CN114448986A - License control method based on MC centralized management system - Google Patents
License control method based on MC centralized management system Download PDFInfo
- Publication number
- CN114448986A CN114448986A CN202210002088.5A CN202210002088A CN114448986A CN 114448986 A CN114448986 A CN 114448986A CN 202210002088 A CN202210002088 A CN 202210002088A CN 114448986 A CN114448986 A CN 114448986A
- Authority
- CN
- China
- Prior art keywords
- license
- centralized management
- management system
- control method
- method based
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 24
- 238000013475 authorization Methods 0.000 claims description 8
- 238000012795 verification Methods 0.000 claims description 7
- 238000007726 management method Methods 0.000 abstract description 52
- 230000007246 mechanism Effects 0.000 abstract description 5
- 238000004891 communication Methods 0.000 abstract description 3
- 238000005516 engineering process Methods 0.000 abstract description 3
- 238000013024 troubleshooting Methods 0.000 abstract description 2
- 238000007689 inspection Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 230000006872 improvement Effects 0.000 description 3
- 238000013480 data collection Methods 0.000 description 1
- 230000010365 information processing Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000000737 periodic effect Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0631—Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a License control method based on an MC centralized management system, wherein the centralized management is realized by managing a plurality of associated subordinate systems or software and hardware through a unified identity authentication mechanism by means of a modern network communication technology, so that the real-time sharing of data is realized, the management cost is low, the information flattening management is realized, the authority management is realized, the data distribution management is realized, the labor cost, the management cost and the troubleshooting cost are reduced, and the License control method is suitable for the multi-user management. The load balancing equipment state under numerous customer networks can be monitored in real time through the centralized management system, equipment system information is visually displayed, license of the load balancing equipment is managed in a large scale, and a Keepalive keep-alive mechanism is carried out.
Description
Technical Field
The invention relates to the technical field of computer information processing, in particular to a License control method based on an MC centralized management system.
Background
Load balancing is a key component of the highly available network infrastructure, and is typically used to distribute workload across multiple servers to improve the performance and reliability of a website, application, database, or other service. The centralized management is to manage a plurality of associated subordinate systems or software and hardware by means of a modern network communication technology and a unified identity authentication mechanism, so that the real-time sharing of data is realized, the management cost is low, the information flat management is realized, the authority management is realized, and the like.
At present, a load balancer has a License management function, but License is manually uploaded, and periodic maintenance and inspection are carried out; in order to ensure the load balancing efficiency, a large number of load balancers are arranged on a client core network, and when manual inspection is omitted, a client faces the problems of access card pause, server downtime and the like, and the problem of inspection also needs one load balancer to inspect, so that the labor cost, the management cost and the problem inspection cost are greatly increased; the problems that data collection is not timely, the states of a plurality of load balancing devices cannot be monitored in real time and the like are also revealed. Therefore, a License control method based on the MC centralized management system is a problem to be solved urgently.
Disclosure of Invention
The invention aims to solve the technical problem of a License control method based on an MC centralized management system
In order to solve the technical problem, the technical scheme provided by the invention is a License control method based on an MC centralized management system, which comprises the following steps:
the method comprises the following steps: generating a unique serial number of a centralized management system and generating a public key and a private key;
step two: encrypting license information and a serial number by using a public key through a high-grade encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates for the first time and performs authority authentication on license after starting up every time, and only opens partial functions of the authority authentication;
step five: binding the load balancing equipment to a centralized management system through the unique ID of the load balancing equipment;
step six: distributing license of corresponding bandwidth to selectable configuration flow bandwidth of the load balancer;
step seven: keepalive keep-alive is carried out on the load balancing equipment which has issued license, and the equipment is guaranteed to be available.
As an improvement, the way of generating the public key and the private key in the first step is to adopt an openssl tool.
As an improvement, in the third step, if the decryption fails, the verification fails, the license upload failure is returned, and if the verification fails and the authorization termination date is returned, information such as license bandwidth is displayed.
As an improvement, in the fourth step, if the authorization is terminated or the unique serial number authentication fails, the related function is closed, and the device is not available.
Compared with the prior art, the invention has the advantages that: the centralized management is to manage a plurality of associated subordinate systems or software and hardware by a unified identity authentication mechanism by means of modern network communication technology, realize real-time sharing of data, have low management cost, flat management of information, authority management, data authority management and the like, reduce labor cost, management cost and troubleshooting cost. The load balancing equipment state under numerous customer networks can be monitored in real time through the centralized management system, equipment system information is visually displayed, license of the load balancing equipment is managed in a large scale, and a Keepalive keep-alive mechanism is carried out.
Drawings
Fig. 1 is a flowchart of a License control method based on an MC centralized management system according to the present invention.
Fig. 2 is a schematic diagram of a centralized management system of the License control method based on the MC centralized management system of the present invention.
Fig. 3 is a schematic diagram of a License control method based on the MC centralized management system according to the present invention.
Fig. 4 is a License state diagram of the License control method based on the MC centralized management system according to the present invention.
Detailed Description
The License control method based on the MC centralized management system according to the present invention will be further described in detail with reference to the accompanying drawings.
With reference to fig. 1-4, a License control method based on MC centralized management system includes the following steps:
the method comprises the following steps: generating a unique serial number of a centralized management system and generating a public key and a private key;
step two: encrypting license information and a serial number by using a public key through a high-grade encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates for the first time and performs authority authentication on license after starting up every time, and only opens partial functions of the authority authentication;
step five: binding the load balancing equipment to a centralized management system through the unique ID of the load balancing equipment;
step six: distributing license of corresponding bandwidth to selectable configuration flow bandwidth of the load balancer;
step seven: keepalive keep-alive is carried out on the load balancing equipment which has issued license, and the equipment is guaranteed to be available.
And generating the public and private keys in the first step by adopting an openssl tool.
And if the decryption fails in the third step, the verification fails, the license upload is returned, and if the verification passes and the authorization termination date is returned, information such as license bandwidth is displayed.
And in the fourth step, if the authorization is terminated or the unique serial number authentication fails, the related functions are closed, and the equipment is unavailable.
The invention relates to a License control method based on an MC centralized management system, which comprises the following specific implementation processes:
generating a unique serial number of a centralized management system and generating a public key and a private key through an openssl tool; encrypting license information and a serial number by using a public key through an Advanced Encryption Standard (AES) in cryptography;
uploading the corresponding license to a centralized management system, decrypting the license by the centralized management system, if decryption fails, failing to pass verification, returning license uploading failure, and if passing returning correct and authorization termination date, displaying information such as license bandwidth;
the centralized management platform activates for the first time and performs authority authentication on license after starting up each time, only partial functions of the authority authentication are opened, if authorization is terminated or the unique serial number authentication fails, the related functions are closed, and the equipment is unavailable;
binding the load balancing equipment to a centralized management system through the unique ID of the load balancing equipment;
distributing license of corresponding bandwidth to selectable configuration flow bandwidth of the load balancer;
keepalive keep-alive is carried out on the load balancing equipment which has issued license, and the equipment is guaranteed to be available.
The following are the conditions for the implementation:
1. installing and deploying MC centralized management system hardware in a customer network;
2. the large batch of load balancers and the MC centralized management system realize network accessibility;
3. the load balancer version is the MC requirement version and above.
The present invention and its embodiments have been described above, and the description is not intended to be limiting, and the drawings are only one embodiment of the present invention, and the actual structure is not limited thereto. In summary, those skilled in the art should appreciate that they can readily use the disclosed conception and specific embodiments as a basis for designing or modifying other structures for carrying out the same purposes of the present invention without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (4)
1. A License control method based on an MC centralized management system is characterized in that: the method comprises the following steps:
the method comprises the following steps: generating a unique serial number of a centralized management system and generating a public key and a private key;
step two: encrypting license information and a serial number by using a public key through a high-grade encryption standard in cryptography;
step three: uploading the corresponding license to a centralized management system, and decrypting the license by the centralized management system;
step four: the centralized management platform activates for the first time and performs authority authentication on license after starting up every time, and only opens partial functions of the authority authentication;
step five: binding the load balancing equipment to a centralized management system through the unique ID of the load balancing equipment;
step six: distributing license of corresponding bandwidth to selectable configuration flow bandwidth of the load balancer;
step seven: keepalive keep-alive is carried out on the load balancing equipment which has issued license, and the equipment is guaranteed to be available.
2. The License control method based on the MC centralized management system as claimed in claim 1, wherein: and generating the public and private keys in the first step by adopting an openssl tool.
3. The License control method based on the MC centralized management system as claimed in claim 1, wherein: and if the decryption fails in the third step, the verification fails, the license upload is returned, and if the verification passes and the authorization termination date is returned, information such as license bandwidth is displayed.
4. The License control method based on the MC centralized management system as claimed in claim 1, wherein: and in the fourth step, if the authorization is terminated or the unique serial number authentication fails, the related functions are closed, and the equipment is unavailable.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210002088.5A CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210002088.5A CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114448986A true CN114448986A (en) | 2022-05-06 |
| CN114448986B CN114448986B (en) | 2024-03-01 |
Family
ID=81365585
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210002088.5A Active CN114448986B (en) | 2022-01-04 | 2022-01-04 | License control method based on MC centralized management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114448986B (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080064501A1 (en) * | 2005-04-28 | 2008-03-13 | Bally Gaming, Inc. | Download and configuration capable gaming machine operating system, gaming machine and method |
| CN103067211A (en) * | 2013-01-25 | 2013-04-24 | 烽火通信科技股份有限公司 | License management and authentication method and system for passive optical network equipment |
| CN103207965A (en) * | 2013-03-13 | 2013-07-17 | 杭州华三通信技术有限公司 | Method and device for License authentication in virtual environment |
| CN108200055A (en) * | 2017-12-29 | 2018-06-22 | 深圳市安佳威视信息技术有限公司 | A kind of software approach of embedded product intellectual property protection |
| US10263789B1 (en) * | 2016-03-28 | 2019-04-16 | Amazon Technologies, Inc. | Auto-generation of security certificate |
| CN110996319A (en) * | 2019-11-01 | 2020-04-10 | 北京握奇智能科技有限公司 | System and method for performing activation authorization management on software service |
| CN111245844A (en) * | 2020-01-14 | 2020-06-05 | 南通先进通信技术研究院有限公司 | Centralized control method based on core network equipment License |
| CN113806786A (en) * | 2021-11-18 | 2021-12-17 | 北京持安科技有限公司 | Software authorization management method, system, equipment and storage medium |
-
2022
- 2022-01-04 CN CN202210002088.5A patent/CN114448986B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080064501A1 (en) * | 2005-04-28 | 2008-03-13 | Bally Gaming, Inc. | Download and configuration capable gaming machine operating system, gaming machine and method |
| CN103067211A (en) * | 2013-01-25 | 2013-04-24 | 烽火通信科技股份有限公司 | License management and authentication method and system for passive optical network equipment |
| CN103207965A (en) * | 2013-03-13 | 2013-07-17 | 杭州华三通信技术有限公司 | Method and device for License authentication in virtual environment |
| US10263789B1 (en) * | 2016-03-28 | 2019-04-16 | Amazon Technologies, Inc. | Auto-generation of security certificate |
| CN108200055A (en) * | 2017-12-29 | 2018-06-22 | 深圳市安佳威视信息技术有限公司 | A kind of software approach of embedded product intellectual property protection |
| CN110996319A (en) * | 2019-11-01 | 2020-04-10 | 北京握奇智能科技有限公司 | System and method for performing activation authorization management on software service |
| CN111245844A (en) * | 2020-01-14 | 2020-06-05 | 南通先进通信技术研究院有限公司 | Centralized control method based on core network equipment License |
| CN113806786A (en) * | 2021-11-18 | 2021-12-17 | 北京持安科技有限公司 | Software authorization management method, system, equipment and storage medium |
Non-Patent Citations (1)
| Title |
|---|
| 侯正雄;周兴社;王云岚;钟冬;: "网格环境中面向按需服务的软件license管理方法", 华中科技大学学报(自然科学版), no. 2 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114448986B (en) | 2024-03-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11997220B2 (en) | Scalable certificate management system architectures | |
| US11005290B2 (en) | Electric grid control system based on peer-to-peer network | |
| CA2899198C (en) | Method and system for automatically managing secrets in multiple data security jurisdiction zones | |
| EP2037651A1 (en) | Method and system for accessing devices in a secure manner | |
| JP6790195B2 (en) | Initialization of automated public key infrastructure | |
| CN1763684A (en) | Method and system for backup and restore of a context encryption key | |
| CN101366233A (en) | Methods and system for managing security keys within a wireless network | |
| CN104735087A (en) | Public key algorithm and SSL (security socket layer) protocol based method of optimizing security of multi-cluster Hadoop system | |
| CN105577677A (en) | Remote login method and system based on J2EE | |
| CN115189896B (en) | Virtual cloud password service system and method | |
| WO2019063256A1 (en) | System, in particular authenticity system | |
| CN110768963B (en) | Trusted security management platform with distributed architecture | |
| US20240031370A1 (en) | Authentication/authorization framework for a process control or automation system | |
| CN114448986A (en) | License control method based on MC centralized management system | |
| CN102957539A (en) | Digital signature management and verification system and method for distributed software | |
| CN202153753U (en) | Remote communication service device of industrial Internet distributed system | |
| CN110460562A (en) | A kind of long-range Activiation method of POS terminal and system | |
| CN113760449A (en) | Power transmission and transformation three-dimensional design data sharing system based on desktop cloud xView | |
| Ateeq et al. | Encryption as a service for multi-cloud environment | |
| CN112513840A (en) | Scalable certificate management system architecture | |
| EP3993339B1 (en) | Certificate management in a technical system | |
| US20220137601A1 (en) | Certificate Management Integrated into a Plant Planning Tool | |
| CN109922033A (en) | A kind of self-service bidding terminal management method and its device of identity document | |
| US20230267188A1 (en) | Control System for a Technical Installation and Method for Removing One or More Certificates | |
| CN116226064B (en) | Method, system, terminal and storage medium for sharing operation and maintenance data of power grid |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |