CN105471905B - The realization method and system of AAA in a kind of stacking system - Google Patents

The realization method and system of AAA in a kind of stacking system Download PDF

Info

Publication number
CN105471905B
CN105471905B CN201511025845.7A CN201511025845A CN105471905B CN 105471905 B CN105471905 B CN 105471905B CN 201511025845 A CN201511025845 A CN 201511025845A CN 105471905 B CN105471905 B CN 105471905B
Authority
CN
China
Prior art keywords
aaa
equipment
user
module
subtask
Prior art date
Application number
CN201511025845.7A
Other languages
Chinese (zh)
Other versions
CN105471905A (en
Inventor
马聪
张超迪
Original Assignee
迈普通信技术股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 迈普通信技术股份有限公司 filed Critical 迈普通信技术股份有限公司
Priority to CN201511025845.7A priority Critical patent/CN105471905B/en
Publication of CN105471905A publication Critical patent/CN105471905A/en
Application granted granted Critical
Publication of CN105471905B publication Critical patent/CN105471905B/en

Links

Abstract

The invention discloses the implementation method of AAA in stacking system a kind of, applied to comprising main equipment and at least two from the stacking system of equipment, the method specifically includes: main equipment is grouped all from equipment, forms multiple member device groups;The member device group includes at least one from equipment, and each member device group is connected with an aaa server.The present invention also provides a kind of systems using the method.In the present invention, main equipment and can individually distinguishing from equipment is verified, main equipment uses multiple-authentication mechanism, realizes aaa server from equipment and is verified, and the present invention makes full use of server resource to improve security of system and reliability in environment of multi-server.

Description

The realization method and system of AAA in a kind of stacking system

Technical field

The invention belongs to the realization method and systems of AAA in data communication field more particularly to stacking system a kind of.

Background technique

The application of AAA technology is essentially one-to-one between certification object and certificate server or certification object and recognizes at present The many-to-one model of server is demonstrate,proved, even if there is a case where certification object corresponds to multiple servers, multiple servers can not The effect of backup is worked at the same time and only serves, essence or only one server are working.Between certification object respectively solely Vertical, server control ability is in dispersity, and such application security is weaker, and is also unfavorable for the concentration of system Management.

Comprising a main equipment and multiple from equipment in stacking system, it is referred to as stack member apparatus.Existing stacking system In, main equipment is authenticated by server, and can only carry out local authentication from equipment;When stacking splitting, the service of main equipment Device certification automatically switches to local authentication, but the safety of local authentication is far below server authentication, and stack member apparatus it Between authentication result cannot form restricting relation.And it is an entirety that stack member apparatus is equivalent in stacking system not, often A stack member apparatus is taken as an independent individual to be handled.Statistical information needs manual entry server to be backed up Or server automated back-up, link is not accomplished actually to back up, and not can be carried out and back up in realtime;Multiple administrators are carrying out When single set equipment manages, different user carries out different authorizations on the same server, without completely isolated, has very big safety hidden Suffer from.

Summary of the invention

To solve in stacking system, the safety problem of aaa server certification, authorization and statistics, main purpose of the present invention exists In providing the implementation method of AAA in stacking system a kind of, applied to comprising main equipment and at least two stacking systems from equipment In, the method specifically includes:

Main equipment is grouped all from equipment, forms multiple member device groups, and the member device group includes at least One from equipment;Each member device group is correspondingly connected with an aaa server.

Further, the method also includes:

An AAA management role and multiple subtasks AAA, the corresponding management one in a subtask AAA are created on main equipment Member device group;

One or more identical accounts are configured on each aaa server, including the certification and authorization message to main equipment;

Different accounts are configured on each aaa server, including to the certification and authorization message from equipment.

Further, the method also includes:

When having user or administrator needs to log in main equipment, AAA management role requires the user or administrator's input Super account executive;

The super account executive information that the user or administrator input is handed down to each AAA by the AAA management role Subtask;

The super account executive information that each subtask AAA is issued according to the AAA management role is to corresponding AAA Server initiates certification and authorization, and its authentication result is fed back to the AAA management role;

Pass through if all subtasks AAA authenticate, user or administrator is allowed to log in the main equipment, and according to Authorization conditions carry out corresponding operation.

Further, the method also includes:

When have user or administrator need to log in it is a certain from equipment when, AAA management role requires the user or administrator Input common management account;

The common management account information that the user or administrator input is handed down to described common by the AAA management role Include in account executive information is described from the corresponding subtask AAA of member device group where equipment;

Described in the corresponding subtask AAA of the member device group where the equipment is issued according to the AAA management role Common management account information initiates certification and authorization to oneself corresponding aaa server, and its authentication result is fed back to described AAA management role;

If described pass through from the corresponding subtask the AAA certification of member device group where equipment, allow user or management Member's login is described from equipment, and carries out corresponding operation according to authorization conditions.

Further, the method also includes:

After having user or administrator logins successfully, statistical message is handed down to each subtask AAA by AAA management role, The subtask AAA statistical message is handed down to corresponding aaa server.

Another object of the present invention, which also resides in, provides the realization system of AAA in stacking system a kind of, the system comprises: it is main Equipment, at least two from equipment and aaa server,

The main equipment forms multiple member device groups, the member device group for being grouped all from equipment Including at least one from equipment, each member device group is correspondingly connected with an aaa server;

The aaa server, for authenticating and authorizing to login main equipment or from the user of equipment or administrator.

Further, the main equipment is also used to create an AAA management role and multiple subtasks AAA, an AAA One member device group of the corresponding management in subtask;

The aaa server including the certification to main equipment and authorizes letter for configuring one or more identical accounts Breath, is also used to configure different accounts, including to the certification and authorization message from equipment.

Further, the main equipment includes AAA management role module and the subtask AAA module,

The AAA management role module is used for, when having user or administrator needs to log in main equipment, it is desirable that the user Or administrator inputs super account executive, and the super account executive information that the user or administrator input is handed down to each The subtask AAA module;

The subtask AAA module, super account executive information for being issued according to the AAA management role module to Aaa server corresponding to oneself initiates certification and authorization, and its authentication result is fed back to the AAA management role module;

The AAA management role module is also used to authenticate the authentication result passed through receiving all subtasks AAA module Afterwards, allow user or administrator to log in the main equipment and carry out corresponding operation according to authorization conditions.

Further, the AAA management role module, be also used to when have user or administrator need to log in it is a certain from equipment When, it is desirable that the user or administrator input common management account, and the common management account that user or administrator input is believed Breath is handed down to the corresponding subtask AAA of member device group from where equipment for including in the common management account information Module;

The subtask AAA module is also used to the common management account information issued according to the AAA management role module Certification and authorization are initiated to oneself corresponding aaa server, and its authentication result is fed back into the AAA management role module;

The AAA management role module is also used in the authentication result for receiving the subtask AAA module authentication and passing through Afterwards, allow user or administrator to log in described from equipment, and carry out corresponding operation according to authorization conditions.

Further, the main equipment further includes statistical module, described for after having user or administrator logins successfully Statistical message is handed down to the subtask AAA module by AAA management role module;The subtask AAA module manages the AAA The statistical message that reason task module issues is sent to the aaa server corresponding to oneself.

The invention has the benefit that in the present invention, main equipment and can individually distinguishing from equipment is verified, and master sets It is standby to use multiple-authentication mechanism, while being verified using different aaa servers, main equipment is provided simultaneously with a variety of AAA services The advantages of device, defect is complementary, greatly reduces loophole, effectively prevent server attack;Aaa server is realized from equipment to carry out Verifying, and the present invention makes full use of server resource to improve security of system and reliability in environment of multi-server.

Detailed description of the invention

Attached drawing 1 is the network topological diagram of the method for the embodiment of the present invention;

Attached drawing 2 is the system block diagram of the embodiment of the present invention;

Attached drawing 3 is that the embodiment of the present invention includes two system block diagrams from equipment.

Specific embodiment

For technical solution of the present invention is more clearly understood, the present invention is described in further details now in conjunction with attached drawing:

As shown in Figure 1, the present invention provides the implementation method of AAA in stacking system a kind of, the method is applied to include one From the stacking system of equipment, the method for the embodiment of the present invention is managed concentratedly using main equipment by platform main equipment and at least two, It independently executes and is reported again respectively as a result, final main equipment determines the mode of final result, so that stack member apparatus is made from equipment It authenticated, authorized and counted for entirety, concrete implementation includes:

Main equipment is grouped all from equipment, forms multiple member device groups, and each member device group is at least wrapped Containing one from equipment.Each member device group is connected with an aaa server.

An AAA management role and multiple subtasks AAA, the corresponding management one in a subtask AAA are created on main equipment Member device group.AAA management role does not interact directly with aaa server, only interacts in inside with the subtask AAA.Each AAA Task is individually responsible for one aaa server of interaction or connection, and in embodiments of the present invention, each aaa server can be identical It can be different.One or more identical accounts are configured on each aaa server, including the certification to main equipment and authorize letter Breath, for the certification and authorization to user when logging in main equipment.Different accounts can also be separately configured in each aaa server, Including to from equipment certification and authorization message, for certification and authorization of the user when logging in from equipment.

When having user or administrator needs to log in main equipment, concrete implementation step includes:

S101, AAA management role require user or administrator to input super keepe account,

The super account executive information that user or administrator input is handed down to each AAA by S102, the AAA management role Subtask;

The super account executive information that S103, each subtask AAA are issued according to the AAA management role is corresponded to respective Aaa server initiate certification and authorization, and its authentication result is fed back into the AAA management role;

If S104, all subtasks AAA authenticate and pass through, allows user or administrator to log in the master and set It is standby, and corresponding operation is carried out according to authorization conditions.

In embodiments of the present invention, main equipment uses multiple-authentication mechanism, while carrying out school using different aaa servers It tests, the advantages of main equipment is provided simultaneously with a variety of aaa servers, defect is complementary, greatly reduces loophole, server is effectively prevent to attack Hit, and when there are multiple administrators simultaneously stack member apparatus is managed when, each administrator separately maintain it is a set of oneself User information, authorization message or user list that single administrator individually distorts oneself can be effectively prevented, wanted in safety It asks in high scene, such as finance, data center, the complete Isolation Management of administrator may be implemented.

When have user or administrator need to log in it is a certain from equipment when, concrete implementation step includes:

S201, AAA management role require prompt user or administrator to input common management administrator's account;

The common management account information that user or administrator input is handed down to described general by S202, the AAA management role Include in siphunculus reason account information is described from the corresponding subtask AAA of member device group where equipment;

S203, the corresponding subtask AAA of the member device group where the equipment are issued according to the AAA management role The common management account information initiates certification and authorization to oneself corresponding aaa server, and its authentication result is fed back to The AAA management role;

If the corresponding subtask the AAA certification of S204, the member device group where the equipment passes through, allow user or Administrator's login is described from equipment, and carries out corresponding operation according to authorization conditions.

In embodiments of the present invention, it can individually distinguish and be verified with main equipment from equipment, and be realized from equipment Aaa server is verified, and the safety authenticated from equipment is improved.

Statistical operation is carried out to the stack member apparatus logined successfully, specific implementation includes:

After having user or administrator logins successfully, statistical message is handed down to each subtask AAA by AAA management role,

Statistical message is handed down to corresponding aaa server by the subtask AAA, to do information back-up.

By such statistical, the mutual backup between the real-time synchronization and each link of statistical information may be implemented, when When the statistical information of one server is damaged, moreover it is possible to be inquired from another server.

When stacking splitting, AAA management role, which will detect, oneself divides out original stacking system, if having at this time When user or administrator log in the stack member apparatus, then the aaa server organized where oneself is directly verified.Using of the invention real Method described in example is applied, after stacking splitting, can still guarantee the safety of equipment, is not in because aaa server connects It is obstructed and caused by equipment it is locked or directly jump as local authentication.Method described in the embodiment of the present invention is realized simply, is not had Excessively complicated logic, easy to spread and realization, reliability with higher.

Further comprise in the embodiment of the present invention: safeguarding member device management table in the host, in the management table Include the case where stack member apparatus be grouped, and grouping after each stack member apparatus certification relevant configuration information, such as recognize Card method, certificate server etc., main equipment can understand the certification security intensity of stack member apparatus according to these information, and fit When adjust.

In embodiments of the present invention, main equipment does not interact directly with aaa server, and member device group is not handed over directly with user Mutually.For the processing of certification, user and main equipment interactive authentication essential information are authenticated, main equipment is again under each member device group Authentication command is sent out, member device group is authenticated according to the authentication command that main equipment issues.Member device group is respectively to respectively right The aaa server answered initiates certification request, and aaa server handles the certification request of member's equipment group, and rings to member device group Answer authentication result.Authentication result is returned to main equipment by member device group, and main equipment is recognized according to what all member device groups returned Card is as a result, judge that user this time authenticates as a result, using if the authentication result that all member device groups return all is shown successfully Family authenticates successfully, if there is the authentication result that a member device group returns shows unsuccessful then user authentication failure.For awarding The processing of power, if the user right that each member device group is authorized is identical, main equipment authorizes this permission to user, such as The user right that each member device group of fruit is authorized is not identical, then main equipment is each member device group to the permission that user authorizes Middle least privilege.Processing for statistics, each member device group need to send statistics letter to respectively corresponding aaa server Breath, the statistics that each aaa server receives each member device group have recorded the statistical information of user, statistics letter after requesting Breath has haved the function that backup on each aaa server.But after stacking splitting, each member device group forms dispersion The case where independent individual, it is impossible to accomplish the backup of statistical information, can be taken in response to this in the statistics of member device group It adds other corresponding servers of member device group when business device configuration and adds broadcast option, in this way after stacking splitting, at Member's equipment group can send statistical information to all aaa servers, so that the statistical information after division still is able to be backed up.

As shown in Fig. 2, the embodiment of the present invention also provides the realization system of AAA in stacking system a kind of, the system comprises: Main equipment 21, at least two from equipment 22 and aaa server 23,

The main equipment 21 forms multiple member device groups for being grouped all from equipment 22;The member sets Standby group includes at least one from equipment 22, and each member device group is connected with an aaa server 23.

The main equipment 21 is also used to create an AAA management role and multiple subtasks AAA, a subtask pair AAA A member device group should be managed;

The aaa server 23, for configuring one or more identical accounts, including the certification and authorization to main equipment Information;

The aaa server 23, is also used to configure different accounts, including to the certification and authorization message from equipment.

The main equipment 21 includes AAA management role module 211 and the subtask AAA module 212, the AAA management role Module 211 is used for, when having user or administrator needs to log in main equipment, it is desirable that user or administrator input super management account Family, and the super account executive information that user or administrator input is handed down to each subtask AAA module 212;

The subtask AAA module 212, the super account executive for being issued according to the AAA management role module 211 Information initiates certification and authorization to the aaa server 23 corresponding to oneself, and its authentication result is fed back to the AAA management and is appointed Business module 211;

The AAA management role module 211 is also used to pass through receiving all subtask AAA modules 212 and authenticate Authentication result after, allow user or administrator to log in the main equipment 21 and carry out corresponding operation according to authorization conditions.

The AAA management role module 211, be also used to when have user or administrator need to log in it is a certain from equipment when, It asks user or administrator to input common management account, and the common management account information that user or administrator input is handed down to institute State the corresponding subtask the AAA module 212 of member device group from where equipment 22 for including in common management account information;

The common management account information that the subtask AAA module 212 is issued according to the AAA management role module 211 Certification and authorization are initiated to oneself corresponding aaa server 23, and its authentication result is fed back into the AAA management role module 211;

The AAA management role module 211 is also used to authenticate the certification that passes through receiving the subtask AAA module 212 As a result after, user or administrator is allowed to log in described from equipment 22, and carry out corresponding operation according to authorization conditions.

The main equipment 21 further includes statistical module 213, for after having user or administrator logins successfully, the AAA Statistical message is handed down to the subtask AAA module 212 by management role module 211;The subtask AAA module 212 is by institute It states the statistical message that AAA management role module 211 issues and is sent to aaa server 23 corresponding to oneself.

Now with specific embodiment to further illustrate the technical scheme of the present invention and technical effect achieved.

As shown in figure 3, the embodiment of the present invention 1 provides a kind of system using the method for the invention, the system comprises Main equipment, from equipment 1 and from equipment 2, main equipment is grouped to from equipment, member device group 1 will be added from equipment 1, will be from Member device group 2 is added in equipment 2, and member device group 1 is connected with aaa server 1, and member device group 2 is connected with aaa server 2, An AAA management role and 2 subtasks AAA are created on main equipment, the subtask AAA 1 is corresponding to manage a member device group 1, The subtask AAA 2 is corresponding to manage a member device group 2, configures an identical account on aaa server 1 and aaa server 2, Including the certification and authorization message to main equipment;Different accounts, aaa server 1 are configured on aaa server 1 and aaa server 2 Including to the certification and authorization message from equipment 1, aaa server 2 includes to the certification and authorization message from equipment 2.

When having user or administrator needs to log in main equipment, AAA management role requires the user or administrator's input Super account executive;The super account executive information that the user or administrator input is handed down to AAA by AAA management role appoints The business subtask 1 and AAA 2;The subtask AAA 1 and the subtask AAA 2 are believed according to the super account executive that the AAA management role issues It ceases and initiates certification and authorization to corresponding aaa server 1 and aaa server 2, and its authentication result is fed back into AAA pipe Reason task;Pass through if the subtask AAA 1 and the subtask AAA 2 authenticate, user or administrator allowed to log in the main equipment, And corresponding operation is carried out according to authorization conditions.

When having user or administrator needs to log in from equipment 1 or from equipment 2, AAA management role requires user or management Member's input common management account;The common management account information that user or administrator input is handed down to AAA by AAA management role Task 1 or the subtask AAA 2;The common management that the subtask AAA 1 or the subtask AAA 2 are issued according to the AAA management role Account information initiates certification and authorization to aaa server 1 or aaa server 2, and its authentication result is fed back to the AAA and is managed Reason task;If the subtask AAA 1 or the certification of the subtask AAA 2 pass through, user or administrator is allowed to log in from equipment 1 or from setting Standby 2, and corresponding operation is carried out according to authorization conditions.

After having user or administrator logins successfully, statistical message is handed down to the subtask AAA 1 and AAA by AAA management role Statistical message is handed down to aaa server 1 and aaa server 2 by subtask 2, the subtask AAA 1 and the subtask AAA 2.

The embodiment of the present invention 2 provides a kind of system using the method for the invention, the system comprises main equipment, from setting Standby 1, from equipment 2 and from equipment 3, main equipment is grouped to from equipment, can be separately added into 3 members from equipment for 3 at this time Equipment group, can also will wherein 1 addition, one member device group, in addition two are added a member device group from equipment, often A member device group is correspondingly connected with an aaa server.Created on main equipment an AAA management role and 3 subtasks AAA or 2 subtasks, one member device group of the corresponding management in each subtask, certification, authorization and statistics to main equipment and from equipment Method is consistent with the method for certification, authorization and statistics described in the embodiment of the present invention 1 to main equipment and from equipment, herein no longer It repeats.

The embodiment of the present invention 3 provides a kind of system using the method for the invention, and the system comprises main equipments and 4 Above from equipment, main equipment is grouped to from equipment, at this time can be separately added into 4 or more from the device every from equipment 1 member device group, can also will wherein 1 or more addition, one member device group, it is only necessary to meet member device group 2 More than a, each member device group includes at least one from equipment, and each member device group is correspondingly connected with an AAA service Device.An AAA management role and multiple subtasks AAA, one member device of the corresponding management in each subtask are created on main equipment To main equipment and from equipment described in group, certification, authorization and statistical method to main equipment and from equipment and the embodiment of the present invention 1 Certification, authorization it is consistent with the method for statistics, details are not described herein again.

The above description is merely a specific embodiment, but scope of protection of the present invention is not limited thereto, any Those familiar with the art in the technical scope disclosed by the present invention, can easily think of the change or the replacement, and should all contain Lid is within protection scope of the present invention.Therefore, protection scope of the present invention should be based on the protection scope of the described claims.

Claims (6)

1. the implementation method of AAA in a kind of stacking system, which is characterized in that be applied to comprising main equipment and at least two from equipment Stacking system in, the method specifically includes:
Main equipment is grouped all from equipment, forms multiple member device groups, and the member device group includes at least one From equipment;Each member device group is correspondingly connected with an aaa server;
An AAA management role and multiple subtasks AAA, one member of a corresponding management in the subtask AAA are created on main equipment Equipment group;
One or more identical accounts are configured on each aaa server, including the certification and authorization message to main equipment;
Different accounts are configured on each aaa server, including to the certification and authorization message from equipment;
When having user or administrator needs to log in main equipment, AAA management role requires the user or administrator's input super Account executive;
The super account executive information that the user or administrator input is handed down to each AAA by the AAA management role appoints Business;
Each subtask AAA is serviced according to the super account executive information that the AAA management role issues to corresponding AAA Device initiates certification and authorization, and its authentication result is fed back to the AAA management role;
Pass through if all subtasks AAA authenticate, allows user or administrator to log in the main equipment, and according to authorization Situation carries out corresponding operation.
2. the method according to claim 1, wherein the method also includes:
When have user or administrator need to log in it is a certain from equipment when, AAA management role requires the user or administrator's input Common management account;
The common management account information that the user or administrator input is handed down to the common management by the AAA management role Include in account information is described from the corresponding subtask AAA of member device group where equipment;
The corresponding subtask AAA of the member device group where the equipment issues described common according to the AAA management role Account executive information initiates certification and authorization to oneself corresponding aaa server, and its authentication result is fed back to the AAA and is managed Reason task;
If described pass through from the corresponding subtask the AAA certification of member device group where equipment, user or administrator is allowed to step on Record is described from equipment, and carries out corresponding operation according to authorization conditions.
3. method according to claim 1 or 2, which is characterized in that the method also includes:
After having user or administrator logins successfully, statistical message is handed down to each subtask AAA by AAA management role, described The subtask AAA statistical message is handed down to corresponding aaa server.
4. the realization system of AAA in a kind of stacking system, which is characterized in that the system comprises: main equipment, at least two from setting Standby and aaa server,
The main equipment forms multiple member device groups, the member device group is at least for being grouped all from equipment Comprising one from equipment, each member device group is correspondingly connected with an aaa server;
The aaa server, for authenticating and authorizing to login main equipment or from the user of equipment or administrator;
The main equipment is also used to create an AAA management role and multiple subtasks AAA, the corresponding management in a subtask AAA One member device group;
The aaa server, for configuring one or more identical accounts, including the certification and authorization message to main equipment, It is also used to configure different accounts, including to the certification and authorization message from equipment;
Wherein, the main equipment includes AAA management role module and the subtask AAA module,
The AAA management role module is used for, when having user or administrator needs to log in main equipment, it is desirable that the user or pipe Reason person inputs super account executive, and the super account executive information that the user or administrator input is handed down to each AAA Subtask module;
The subtask AAA module, super account executive information for being issued according to the AAA management role module to oneself Corresponding aaa server initiates certification and authorization, and its authentication result is fed back to the AAA management role module;
The AAA management role module is also used to after receiving all subtasks AAA module and authenticating the authentication result passed through, Allow user or administrator to log in the main equipment and carries out corresponding operation according to authorization conditions.
5. system according to claim 4, which is characterized in that the AAA management role module, be also used to when have user or Administrator need to log in it is a certain from equipment when, it is desirable that the user or administrator input common management account, and by user or pipe The common management account information of reason person's input is handed down to include in the common management account information described where equipment The corresponding subtask the AAA module of member device group;
The subtask AAA module, the common management account information for being also used to be issued according to the AAA management role module is to certainly Oneself initiates certification and authorization by corresponding aaa server, and its authentication result is fed back to the AAA management role module;
The AAA management role module is also used to after receiving the authentication result that the subtask AAA module authentication passes through, and is permitted Family allowable or administrator's login are described from equipment, and carry out corresponding operation according to authorization conditions.
6. system according to claim 4 or 5, which is characterized in that the main equipment further includes statistical module, is had for working as After user or administrator login successfully, statistical message is handed down to the subtask AAA module by the AAA management role module; The statistical message that the AAA management role module issues is sent to the AAA corresponding to oneself and serviced by the subtask AAA module Device.
CN201511025845.7A 2015-12-30 2015-12-30 The realization method and system of AAA in a kind of stacking system CN105471905B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201511025845.7A CN105471905B (en) 2015-12-30 2015-12-30 The realization method and system of AAA in a kind of stacking system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201511025845.7A CN105471905B (en) 2015-12-30 2015-12-30 The realization method and system of AAA in a kind of stacking system

Publications (2)

Publication Number Publication Date
CN105471905A CN105471905A (en) 2016-04-06
CN105471905B true CN105471905B (en) 2018-12-07

Family

ID=55609175

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201511025845.7A CN105471905B (en) 2015-12-30 2015-12-30 The realization method and system of AAA in a kind of stacking system

Country Status (1)

Country Link
CN (1) CN105471905B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003067439A1 (en) * 2002-02-04 2003-08-14 Flarion Technologies, Inc. A method for extending mobile ip and aaa to enable integrated support for local access and roaming access connectivity
CN101795239A (en) * 2010-04-14 2010-08-04 杭州华三通信技术有限公司 Authentication method and equipment
CN102055605A (en) * 2009-11-11 2011-05-11 中兴通讯股份有限公司 Disaster tolerance system and method applied to AAA (authentication, authorization and accounting) server
CN104601566A (en) * 2015-01-08 2015-05-06 杭州华三通信技术有限公司 Authentication method and device
CN104780116A (en) * 2014-05-05 2015-07-15 华为技术有限公司 Method and device for distributing loads to multiple AAA servers in network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2003067439A1 (en) * 2002-02-04 2003-08-14 Flarion Technologies, Inc. A method for extending mobile ip and aaa to enable integrated support for local access and roaming access connectivity
CN102055605A (en) * 2009-11-11 2011-05-11 中兴通讯股份有限公司 Disaster tolerance system and method applied to AAA (authentication, authorization and accounting) server
CN101795239A (en) * 2010-04-14 2010-08-04 杭州华三通信技术有限公司 Authentication method and equipment
CN104780116A (en) * 2014-05-05 2015-07-15 华为技术有限公司 Method and device for distributing loads to multiple AAA servers in network
CN104601566A (en) * 2015-01-08 2015-05-06 杭州华三通信技术有限公司 Authentication method and device

Also Published As

Publication number Publication date
CN105471905A (en) 2016-04-06

Similar Documents

Publication Publication Date Title
US5940591A (en) Apparatus and method for providing network security
US8424072B2 (en) Behavior-based security system
CN105027493B (en) Safety moving application connection bus
CN103430183B (en) For the physical security mandate of utility application
CN101401387B (en) Access control protocol for embedded devices
US20130117554A1 (en) User key management for the Secure Shell (SSH)
EP0606401A4 (en) Apparatus and method for providing network security.
CN100499554C (en) Network admission control method and network admission control system
EP1914658B1 (en) Identity controlled data center
US20100186075A1 (en) Method and system for accessing devices in a secure manner
CN103489233A (en) Electronic door control system with dynamic password
JP2007310512A (en) Communication system, service providing server, and user authentication server
US9444803B2 (en) Authentication method and system oriented to heterogeneous network
CN100454806C (en) Safety group broadcast management system and method
CN100586058C (en) J2EE middleware criterion based tolerant inbreak application server and tolerant inbreak method
US8856892B2 (en) Interactive authentication
CN104247486B (en) The method and computing device of connection are established between the enterprise security circumference of equipment and enterprise
CN104335546A (en) Using neighbor discovery to create trust information for other applications
EP3008872B1 (en) Method for authenticating a terminal by a gateway of an internal network protected by an entity providing secure access
CN101931613B (en) Centralized authenticating method and centralized authenticating system
US20160105410A1 (en) OMA DM Based Terminal Authentication Method, Terminal and Server
RU2523927C2 (en) Checking configuration modification for ied
Jeong et al. An efficient authentication system of smart device using multi factors in mobile cloud service architecture
CN104320423B (en) Single-sign-on lightweight implementation method based on Cookie
EP2658207A1 (en) Authorization method and terminal device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: 610041 15-24 floor, 1 1 Tianfu street, Chengdu high tech Zone, Sichuan

Applicant after: Maipu Communication Technologies Co., Ltd.

Address before: No. 16, nine Xing Avenue, Chengdu high tech Zone, Sichuan Province

Applicant before: Maipu Communication Technologies Co., Ltd.

GR01 Patent grant
GR01 Patent grant