresponding processing is carried out on the basis of the running condition of the network equipment.
In one embodiment, the network device supports different types of networks; the target network configuration information corresponds to a target network type. The method for managing the network device connection at the organization level further comprises the following steps: corresponding to the target organization identification, obtaining the stored latest network configuration information of other network types except the target network type; carrying out information conflict check on the target network configuration information of the target network type and the latest network configuration information of other network types; and after the verification is passed, executing the step of acquiring the current network configuration information which is common to the network equipment group corresponding to the target organization identification.
Wherein the network device may support different types of networks. Different types of networks such as guest networks, employee networks, and organizational asset networks. The organization asset network can be connected with the internet of things equipment under the identification of the target organization, such as printer and other internet of things equipment.
Specifically, the target network configuration information sent by the server is network configuration information of a target network type. And corresponding to the target organization identification, the server acquires the stored latest network configuration information of other network types except the target network type, and carries out information conflict check on the target network configuration information of the target network type and the latest network configuration information of other network types. And when the verification fails, returning the warning information of failing to pass the verification to the management terminal, and temporarily not executing the step of acquiring the current network configuration information which is common to the network equipment group corresponding to the target organization identifier. And after the verification is passed, acquiring the current network configuration information which is common to the network equipment group corresponding to the target organization identifier. For example, each network device in the network device group supports a guest network, an employee network, and an organization asset network. And configuring the SSID of the visitor network as an employee network on a network equipment management interface, and if the latest SSID of the employee network is also the employee network, the information conflict check is not passed.
In the above method for managing the connection of the network devices at the organization level, if the network devices support different types of networks, it is necessary to consider whether there is a conflict between different types of network configuration information, and if there is no information conflict, the step of obtaining the current network configuration information common to the network device group corresponding to the target organization identifier is executed, so that configuration errors can be avoided.
In one embodiment, the method for connection management of network devices at the organization level further comprises: when the changed network configuration information fails to be sent, the changed network configuration information is sent to the network equipment which fails to send again; counting the number of times of retransmitting the changed network configuration information aiming at the network equipment with failed transmission; and when the times reach the time threshold value, triggering an alarm aiming at the network equipment of which the counted times reach the time threshold value.
The number threshold may be configured as needed, and may be, for example, 1, 2, or 3, but is not limited thereto.
Specifically, when the transmission of the changed network configuration information fails, the server retransmits the changed network configuration information to the network device which failed in transmission. And aiming at the network equipment with failed transmission, the server counts the times of retransmitting the changed network configuration information. And when the times reach the time threshold, sending corresponding alarm information to the management terminal corresponding to the target organization identifier aiming at the network equipment of which the counted times reach the time threshold. For example, the server fails to send the changed network configuration information to the network device a, resends the changed network configuration information to the network device a, and counts the number of times of resending the changed network configuration information. When the number of retransmissions reaches 3, which means that the previous 2 transmissions failed, an alarm is triggered for network device a.
In the method for managing the connection of the network equipment at the organization level, in the process of issuing the changed network configuration information to the network equipment, because the network environments of each network equipment are different, the difference of transmission time and the situation of sending failure can occur, more than one network equipment is often associated under one organization identifier, when the sending of the changed network configuration information fails, the changed network configuration information is retransmitted, and the information can be guaranteed to be issued to the equipment through a retransmission mechanism; when the retransmission times reach the threshold value, it indicates that the network device may have a problem, or the network device is not on-line, etc., an alarm needs to be triggered, and the user checks the network status of the network device.
In one embodiment, as shown in fig. 4, an architecture flow diagram of a method for connection management of network devices at an organization level in one embodiment is shown. The user can issue network configuration information to the organization managed by the user through the network equipment management interface of the application end, wherein the network configuration information comprises: the wireless network switch, SSID, and terminal speed limit are not limited thereto.
It should be noted that, in the process of sending the network configuration information to the network devices, because the network environments of the network devices are different, there may be differences in transmission time, and in an extreme case, there may be transmission failures, and more than one device is often associated with one organization. The cloud object model guarantees data to be issued to the equipment in multiple modes, and 1) retransmission is carried out for three times at most after the data are issued to the equipment and the equipment fails or overtime occurs; 2) if the three times of failures, the operation platform is informed to report the alarm information, and the user checks the network condition of the equipment; 3) the wireless configuration component can periodically collect the current network configuration information of the network equipment and report the current network configuration information to the cloud, and the object model module can re-issue the incorrect configuration of the equipment. After the user is configured through the application terminal, the cloud service successfully receives and successfully verifies the parameters, the user can obtain a successful result to return, namely the user can see the result of configuration issuing, and the configuration issuing process is guaranteed by the cloud service, so that the user experience is enhanced.
In an embodiment, as shown in fig. 5, an architecture flow diagram of network configuration information synchronization in an embodiment includes:
And step 508, the physical model compares the device shadow file of the target network device at the cloud end with the reported network configuration information in combination with the network configuration information in the organization management to obtain a difference comparison result.
And step 514, the object model sends the network configuration information and the difference network configuration information reported by the target network equipment to the operation platform.
In the method for managing the network device connection at the organization level, the network configuration at the enterprise level requires that all devices under the enterprise have the same configuration, but the network configuration may be different from the cloud storage due to network or human factors during the use of the devices, and at this time, the current network configuration information of the devices needs to be reported to the cloud in an SDK period, and the cloud re-issues the differential configuration to the devices.
In an embodiment, as shown in fig. 6, a schematic flow chart of issuing a user key in an embodiment is shown. The method for managing the network device connection at the organization level further comprises the following steps:
Specifically, the management terminal displays the entered key generation mode on the network device management interface. And the server acquires a key generation mode corresponding to the target organization identifier and recorded in the network equipment management interface.
The condition that the network device in the network device group sends the user key generation request may include that the network device detects an expired user key and needs to update the expired user key. Or the network device needs to issue a user key to the joined user terminal. The key generation method corresponds to the key generation function. For example, the key generation method is a DES (Data Encryption Standard) method, and the corresponding key generation function is a DES function. The user key refers to PPSK or PSK.
Specifically, the server stores the target organization identifier and the key generation mode correspondingly. When a user key generation request sent by any network device in the network device group is acquired, the server calls a key generation function corresponding to the key generation mode based on the user key generation request to generate a user key.
Specifically, the server sends the user key to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device updates the key based on the user key.
In the method for managing the network device connection at the organization level, a secret key generation mode is input into a network device management interface, and the secret key generation mode is adopted for all the network devices under the target organization identifier; when a user key generation request sent by any network device in the network device group is acquired, a key generation function corresponding to a key generation mode is called to generate a user key, so that the uniqueness of the user key can be ensured, the generated user key is sent to the network device group under the organization identifier, the synchronization of the user keys on a plurality of network devices can be ensured, the user can be connected with the network devices under the same organization identifier through the same user key, and the connection efficiency of the network devices is improved.
In an embodiment, as shown in fig. 7, a schematic flow chart of architecture flow for issuing a user key in an embodiment includes:
Step 704, the operation platform sends the key generation function corresponding to the key generation mode to the key management module.
In step 708, the forwarding module sends the user key generation request to the key management module.
Step 710, the key management module invokes the key generation function through the function calculation engine based on the user key generation request to generate a user key, and sends the user key to the forwarding module.
In step 712, the forwarding module sends the user key to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device updates the key based on the user key.
According to the network equipment connection management method at the organization level, for the secret key management module, a user can customize a secret key generation algorithm or select a default scheme through an interface provided by the operation platform, the operation platform issues a generation function to a function calculation engine of the secret key management module, and after an event for generating the secret key is triggered, the generation function corresponding to the organization can be automatically called to generate the user secret key, and then the user secret key is issued to the corresponding network equipment through the forwarding module.
In one embodiment, the method for connection management of network devices at the organization level further comprises: acquiring a key generation mode corresponding to a target organization identifier and recorded in a network equipment management interface; when a user key updating request sent by a user terminal of any network device in a connected network device group is obtained, a key generating function corresponding to a key generating mode is called based on the user key updating request to generate an updated user key; and sending the updated user key to the user terminal, and synchronizing the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key update based on the updated user key.
The user terminal connected to any network device in the network device group is a terminal device having a user key.
Specifically, the server obtains a key generation mode corresponding to the target organization identifier, which is entered in a network device management interface. When the network equipment connecting interface of the user terminal of any network equipment in the network equipment group is connected with the user terminal, the user terminal can send a user key updating request to the server by triggering the key updating control. When a user key updating request sent by a user terminal of any network device in a connected network device group is acquired, a key generating function corresponding to a key generating mode is called based on the user key updating request, and an updated user key is generated. And the server returns the updated user key to the user terminal, and synchronizes the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key updating based on the updated user key.
In the method for managing the network device connection at the organization level, a secret key generation mode is input into a network device management interface, and the secret key generation mode is adopted for all the network devices under the target organization identifier; when a user key updating request sent by a user terminal of any network device in a connected network device group is acquired, namely a user needs to update a key, a key generation function corresponding to a key generation mode is called to generate the user key, so that the uniqueness of the user key can be ensured, the generated user key is sent to the network device group under an organization identifier, the synchronization of the user keys on a plurality of network devices can be ensured, and the user terminal can be connected with the network devices under the same organization identifier through the updated user key, so that the connection efficiency of the network devices is improved.
In one embodiment, the method for connection management of network devices at the organization level further comprises: acquiring a key set reported by target network equipment in a network equipment group at regular time; acquiring a current secret key set commonly used by a network equipment group; comparing the current key set with the reported key set to obtain a changed key; and sending the changed secret key to the target network equipment so that the target network equipment updates the secret key based on the changed secret key.
Specifically, the target network device in the network device group reports the key set stored in the target network device at regular time. The server obtains a key set reported by target network equipment in the network equipment group at regular time, and obtains a stored current key set shared by the network equipment group. Wherein the set of keys comprises at least two user keys. And the server compares the current key set with the reported key set to obtain the changed key. For example, if the current key set includes AAA and BBB, and BBB is an un-updated key, and the current key set common to the network device group is AAA and CCC, the server sends the changed key "BBB is updated to CCC" to the target network device, so that the target network device performs key update based on the changed key.
According to the method for managing the network device connection at the organization level, the user secret key needs to be issued to the network device group under the target organization identification, and when some network devices may have faults or are restarted in the issuing process, the network devices need to report the secret key set at regular time, compare whether the changed secret key exists or not, and send the changed secret key set to the target network devices, so that the target network devices update the secret key based on the changed secret key, the situation that some user terminals cannot access the network devices through the latest secret key is avoided, the user terminals are guaranteed to normally access the target network devices, and the user secret key can be corrected timely after being tampered maliciously.
In an embodiment, as shown in fig. 8, an architecture diagram of key update in an embodiment includes:
In step 812, the physical model sends the key set reported by the target network device and the changed key to the operation platform.
In one embodiment, as shown in FIG. 9, an architectural diagram of a function computation engine in one embodiment is shown. The key management module is based on a function calculation engine. The function calculation engine is based on the theoretical framework of Serverless (Serverless calculation), and is an implementation of Serverless. The server is a technical architecture concept based on the internet, and the application logic is not completely realized at a server, but the faas (function as a service) architecture is adopted to realize the application logic through function combination. When the device sends a calculation request to the database through the Network, the database triggers a function calculation event, and a calculation result can be returned to the user through a Content Delivery Network (CDN). The Serverless architecture can enable a developer to allocate computing resources as required without paying attention to the acquisition, operation and maintenance of the computing resources in the application construction process, and effectively saves application cost.
In one embodiment, the method for connection management of network devices at the organization level further comprises: acquiring a network type input on a network equipment management interface and a network access authority corresponding to the network type; generating a user secret key corresponding to the network type, wherein the user secret key has a network access authority corresponding to the network type; and respectively sending the user key and the network access authority corresponding to the user key to each network device in the network device group, so that each network device configures the corresponding network access authority for the user key.
Wherein the network type is used for distinguishing the access rights of users with different rights. The network type may specifically include at least one of, but is not limited to, an employee network, a guest network, and an organization asset network. Each network device may support a different network type of network. The network access rights may be, for example, that certain network access is restricted, and connection is not so limited.
Specifically, the server obtains a network type and a network access right corresponding to the network type, which are input on a network management interface, and generates a user key corresponding to the network type, wherein the user key has the network access right corresponding to the network type. And the server respectively sends the user key and the network access authority corresponding to the user key to each network device in the network device group, so that each network device configures the corresponding network access authority for the user key.
For example, the description is given by taking a network type as an employee network type, a corresponding network access authority as an employee access authority, and an employee access authority configured to access an intranet as an example, the employee network type and the corresponding employee access authority entered on a network device management interface are obtained, an employee key corresponding to the employee network type is generated, and the server sends the employee key and the employee access authority corresponding to the employee key to each network device in the network device group, so that each network device configures the corresponding employee access authority for the employee key. The user terminal accesses any network device in the network device group through the employee secret key, and can perform wireless internet access.
According to the method for managing the network equipment connection at the organization level, the network type and the corresponding network access authority can be input on a network equipment management interface, the user key under a certain network type is generated, the user access authority is limited through the user key, the user key and the access authority of the network equipment under the same organization identification can be managed in a unified mode, and the network equipment connection management efficiency is improved.
In one embodiment, the method for connection management of network devices at the organization level further comprises: receiving a device binding request associated with the network device which does not join the organization identifier, wherein the device binding request comprises a target organization identifier corresponding to the network device which does not join the organization identifier; based on the device binding request, establishing a binding relationship between the network device which is not added with the organization identifier and the target organization identifier; and based on the binding relationship, adding the device identifier of the network device to which the target organization identifier is bound into a network device management interface of the target organization identifier.
Wherein the device identification is used to uniquely identify a network device. The device identifier may specifically be an SN (Serial Number) or the like, but is not limited thereto.
In particular, the device binding request associated with the network device not joined to the organization identification may be sent by the management terminal. The management terminal can log in a network equipment management interface of a webpage version, input the equipment identification of the network equipment which is not added with the organization identification on the network equipment management interface, and generate an equipment binding request associated with the network equipment which is not added with the organization identification. Or, the management terminal may scan the graphic code of the network device that does not join the organization identifier through an applet or an application program, and generate a device binding request associated with the network device that does not join the organization identifier.
The server receives a device binding request associated with the network device which does not join the organization identifier, wherein the device binding request comprises a target organization identifier corresponding to the network device which does not join the organization identifier and a device identifier of the network device which does not join the organization identifier. Based on the device binding request, the server establishes a binding relationship between the network device which is not added with the organization identifier and the target organization identifier, and based on the binding relationship, adds the device identifier of the network device which is bound with the target organization identifier to a network device management interface of the target organization identifier, so that the target organization identifier management terminal displays the device identifier in the network device management interface corresponding to the target organization identifier. For example, the network device a does not join the organization identifier, the management terminal enters the device identifier a of the network device a and the corresponding target organization identifier "enterprise T" in the network device management interface, and generates a device binding request associated with the network device a. The server receives the device binding request associated with the network device A, establishes the binding relationship between the network device A and the enterprise T, and adds the identifier A of the successfully bound network device A to the network device management interface of the enterprise T.
According to the method for managing the network device connection at the organization level, under the scene of new device access, a device binding request associated with the network device which is not added with the organization identifier is received, the binding relation between the network device which is not added with the organization identifier and the target organization identifier is established, the device identifier of the network device which is bound with the target organization identifier is added into a network device management interface of the target organization identifier, the device identifier can be displayed on a management terminal, the unified management of the newly accessed network device is realized, and the network device management efficiency is improved.
In one embodiment, as shown in fig. 10, a flow diagram of network device binding in one embodiment is shown. There are two ways to add a device to an organization identity: 1) and logging in a web page, inputting the SN number of the new equipment, and binding the equipment with the organization identifier. 2) And (3) scanning the two-dimensional code on the equipment by using the applet or the APP to finish the binding of the equipment and the organization identifier. At this time, all operations are completed for the user, and only after the device is installed and powered on, the device is waited to automatically configure the network and the secret key. And after scanning the two-dimensional code of the equipment, the application terminal sends an equipment binding request to the operation platform. The operation platform sends a device binding request to the organization management. And binding the network equipment which is not added with the organization identifier by the organization management. At this time, the cloud service completes all the device binding processes, but the device is not online yet, and the state of the cloud storage is that network configuration is not completed and key initialization is not completed. And the operation platform sends the binding relation to the object model and the key management respectively. And the object model creates a new device shadow file of the device according to the current network configuration information corresponding to the target organization identifier. The key management module associates the device with the target organization identification. At this time, the cloud service completes all the device binding processes, but the device is not online yet, and the state of the cloud storage is that the network configuration and the key initialization are not completed. After the equipment is installed and powered on, the preset wireless configuration assembly can automatically establish websocket connection with the forwarding module. The forwarding module receives the new connection information and forwards the message to the key management and object model. And when detecting that the equipment has not finished the initialization of the network configuration and the secret key, the secret key management and object model issues the network configuration and the secret key of the organization identifier to the equipment through the forwarding module. After the equipment completes network configuration and initialization, a user can check the running state of the equipment through the application end, and at the moment, the equipment can also normally use a wireless network to surf the internet.
In one embodiment, the network device connection management method further includes: receiving connection information sent by the network equipment bound with the target organization identifier through a corresponding connection channel; when detecting that the network equipment bound with the target organization identification does not carry out information initialization based on the connection information, acquiring current network configuration information which is common to a network equipment group corresponding to the target organization identification; acquiring a current user key set which is public by a network equipment group and corresponds to a target organization identifier; and sending the current network configuration information and the current user key set to the network equipment bound with the target organization identifier so as to enable the network equipment bound with the target organization identifier to carry out initialization configuration based on the current network configuration information and the current user key set.
And the network equipment bound with the target organization identification is provided with a wireless configuration component. The current user key set refers to a set of keys that are common to and in use by a group of network devices stored by the server.
Specifically, after the network device bound with the target organization identifier is installed in a shop, the preset wireless configuration component may establish a websocket connection with the server. And the server receives the connection information sent by the network equipment bound with the target organization identification through the corresponding connection channel. And when detecting that the network equipment bound with the target organization identifier does not perform information initialization based on the connection information, the server acquires current network configuration information shared by the network equipment group corresponding to the target organization identifier and acquires a current user key set shared by the network equipment group corresponding to the target organization identifier. And the server sends the current network configuration information and the current user key set to the network equipment bound with the target organization identifier so as to enable the network equipment bound with the target organization identifier to carry out initialization configuration based on the current network configuration information and the current user key set.
In the method for managing network device connection at an organization level, after the network device bound with the target organization identifier is installed and powered on, the network device sends connection information through a corresponding connection channel, when the network device is not initialized with information, the current network configuration information and the current user key set which are commonly used by the network device group corresponding to the bound target organization identifier are obtained, and the current network configuration information and the current user key set are sent to the network device bound with the target organization identifier, so that the network device can perform initialized configuration based on the current network configuration information and the current user key set, complete new device access, and facilitate unified management of the network device.
In one embodiment, a method for connection management of network devices at an organization level includes:
step a1, receiving a device binding request associated with the network device not joined with the organization identifier, wherein the device binding request includes a target organization identifier corresponding to the network device not joined with the organization identifier.
Step a2, based on the device binding request, establishing the binding relationship between the network device not added with the organization identifier and the target organization identifier.
Step a3, based on the binding relationship, adding the device identifier of the network device to which the target organization identifier has been bound to the network device management interface of the target organization identifier.
Step a4, receiving the connection information sent by the network device bound with the target organization identifier via the corresponding connection channel.
Step a5, when detecting that the network device bound with the target organization identification does not perform information initialization based on the connection information, acquiring the current network configuration information common to the network device group corresponding to the target organization identification.
Step a6, obtaining the current user key set shared by the network device group corresponding to the target organization identification.
Step a7, sending the current network configuration information and the current user key set to the network device bound with the target organization identifier, so that the network device bound with the target organization identifier performs initialization configuration based on the current network configuration information and the current user key set.
Step a8, acquiring target network configuration information corresponding to the target organization identification, which is recorded in a network device management interface, wherein the network device management interface is used for uniformly managing network device groups at an organization level.
Step a9, corresponding to the target organization identification, obtains the stored latest network configuration information of other network types except the target network type.
Step a10, checking the information conflict between the target network configuration information of the target network type and the latest network configuration information of other network types.
Step a11, when the verification is passed, obtaining the current network configuration information shared by the network device group corresponding to the target organization identification.
Step a12, comparing the target network configuration information with the current network configuration information to obtain the changed network configuration information.
Step a13, the changed network configuration information is sent to each network device through the connection channel with each network device in the network device group, so that each network device performs wireless network configuration based on the changed network configuration information.
Step a14, network configuration information reported by target network devices in the network device group at regular time is obtained.
Step a15, the latest network configuration information stored is obtained.
Step a16, when the reported network configuration information is the network configuration information of the target network device itself, comparing the reported network configuration information with the latest network configuration information in the device shadow file of the target network device to obtain a difference comparison result.
Step a17, when the reported network configuration information contains the network configuration information of the target network device itself and the network configuration information of the network devices which are mutually matched, the latest network configuration information in the device shadow file of the target network device is combined with the public configuration information corresponding to the target organization identifier, and the public configuration information is compared with the reported network configuration information to obtain a difference comparison result.
Step a18, when the difference comparison result includes the difference network configuration information, the difference network configuration information is sent to the target network device through the connection channel with the target network device, so that the target network device performs wireless network configuration based on the difference network configuration information.
Step a19, when the transmission of the changed network configuration information fails, the changed network configuration information is retransmitted to the network device with failed transmission.
Step a20, counting the number of times of retransmitting the changed network configuration information for the network device with failed transmission.
Step a20, when the number of times reaches the threshold number of times, an alarm is triggered for the network device whose counted number of times reaches the threshold number of times.
Step a21, storing the reported network configuration information.
Step a22, performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report.
Step a23, sending the statistical form to the management terminal corresponding to the target organization identifier, so that the management terminal displays the statistical form.
Step a24, obtaining the key generating mode corresponding to the target organization identification and recorded in the network equipment management interface.
Step a25, when a user key generation request sent by any network device in the network device group is acquired, calling a key generation function corresponding to a key generation mode based on the user key generation request to generate a user key, where the user key has a network access right corresponding to a network type, and the network type and the corresponding network right are configured on a network device management interface.
Step a26, the user key is sent to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device updates the key based on the user key, and each network device configures a corresponding network access right for the user key.
Step a27, when a user key update request sent by a user terminal of any network device in the connected network device group is acquired, based on the user key update request, a key generation function corresponding to the key generation mode is called, and an updated user key is generated.
Step a28, sending the updated user key to the user terminal, and synchronizing the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key update based on the updated user key.
Step a29, obtaining a key set reported by a target network device in the network device group at regular time.
Step a30, obtaining a current key set common to the network device group.
Step a31, comparing the current key set with the reported key set to obtain the changed key.
Step a32, sending the changed key to the target network device, so that the target network device updates the key based on the changed key.
According to the method for managing the network equipment connection at the organization level, target network configuration information corresponding to a target organization identifier can be input into a network equipment management interface, and a network equipment group at the organization level is managed in a unified manner, namely a network configuration inlet at the organization level is provided; comparing the network configuration information input on the interface with current network configuration information shared by the network equipment group to obtain changed network configuration information, sending the changed network configuration information to each network equipment, and realizing configuration issuing of the network equipment under the same organization identifier only by configuring the organization identifier without respectively configuring each equipment, thereby improving the connection management efficiency of the network equipment and timely correcting errors after the network configuration of the network equipment or the user secret key is maliciously tampered; the statistical report is displayed on the management terminal, so that an administrator can know the running condition of the network equipment and perform corresponding processing based on the running condition of the network equipment; the method and the system can ensure the synchronization of the user keys on a plurality of network devices, and the user can connect the network devices under the same organization identification through the same user key, thereby improving the connection efficiency of the network devices.
It should be understood that although the various steps in the flow charts of fig. 2-10 are shown in order as indicated by the arrows, the steps are not necessarily performed in order as indicated by the arrows. The steps are not performed in the exact order shown and described, and may be performed in other orders, unless explicitly stated otherwise. Moreover, at least some of the steps in fig. 2-10 may include multiple steps or multiple stages, which are not necessarily performed at the same time, but may be performed at different times, which are not necessarily performed in sequence, but may be performed in turn or alternately with other steps or at least some of the other steps.
In one embodiment, as shown in fig. 11, an apparatus for managing network device connection at an organization level is provided, and the apparatus may be a part of a computer device using a software module or a hardware module, or a combination of the two modules, and specifically includes: an operations platform module 1102, an organization management module 1104, an object model module 1106, and a forwarding module 1108, wherein:
the operation platform module 1102 is configured to acquire target network configuration information corresponding to a target organization identifier, which is entered in a network device management interface, where the network device management interface is configured to perform unified management on a network device group at an organization level;
an organization management module 1104, configured to acquire current network configuration information that is common to the network device group corresponding to the target organization identifier;
an object model module 1106, configured to compare the target network configuration information with the current network configuration information to obtain changed network configuration information;
the forwarding module 1108 is configured to send the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device performs wireless network configuration based on the changed network configuration information.
The network equipment connection management device at the organization level can input target network configuration information corresponding to a target organization identifier on a network equipment management interface and uniformly manage a network equipment group at the organization level, namely, a network configuration inlet at the organization level is provided; the network configuration information input on the interface is compared with the current network configuration information shared by the network equipment group to obtain changed network configuration information, and the changed network configuration information is sent to each network equipment, so that the configuration of the network equipment under the same organization identifier can be issued only by configuring the organization identifier, and each equipment does not need to be configured respectively, thereby improving the connection management efficiency of the network equipment.
In an embodiment, the operation platform module 1102 is configured to obtain network configuration information periodically reported by a target network device in a network device group; the organization management module 1104 is used for acquiring the stored latest network configuration information; the object model module 1106 is configured to perform difference comparison between the latest network configuration information and the reported network configuration information to obtain a difference comparison result; the forwarding module 1108 is configured to send the difference network configuration information to the target network device through a connection channel with the target network device when the difference comparison result includes the difference network configuration information, so that the target network device performs wireless network configuration based on the difference network configuration information.
In the above-mentioned connection management device for network devices at an organization level, because the requirement of the configuration of the network devices at the organization level is that the network devices under the identification of the target organization have the same target network configuration information, but in the use process of the network devices, due to network factors or human factors, for example, when a server issues network configuration, a certain network device is restarting or powering off, the network configuration information of the network device may be different from the network configuration information stored by the server, at this time, the network device is required to report its own network configuration information at regular time, the stored latest network configuration information is compared with the reported network configuration information to obtain a difference comparison result, when the difference network configuration information is included, the difference network configuration information is returned, and the target network device is enabled to perform wireless network configuration based on the difference network configuration information, the method can correct errors in time after the network configuration of the network equipment is maliciously tampered.
In one embodiment, the object model module 1106 is configured to, when the reported network configuration information is network configuration information of a target network device itself, compare the reported network configuration information with latest network configuration information in a device shadow file of the target network device to obtain a difference comparison result;
when the reported network configuration information contains the network configuration information of the target network equipment and the network configuration information matched with the network equipment, the latest network configuration information in the equipment shadow file of the target network equipment is combined with the public configuration information corresponding to the target organization identifier, and difference comparison is carried out on the latest network configuration information and the reported network configuration information, so that a difference comparison result is obtained.
When the reported network configuration information only includes the network configuration information of the target network device, the network device connection management device at the organization level only needs to compare the reported network configuration information with the latest network configuration information in the device shadow file; some network configurations of the multiple network devices need to be matched with each other, so when the reported network configuration information includes network configuration information of the target network device itself and network configuration information matched with each other between the network devices, the device shadow file of the target network device needs to be combined with public configuration information corresponding to the target organization identifier, and the method can be applied to more use scenes and can obtain a more accurate difference comparison result.
In one embodiment, the operation platform module 1102 is configured to store the reported network configuration information; performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report; and sending the statistical form to a management terminal corresponding to the target organization identifier so that the management terminal displays the statistical form.
In the above organization-level network device connection management apparatus, since the reporting of the network configuration information and the issuing of the differential network configuration information are invisible, statistical analysis needs to be performed based on the reported network configuration information and the corresponding differential network configuration information to generate a statistical report, the statistical report is sent to the management terminal corresponding to the target organization identifier, and the statistical report is displayed on the management terminal, so that an administrator can know the operation condition of the network device and perform corresponding processing based on the operation condition of the network device.
In one embodiment, the network device supports different types of networks; the target network configuration information corresponds to a target network type. The organization management module 1104 is used for acquiring the stored latest network configuration information of other network types except the target network type corresponding to the target organization identification;
the operation platform module 1102 is configured to perform information conflict check on target network configuration information of a target network type and latest network configuration information of other network types;
the organization management module 1104 is configured to, after the verification is passed, acquire current network configuration information common to the network device group corresponding to the target organization identifier.
In the above organization level network device connection management apparatus, if the network device supports different types of networks, it needs to consider whether there is a conflict between different types of network configuration information, and if there is no information conflict, then the step of obtaining the current network configuration information common to the network device group corresponding to the target organization identifier is executed, so as to avoid configuration errors.
In one embodiment, the object model module 1106 is configured to, when the sending of the changed network configuration information fails, resend the changed network configuration information to the network device that failed in sending; counting the number of times of retransmitting the changed network configuration information aiming at the network equipment with failed transmission; and when the times reach the time threshold value, triggering an alarm aiming at the network equipment of which the counted times reach the time threshold value.
In the above organization-level network device connection management apparatus, in the process of issuing the changed network configuration information to the network devices, since the network environments of each network device are different, there may be a difference in transmission time and a situation of transmission failure, and more than one network device is often associated with one organization identifier, when the changed network configuration information is failed to be sent, the changed network configuration information is retransmitted, and information can be guaranteed to be issued to the devices through a retransmission mechanism; when the retransmission times reach the threshold value, it indicates that the network device may have a problem, or the network device is not on-line, etc., an alarm needs to be triggered, and the user checks the network status of the network device.
In one embodiment, the apparatus further comprises a key management module; the operation platform module 1102 is configured to acquire a key generation manner corresponding to the target organization identifier, which is entered in the network device management interface; the secret key management module is used for calling a secret key generation function corresponding to a secret key generation mode based on a user secret key generation request to generate a user secret key when the user secret key generation request sent by any network device in the network device group is obtained; the forwarding module 1108 is configured to send the user key to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device performs key update based on the user key.
The network device connection management device at the organization level inputs a secret key generation mode on a network device management interface, and the secret key generation mode is adopted for the network devices under the target organization identifier; when a user key generation request sent by any network device in the network device group is acquired, a key generation function corresponding to a key generation mode is called to generate a user key, so that the uniqueness of the user key can be ensured, the generated user key is sent to the network device group under the organization identifier, the synchronization of the user keys on a plurality of network devices can be ensured, the user can be connected with the network devices under the same organization identifier through the same user key, and the connection efficiency of the network devices is improved.
In one embodiment, the apparatus further comprises a key management module; the operation platform module 1102 is configured to acquire a key generation manner corresponding to the target organization identifier, which is entered in the network device management interface; the secret key management module is used for calling a secret key generating function corresponding to a secret key generating mode based on a user secret key updating request to generate an updated user secret key when the user secret key updating request sent by the user terminal of any network device in the connected network device group is obtained; the forwarding module 1108 is configured to send the updated user key to the user terminal, and synchronize the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key update based on the updated user key.
The network device connection management device at the organization level inputs a secret key generation mode on a network device management interface, and the secret key generation mode is adopted for the network devices under the target organization identifier; when a user key updating request sent by a user terminal of any network device in a connected network device group is acquired, namely a user needs to update a key, a key generation function corresponding to a key generation mode is called to generate the user key, so that the uniqueness of the user key can be ensured, the generated user key is sent to the network device group under an organization identifier, the synchronization of the user keys on a plurality of network devices can be ensured, and the user terminal can be connected with the network devices under the same organization identifier through the updated user key, so that the connection efficiency of the network devices is improved.
In an embodiment, the forwarding module 1108 is configured to obtain a key set reported by a target network device in the network device group at a fixed time; the key management module is used for acquiring a current key set commonly used by the network equipment group; comparing the current key set with the reported key set to obtain a changed key; the forwarding module 1108 is configured to send the changed key to the target network device, so that the target network device performs key update based on the changed key.
According to the network equipment connection management device at the organization level, the user secret key needs to be issued to the network equipment group under the target organization identification, and when some network equipment may have faults or is restarted in the issuing process, the network equipment needs to report the secret key set at regular time, compare whether the changed secret key exists or not, and send the changed secret key to the target network equipment, so that the target network equipment updates the secret key based on the changed secret key, the situation that some user terminals cannot access the network equipment through the latest secret key is avoided, the user terminals are guaranteed to normally access the target network equipment, and the user secret key can be corrected timely after being maliciously tampered.
In one embodiment, the operation platform is used for acquiring a network type recorded on a network equipment management interface and a network access authority corresponding to the network type; the key management module is used for generating a user key corresponding to the network type, and the user key has network access authority corresponding to the network type; the forwarding module is configured to send the user key and the network access right corresponding to the user key to each network device in the network device group, so that each network device configures the corresponding network access right for the user key.
According to the network equipment connection management device at the organization level, the network type and the corresponding network access authority can be input on a network equipment management interface, the user key under a certain network type is generated, the user access authority is limited through the user key, the user key and the access authority of the network equipment under the same organization identification can be uniformly managed, and the network equipment connection management efficiency is improved.
In one embodiment, the operation platform is configured to receive a device binding request associated with a network device that does not join an organization identifier, where the device binding request includes a target organization identifier corresponding to the network device that does not join the organization identifier; the organization management module 1104 is configured to establish a binding relationship between the network device that is not added with the organization identifier and the target organization identifier based on the device binding request; the operation platform is used for adding the device identifier of the network device bound with the target organization identifier to a network device management interface of the target organization identifier based on the binding relationship.
The network device connection management device at the organization level receives a device binding request associated with a network device which does not add an organization identifier in a scene of new device access, establishes a binding relationship between the network device which does not add the organization identifier and a target organization identifier, adds the device identifier of the network device which is bound with the target organization identifier to a network device management interface of the target organization identifier, and can display the device identifier on a management terminal, thereby realizing unified management of the newly accessed network device and improving the network device management efficiency.
In one embodiment, the apparatus further comprises a key management module; the forwarding module 1108 is configured to receive connection information sent by the network device bound with the target organization identifier through a corresponding connection channel; the organization management module 1104 is configured to, when it is detected based on the connection information that the network device to which the target organization identifier is bound is not initialized, obtain current network configuration information common to a network device group corresponding to the target organization identifier; the key management module is used for acquiring a current user key set which is public by the network equipment group and corresponds to the target organization identifier; the forwarding module 1108 is configured to send current network configuration information and a current user key set to the network device to which the target organization identifier has been bound, so that the network device to which the target organization identifier has been bound performs initialization configuration based on the current network configuration information and the current user key set.
In the above network device connection management apparatus at the organization level, after the network device to which the target organization identifier has been bound is installed and powered on, the network device may send connection information through a corresponding connection channel, and when the network device is not initialized with information, the network device may obtain current network configuration information and a current user key set that are common to a network device group corresponding to the bound target organization identifier, and send the current network configuration information and the current user key set to the network device to which the target organization identifier has been bound, so that the network device may perform initialized configuration based on the current network configuration information and the current user key set, complete new device access, and facilitate unified management of the network device.
For specific limitations of the organization-level network device connection management apparatus, reference may be made to the above limitations of the organization-level network device connection management method, which is not described herein again. The modules in the network device connection management apparatus at the organization level may be implemented in whole or in part by software, hardware, and a combination thereof. The modules can be embedded in a hardware form or independent from a processor in the computer device, and can also be stored in a memory in the computer device in a software form, so that the processor can call and execute operations corresponding to the modules.
In one embodiment, a computer device is provided, which may be a server, and its internal structure diagram may be as shown in fig. 12. The computer device includes a processor, a memory, and a network interface connected by a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device comprises a nonvolatile storage medium and an internal memory. The non-volatile storage medium stores an operating system, a computer program, and a database. The internal memory provides an environment for the operation of an operating system and computer programs in the non-volatile storage medium. The database of the computer device is used for storing data. The network interface of the computer device is used for communicating with an external terminal through a network connection. The computer program is executed by a processor to implement an organization level network device connection management method.
Those skilled in the art will appreciate that the architecture shown in fig. 12 is merely a block diagram of some of the structures associated with the disclosed aspects and is not intended to limit the computing devices to which the disclosed aspects apply, as particular computing devices may include more or less components than those shown, or may combine certain components, or have a different arrangement of components.
In one embodiment, a computer device is further provided, which includes a memory and a processor, the memory stores a computer program, and the processor implements the steps of the above method embodiments when executing the computer program.
In an embodiment, a computer-readable storage medium is provided, in which a computer program is stored which, when being executed by a processor, carries out the steps of the above-mentioned method embodiments.
In one embodiment, a computer program product or computer program is provided that includes computer instructions stored in a computer-readable storage medium. The computer instructions are read by a processor of a computer device from a computer-readable storage medium, and the computer instructions are executed by the processor to cause the computer device to perform the steps in the above-mentioned method embodiments.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by hardware instructions of a computer program, which can be stored in a non-volatile computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. Any reference to memory, storage, database or other medium used in the embodiments provided herein can include at least one of non-volatile and volatile memory. Non-volatile Memory may include Read-Only Memory (ROM), magnetic tape, floppy disk, flash Memory, optical storage, or the like. Volatile Memory can include Random Access Memory (RAM) or external cache Memory. By way of illustration and not limitation, RAM can take many forms, such as Static Random Access Memory (SRAM) or Dynamic Random Access Memory (DRAM), among others.
The technical features of the above embodiments can be arbitrarily combined, and for the sake of brevity, all possible combinations of the technical features in the above embodiments are not described, but should be considered as the scope of the present specification as long as there is no contradiction between the combinations of the technical features.
The above-mentioned embodiments only express several embodiments of the present application, and the description thereof is more specific and detailed, but not construed as limiting the scope of the invention. It should be noted that, for a person skilled in the art, several variations and modifications can be made without departing from the concept of the present application, which falls within the scope of protection of the present application. Therefore, the protection scope of the present patent shall be subject to the appended claims.
Claims (15)
1. A method for connection management of network devices at an organization level, the method comprising:
acquiring target network configuration information which is recorded on a network equipment management interface and corresponds to a target organization identifier, wherein the network equipment management interface is used for uniformly managing network equipment groups at an organization level;
acquiring current network configuration information which is common to the network equipment group and corresponds to the target organization identification;
comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
2. The method of claim 1, further comprising:
acquiring network configuration information reported by target network equipment in the network equipment group at regular time;
acquiring the stored latest network configuration information;
carrying out difference comparison on the latest network configuration information and the reported network configuration information to obtain a difference comparison result;
and when the difference comparison result comprises difference network configuration information, sending the difference network configuration information to the target network equipment through a connecting channel of the target network equipment so as to enable the target network equipment to carry out wireless network configuration based on the difference network configuration information.
3. The method of claim 2, wherein the comparing the latest network configuration information with the reported network configuration information to obtain a difference comparison result comprises:
when the reported network configuration information is the network configuration information of the target network equipment, comparing the reported network configuration information with the latest network configuration information in the equipment shadow file of the target network equipment to obtain a difference comparison result;
when the reported network configuration information contains the network configuration information of the target network device and the network configuration information matched with each other between the network devices, the latest network configuration information in the device shadow file of the target network device is combined with the public configuration information corresponding to the target organization identifier, and difference comparison is carried out on the latest network configuration information and the reported network configuration information, so that a difference comparison result is obtained.
4. A method according to claim 2 or 3, characterized in that the method further comprises:
storing the reported network configuration information;
performing statistical analysis based on the reported network configuration information and the corresponding difference network configuration information, and generating a statistical report;
and sending the statistical form to a management terminal corresponding to the target organization identifier so that the management terminal displays the statistical form.
5. The method of claim 1, wherein the network device supports different types of networks; the target network configuration information corresponds to a target network type; the method further comprises the following steps:
corresponding to the target organization identification, obtaining the stored latest network configuration information of other network types except the target network type;
carrying out information conflict check on the target network configuration information of the target network type and the latest network configuration information of other network types;
and after the verification is passed, executing the step of acquiring the current network configuration information which is common to the network equipment group corresponding to the target organization identification.
6. The method of claim 1, further comprising:
when the changed network configuration information fails to be sent, the changed network configuration information is sent to the network equipment which fails to send again;
counting the number of times of retransmitting the changed network configuration information aiming at the network equipment with the failed transmission;
and when the times reach a time threshold value, triggering an alarm aiming at the network equipment of which the counted times reach the time threshold value.
7. The method of claim 1, further comprising:
acquiring a key generation mode corresponding to the target organization identifier and recorded in the network equipment management interface;
when a user key generation request sent by any network device in a network device group is acquired, calling a key generation function corresponding to the key generation mode based on the user key generation request to generate a user key;
and respectively sending the user key to each network device in the network device group through a connection channel with each network device in the network device group, so that each target network device updates the key based on the user key.
8. The method of claim 1, further comprising:
acquiring a key generation mode corresponding to the target organization identifier and recorded in the network equipment management interface;
when a user key updating request sent by a user terminal of any network device in a connected network device group is obtained, a key generating function corresponding to the key generating mode is called based on the user key updating request to generate an updated user key;
and sending the updated user key to the user terminal, and synchronizing the updated user key to each network device in the network device group corresponding to the target organization identifier, so that the user terminal performs wireless network connection through the updated user key, and the network devices in the network device group perform key update based on the updated user key.
9. The method according to claim 7 or 8, characterized in that the method further comprises:
acquiring a key set reported by target network equipment in the network equipment group at regular time;
acquiring a current secret key set commonly used by the network equipment group;
comparing the current key set with the reported key set to obtain a changed key;
and sending the changed secret key to the target network equipment so that the target network equipment updates the secret key based on the changed secret key.
10. The method of claim 1, further comprising:
acquiring a network type input on a network equipment management interface and a network access authority corresponding to the network type;
generating a user secret key corresponding to the network type, wherein the user secret key has a network access right corresponding to the network type;
and respectively sending the user key and the network access authority corresponding to the user key to each network device in the network device group, so that each network device configures the corresponding network access authority for the user key.
11. The method of claim 1, further comprising:
receiving a device binding request associated with a network device which does not join an organization identifier, wherein the device binding request comprises a target organization identifier corresponding to the network device which does not join the organization identifier;
based on the device binding request, establishing a binding relationship between the network device which is not added with the organization identifier and the target organization identifier;
and based on the binding relationship, adding the device identifier of the network device bound with the target organization identifier into a network device management interface of the target organization identifier.
12. The method of claim 11, further comprising:
receiving connection information sent by the network equipment bound with the target organization identifier through a corresponding connection channel;
when detecting that the network equipment bound with the target organization identifier does not perform information initialization based on the connection information, acquiring current network configuration information which is common to a network equipment group corresponding to the target organization identifier;
acquiring a current user key set which is public by the network equipment group and corresponds to the target organization identification;
and sending the current network configuration information and the current user key set to the network device bound with the target organization identifier, so that the network device bound with the target organization identifier performs initialization configuration based on the current network configuration information and the current user key set.
13. An apparatus for connection management of network devices at an organization level, the apparatus comprising:
the network equipment management interface is used for carrying out unified management on network equipment groups at an organization level;
the organization management module is used for acquiring current network configuration information which is public by the network equipment group and corresponds to the target organization identification;
the object model module is used for comparing the target network configuration information with the current network configuration information to obtain changed network configuration information;
and the forwarding module is used for respectively sending the changed network configuration information to each network device through a connection channel with each network device in the network device group, so that each network device respectively carries out wireless network configuration based on the changed network configuration information.
14. A computer device comprising a memory and a processor, the memory storing a computer program, characterized in that the processor, when executing the computer program, implements the steps of the method of any of claims 1 to 12.
15. A computer-readable storage medium, in which a computer program is stored which, when being executed by a processor, carries out the steps of the method according to any one of claims 1 to 12.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011103251.4A CN112260863B (en) | 2020-10-15 | 2020-10-15 | Organization-level network device connection management method and device and computer device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011103251.4A CN112260863B (en) | 2020-10-15 | 2020-10-15 | Organization-level network device connection management method and device and computer device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112260863A true CN112260863A (en) | 2021-01-22 |
| CN112260863B CN112260863B (en) | 2024-05-14 |
Family
ID=74242222
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011103251.4A Active CN112260863B (en) | 2020-10-15 | 2020-10-15 | Organization-level network device connection management method and device and computer device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112260863B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113472587A (en) * | 2021-07-12 | 2021-10-01 | 山东大学 | Internet of things equipment and object model binding method and system based on network communication |
| CN113572630A (en) * | 2021-02-10 | 2021-10-29 | 腾讯科技(深圳)有限公司 | Method and device for generating network configuration information, electronic equipment and medium |
| CN114629907A (en) * | 2022-03-25 | 2022-06-14 | 广州助蜂网络科技有限公司 | Management and control method and device for parking lot equipment |
| CN114726756A (en) * | 2022-03-30 | 2022-07-08 | 联想(北京)有限公司 | Configuration monitoring method and equipment |
| CN115080063A (en) * | 2022-06-17 | 2022-09-20 | 阿里巴巴(中国)有限公司 | Service processing method based on edge calculation, edge device and readable storage medium |
| US20230116431A1 (en) * | 2021-10-13 | 2023-04-13 | Charter Communications Operating, Llc | Client-driven dynamic server-side configuration validation |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH11346224A (en) * | 1998-06-01 | 1999-12-14 | Hitachi Ltd | Network management system and method therefor |
| US20090083401A1 (en) * | 2007-09-20 | 2009-03-26 | Electronics And Telecommunications Research Institute | System and method for automatically setting up configurations of home network |
| JP2009302625A (en) * | 2008-06-10 | 2009-12-24 | Mitsubishi Electric Corp | Network configuration information collection analysis system, network configuration information collection analysis server, and network configuration information collection analysis method |
| US20110078289A1 (en) * | 2009-09-25 | 2011-03-31 | Realtek Semiconductor Corp. | Network configuration method for networking device and associated network configuration module |
| CN102594579A (en) * | 2011-01-06 | 2012-07-18 | 卓思网络公司 | Automatic configuration and network deployment for network devices |
| JP2016181795A (en) * | 2015-03-24 | 2016-10-13 | Necディスプレイソリューションズ株式会社 | Network system and network setting method |
| CN110635944A (en) * | 2019-09-03 | 2019-12-31 | 苏州浪潮智能科技有限公司 | Cluster network configuration method and device, electronic equipment and storage medium |
| CN110719209A (en) * | 2019-10-31 | 2020-01-21 | 北京浪潮数据技术有限公司 | Cluster network configuration method, system, equipment and readable storage medium |
| CN111356149A (en) * | 2018-12-24 | 2020-06-30 | 中兴通讯股份有限公司 | Wireless network configuration method and device |
| WO2020168984A1 (en) * | 2019-02-22 | 2020-08-27 | 阿里巴巴集团控股有限公司 | Network configuration method and apparatus, device, and system |
| CN114172806A (en) * | 2020-08-19 | 2022-03-11 | 美的智慧家居科技有限公司 | Network configuration updating method of Internet of things equipment and related device thereof |
-
2020
- 2020-10-15 CN CN202011103251.4A patent/CN112260863B/en active Active
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPH11346224A (en) * | 1998-06-01 | 1999-12-14 | Hitachi Ltd | Network management system and method therefor |
| US20090083401A1 (en) * | 2007-09-20 | 2009-03-26 | Electronics And Telecommunications Research Institute | System and method for automatically setting up configurations of home network |
| JP2009302625A (en) * | 2008-06-10 | 2009-12-24 | Mitsubishi Electric Corp | Network configuration information collection analysis system, network configuration information collection analysis server, and network configuration information collection analysis method |
| US20110078289A1 (en) * | 2009-09-25 | 2011-03-31 | Realtek Semiconductor Corp. | Network configuration method for networking device and associated network configuration module |
| CN102594579A (en) * | 2011-01-06 | 2012-07-18 | 卓思网络公司 | Automatic configuration and network deployment for network devices |
| JP2016181795A (en) * | 2015-03-24 | 2016-10-13 | Necディスプレイソリューションズ株式会社 | Network system and network setting method |
| CN111356149A (en) * | 2018-12-24 | 2020-06-30 | 中兴通讯股份有限公司 | Wireless network configuration method and device |
| WO2020168984A1 (en) * | 2019-02-22 | 2020-08-27 | 阿里巴巴集团控股有限公司 | Network configuration method and apparatus, device, and system |
| CN110635944A (en) * | 2019-09-03 | 2019-12-31 | 苏州浪潮智能科技有限公司 | Cluster network configuration method and device, electronic equipment and storage medium |
| CN110719209A (en) * | 2019-10-31 | 2020-01-21 | 北京浪潮数据技术有限公司 | Cluster network configuration method, system, equipment and readable storage medium |
| CN114172806A (en) * | 2020-08-19 | 2022-03-11 | 美的智慧家居科技有限公司 | Network configuration updating method of Internet of things equipment and related device thereof |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113572630A (en) * | 2021-02-10 | 2021-10-29 | 腾讯科技(深圳)有限公司 | Method and device for generating network configuration information, electronic equipment and medium |
| CN113472587A (en) * | 2021-07-12 | 2021-10-01 | 山东大学 | Internet of things equipment and object model binding method and system based on network communication |
| US20230116431A1 (en) * | 2021-10-13 | 2023-04-13 | Charter Communications Operating, Llc | Client-driven dynamic server-side configuration validation |
| US11658875B2 (en) * | 2021-10-13 | 2023-05-23 | Charter Communications Operating, Llc | Client-driven dynamic server-side configuration validation |
| CN114629907A (en) * | 2022-03-25 | 2022-06-14 | 广州助蜂网络科技有限公司 | Management and control method and device for parking lot equipment |
| CN114726756A (en) * | 2022-03-30 | 2022-07-08 | 联想(北京)有限公司 | Configuration monitoring method and equipment |
| CN115080063A (en) * | 2022-06-17 | 2022-09-20 | 阿里巴巴(中国)有限公司 | Service processing method based on edge calculation, edge device and readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112260863B (en) | 2024-05-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112260863B (en) | Organization-level network device connection management method and device and computer device | |
| US10965772B2 (en) | Interface invocation method and apparatus for hybrid cloud | |
| US11711682B2 (en) | Cross-resource subscription for M2M service layer | |
| US11088903B2 (en) | Hybrid cloud network configuration management | |
| US11042474B2 (en) | Scheduled tests for endpoint agents | |
| US10261836B2 (en) | Dynamic dispatching of workloads spanning heterogeneous services | |
| US9882958B1 (en) | Network based machine-to-machine system for monitoring | |
| US8924461B2 (en) | Method, system, and computer readable medium for remote assistance, support, and troubleshooting | |
| US8910129B1 (en) | Scalable control system for test execution and monitoring utilizing multiple processors | |
| US9172765B2 (en) | Polling-based secure network message notification system and method with performance enhancing features | |
| US10972564B2 (en) | System and method for automating actions in distributed computing | |
| WO2014152076A1 (en) | Retry and snapshot enabled cross-platform synchronized communication queue | |
| US20150149629A1 (en) | User online state querying method and apparatus | |
| WO2021021267A1 (en) | Scheduled tests for endpoint agents | |
| CN112714166B (en) | Multi-cluster management method and device for distributed storage system | |
| US20170223136A1 (en) | Any Web Page Reporting and Capture | |
| AU2021230848B2 (en) | Communication apparatus, program, communication method, information processing method, information processing apparatus, and communication system | |
| CN113590355A (en) | Method for realizing workflow callback message and message gateway system | |
| US11582345B2 (en) | Context data management interface for contact center | |
| CN112565340A (en) | Service scheduling method, device, computer system and medium for distributed application | |
| JP2015118459A (en) | Image formation device, information terminal, server device, data processing system, communication method for image formation device, communication method for information terminal, communication method for server device, and program | |
| CN116827772A (en) | Network configuration method, device, equipment and storage medium | |
| CN114546470A (en) | Data processing method, service platform, computer readable storage medium and processor | |
| CN109033767A (en) | A kind of method and device forming registration information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant |