CN116032611A - Login method, system and storage medium of network equipment - Google Patents
Login method, system and storage medium of network equipment Download PDFInfo
- Publication number
- CN116032611A CN116032611A CN202211705169.8A CN202211705169A CN116032611A CN 116032611 A CN116032611 A CN 116032611A CN 202211705169 A CN202211705169 A CN 202211705169A CN 116032611 A CN116032611 A CN 116032611A
- Authority
- CN
- China
- Prior art keywords
- management
- service
- proxy service
- target
- account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 29
- 238000004891 communication Methods 0.000 claims description 9
- 238000004590 computer program Methods 0.000 claims description 6
- 238000012546 transfer Methods 0.000 claims description 6
- 238000012986 modification Methods 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 230000001960 triggered effect Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 230000006978 adaptation Effects 0.000 description 1
- 230000004075 alteration Effects 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The embodiment of the disclosure provides a login method and a login system of network equipment, wherein the method comprises the following steps: the general management service receives deployment information of the proxy service, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service; the total management service receives management account information corresponding to the network equipment, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; the network equipment is equipment in a local area network; the method comprises the steps that a total management service receives a device login request from a first preset interface, wherein the device login request is used for requesting to login a target network device; the overall management service sends login data to the target proxy service based on the device login request and the deployment address of the target proxy service to log in to the target network device through the target proxy service. According to the embodiment of the disclosure, a plurality of independent account management systems do not need to be deployed, and manpower, financial resources and operation cost are saved.
Description
Technical Field
The present disclosure relates to the field of network device management, and in particular, to a method and system for logging in a network device.
Background
The internet company needs a large number of cloud hosts, databases, middleware and other network devices to ensure service operation, each device needs account passwords to log in, the account passwords of an administrator are inconsistent with the passwords of common personnel, a large number of accounts are generated, and meanwhile, users of the accounts need to be monitored, illegal operations are avoided, and operation logs of the users are recorded; for convenience of management, an account management system is required to manage account passwords of the products.
For example, in the account management system provided by the company, after the operation and maintenance personnel of the company deploy the project, the account of the network equipment of the company can be recorded, and then the equipment can be managed in the system, so that the system is very convenient.
However, when the devices of the company are distributed in multiple cities and are far apart, only one account management system may be difficult to maintain, because some network devices cannot be exposed to the internet due to network reasons or account security, and only can be accessed in a local area network, so that a plurality of independent account management systems are required to be deployed to realize management, which directly results in more manpower being required to manage and maintain, the operation cost is increased, and the time cost for maintaining multiple systems is also increased significantly.
Disclosure of Invention
In view of this, the embodiments of the present disclosure provide a method and a system for logging in a network device, which are used for solving the following problems in the prior art: some network devices cannot be exposed to the internet and can only be accessed in a local area network, so that a plurality of independent account management systems are required to be deployed to realize management, more manpower is required to manage and maintain the network devices, the operation cost is increased, and the time cost for maintaining a plurality of systems is also increased obviously.
In one aspect, an embodiment of the present disclosure provides a login method of a network device, including: the general management service receives deployment information of the proxy service, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service; the total management service receives management account information corresponding to network equipment, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; the network equipment is equipment in a local area network; the overall management service receives a device login request from a first preset interface, wherein the device login request is used for requesting to login to a target network device; the overall management service sends login data to the target proxy service based on the device login request and the deployment address of the target proxy service so as to log in the target network device through the target proxy service.
In some embodiments, the overall management service sending login data to a target proxy service based on the device login request and a deployment address of the target proxy service, comprising: the overall management service determines to log in a management account number, a management password and the target proxy service corresponding to the target network device based on the device login request; and the total management service sends the management account number and the management password to the target proxy service corresponding to the deployment address.
In some embodiments, before the overall management service receives the device login request from the first predetermined interface, the method further comprises: the overall management service receives a user login request from a second preset interface, wherein the user login request carries a user account number and a user password; under the condition that the user account login is successful, the total management service acquires management account information of all network devices managed by the user account; and the total management service sends the management account information of all the network devices and the device login interface to the first preset interface.
In some embodiments, after the logging into the target network device through the target proxy service, the method further includes: the overall management service receives a management command from a third preset interface; the overall management service sends the management command to the target proxy service to send the management command to the target network device through the target proxy service.
In some embodiments, after the overall management service sends login data to the target proxy service based on the device login request and the deployment address of the target proxy service, the method further comprises: the target proxy service receiving the login data from the overall management service; the target proxy service establishes a communication channel between the target proxy service and the target network device based on the login data.
In some embodiments, the target proxy service establishes a communication channel with the target network device based on the login data, including: and the target proxy service establishes a secure file transfer protocol link channel between the total management service and the target network equipment according to the management account number and the management password of the target network equipment.
In another aspect, an embodiment of the present disclosure provides a management system for a network device, including: client service, overall management service, proxy service; the client service is configured to: receiving deployment information of proxy service input by a user at a fourth preset interface, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service; receiving management account information corresponding to network equipment input by a user at a fifth preset interface, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; the network equipment is equipment in a local area network; receiving a device login request input by a user on a first preset interface, wherein the device login request is used for requesting to login to target network equipment; the overall management service is configured to: receiving deployment information of proxy service and management account information corresponding to network equipment; and receiving the equipment login request, and sending login data to the target proxy service based on the equipment login request and the deployment address of the target proxy service so as to log in the target network equipment through the target proxy service.
In some embodiments, the overall management service is further configured to: receiving a user login request from a second preset interface, wherein the user login request carries a user account and a user password; under the condition that the user account login is successful, acquiring management account information of all network devices managed by the user account; and sending the management account information of all the network devices and the device login interfaces to the first preset interface.
In some embodiments, the overall management service is further configured to: receiving a management command from a third predetermined interface; and sending the management command to the target proxy service so as to send the management command to the target network equipment through the target proxy service.
In some embodiments, the proxy service is a plurality of proxy services, and the deployment addresses of the plurality of proxy services are different.
According to the method and the device for managing the network equipment, corresponding proxy services are deployed in different areas, account management information corresponding to the network equipment comprising the proxy service information is recorded again, when the network equipment needs to be managed, the total management service establishes a communication channel through the proxy service and forwards management commands through the proxy service, management of the network equipment in the local area network can be achieved only through deployment of the proxy service, a plurality of independent account management systems do not need to be deployed, only one set of account management system can be achieved, labor, financial resources and operation cost are saved, and user experience is good.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings that are required to be used in the embodiments or the description of the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments described in the present disclosure, and other drawings may be obtained according to these drawings without inventive effort to a person of ordinary skill in the art.
Fig. 1 is a schematic diagram of a network deployment architecture provided in an embodiment of the present disclosure;
fig. 2 is a flowchart of a login method of a network device according to an embodiment of the present disclosure;
FIG. 3 is an interface schematic diagram of a first predetermined interface provided by an embodiment of the present disclosure;
fig. 4 is a schematic diagram of a management system of a network device and a network device managed by the management system according to an embodiment of the present disclosure.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present disclosure more apparent, the technical solutions of the embodiments of the present disclosure will be clearly and completely described below with reference to the accompanying drawings of the embodiments of the present disclosure. It will be apparent that the described embodiments are some, but not all, of the embodiments of the present disclosure. All other embodiments, which can be made by one of ordinary skill in the art without the need for inventive faculty, are within the scope of the present disclosure, based on the described embodiments of the present disclosure.
Unless defined otherwise, technical or scientific terms used in this disclosure should be given the ordinary meaning as understood by one of ordinary skill in the art to which this disclosure belongs. The terms "first," "second," and the like, as used in this disclosure, do not denote any order, quantity, or importance, but rather are used to distinguish one element from another. The word "comprising" or "comprises", and the like, means that elements or items preceding the word are included in the element or item listed after the word and equivalents thereof, but does not exclude other elements or items. The terms "connected" or "connected," and the like, are not limited to physical or mechanical connections, but may include electrical connections, whether direct or indirect. "upper", "lower", "left", "right", etc. are used merely to indicate relative positional relationships, which may also be changed when the absolute position of the object to be described is changed.
In order to keep the following description of the embodiments of the present disclosure clear and concise, the present disclosure omits detailed description of known functions and known components.
The embodiment of the disclosure provides a login method of network equipment, which relates to three parties of an overall management service, a proxy service and a client service, wherein the overall management service is generally deployed on an account management system server and exists in the form of an account management system, and the proxy service is generally deployed on different users
The management equipment (the public network IP is configured for the management equipment so as to enable the management equipment to interact data with the account management system server through the Internet later) arranged in the region is used for managing network equipment in different regions, and client service is deployed on a personal computer or a webpage, wherein the basic deployment architecture is shown in figure 1; as shown in fig. 2, the login method of the network device includes steps S201 to S204:
s201, the general management service receives deployment information of the proxy service, wherein the deployment information at least comprises: unique identification of the proxy service, deployment address of the proxy service.
As can be seen from fig. 1, the embodiment of the present disclosure deploys three agents (agents) in beijing, guangzhou, and shanghai, respectively, each of which manages network devices of its corresponding territory. For the overall management service, it needs to know that the proxy service is deployed in those areas, and then the network device can be managed by using the deployed proxy service, so the overall management service needs to receive the deployment information of the proxy service, where the process may be to receive the deployment information of the proxy service input by the user at the fourth predetermined interface (which may be a web page interface or a client interface, etc.), and the deployment information needs to include at least a unique identifier for distinguishing the proxy service and a deployment address (for example, may be an IP address) of the proxy service.
S202, the total management service receives management account information corresponding to the network equipment, wherein the management account information at least comprises: proxy service corresponding to network equipment, management account corresponding to network equipment, and management password corresponding to management account.
Because the total management service is an account management system for managing all accounts, the total management service needs to know management account information corresponding to all network devices, and the implementation of the process can be that the management account information corresponding to the network devices, which is input at the client side service, i.e. the user in the fifth preset interface, for example, includes proxy service corresponding to the network devices, management accounts corresponding to the network devices, management passwords corresponding to the management accounts, and the like, and can also include information such as an IP address, a network port, and the like, so that the total management service knows the account management information of the network devices. The management account information received by the overall management service may be stored in a table state as shown in table 1, for example, and of course, may be in other states as long as the management account information corresponding to the network device can be known, which is not limited herein.
TABLE 1
As can be seen from the above table, a user logged into the account management system may be an administrator or a general person, the administrator has greater authority than the general person, but both the general person and the administrator have the ability to manage the network device; one user may have the ability to manage multiple devices.
The network device in the public network may interact directly with the account management system server (or may interact with the account management system server through a proxy service, of course), however, since the network device in the local area network cannot directly access the public network (i.e. the internet), at least one device in the network devices involved in the embodiments of the present disclosure may be a device in the local area network. That is, the network devices managed by the account management system may include network devices in a local area network or network devices in a public network. Illustratively, the account management system manages N network devices, N.gtoreq.2. Wherein k network devices are in a public network, j network devices are in a local area network, k is more than or equal to 1, and j is more than or equal to 1. In some possible implementations, j+.2, and the j network devices are distributed in at least two different domains.
S203, the overall management service receives a device login request from a first preset interface, wherein the device login request is used for requesting to login to the target network device.
When the total management service has knowledge of the management account information corresponding to the network device, the network device can be managed normally through the proxy service.
The client service receives a device login request input by a user at a first predetermined interface, where the device login request is used to request to login to a target network device, and the target network device may be any network device, for example, may be S-BJ2 or S-GZ1 in fig. 1; if the target network device is S-BJ2, the corresponding target proxy service is Agent1, and if the target network device is S-GZ1, the corresponding target proxy service is Agent2, and different network devices correspond to different proxy services.
For a user, the user is a device login request sent through a first predetermined interface, for example, as shown in fig. 3, that is, after the user logs in to the account management system, all network devices that the user can manage are displayed to the user, and when the user wants to log in which network device, the user only needs to click a corresponding button behind the network device, so that the device login request is triggered through the button. For the account number of the user management network device, the same account number can be used by a plurality of network devices, or different account numbers can be used, and the embodiment of the disclosure is not limited and can be used by referring to the existing account number management system; the embodiment of the disclosure is not limited as to whether the first predetermined interface has other displayed contents, and those skilled in the art can perform corresponding setting according to actual needs.
For a user, a user account is also required to be logged into the account management system, and the user account is different from the management account for managing the network device, and is used for logging into the account management system and cannot be directly used for managing the network device. When logging in the account management system, a user can input a user account and a user password through a second preset interface and send the user account and the user password to the overall management service, the overall management service receives a user login request from the second preset interface, and under the condition that the user account is successfully logged in, the overall management service obtains management account information of all network devices managed by the user account and sends the management account information of all network devices and the device login interface to the first preset interface so as to be checked by the user and further ensure management of subsequent network devices.
In some possible implementations, when the total management service obtains management account information of all network devices managed by the user account and sends the management account information to the first predetermined interface for viewing by the user, the management account information may include the account of the network device, but does not include the password of the network device. That is, the password of the network device is not actually transmitted to the user, but is always merely circulated between the account management system server, the proxy service, the network device, and the like. By adopting the mode, the normal management of the network equipment by the user through the account management system is not influenced, the security of the password of the network equipment is guaranteed, the user is prevented from memorizing and additionally recording the password of the network equipment, and the use convenience of the user is improved.
S204, the total management service sends login data to the target proxy service based on the device login request and the deployment address of the target proxy service so as to log in the target network device through the target proxy service.
In the specific implementation, the total management service determines a management account number, a management password and a target proxy service corresponding to the login target network device based on the device login request, and then sends the management account number and the management password to the target proxy service corresponding to the deployment address.
Correspondingly, the target proxy service receives login data from the total management service, and the target proxy service establishes a communication channel between the target proxy service and the target network device based on the login data, specifically, the target proxy service establishes a secure file transfer protocol link (SSH, secret File Transfer Protoco) channel between the total management service and the target network device according to a management account number and a management password of the target network device.
When the network device is logged in through the target proxy service, a management operation, such as modifying a management command, such as a password, on the network device in bulk may be performed, where the management command is from a third predetermined interface of the client service, and the overall management service receives the management command from the third predetermined interface and sends the management command to the target proxy service to send the management command to the target network device through the target proxy service.
The system manager deploys the Agent service in different areas, and simultaneously adds the Agent to the account management system for unified management. The account passwords of network devices in different areas (corresponding to different agents) are added to an account management system, after the account passwords are added, the account numbers of the network devices can be managed through the account management system, and when the account numbers are added, an Agent to which the account numbers belong needs to be appointed, so that the network devices can be logged in through the corresponding agents for subsequent management to operate. When the network equipment is used, the equipment login request is triggered in the account management system, the account management system can send the equipment login request to the Agent, and after the Agent receives the request, an SSH (secure physical layer) link channel is established for the account management system, so that the command can be transmitted through the channel.
The Agent is a service between the account management system and the network device, multiple agents can be integrated in the account management system to manage the network devices in different cities, the Agent supports distributed deployment, and the account management system is connected to corresponding network devices through the Agent, such as local servers in other cities, remote desktops and the like.
According to the method and the device for managing the network equipment, corresponding proxy services are deployed in different areas, account management information corresponding to the network equipment comprising the proxy service information is recorded again, when the network equipment needs to be managed, the total management service establishes a communication channel through the proxy service and forwards management commands through the proxy service, management of the network equipment in the local area network can be achieved only through deployment of the proxy service, a plurality of independent account management systems do not need to be deployed, only one set of account management system can be achieved, labor, financial resources and operation cost are saved, and user experience is good.
The embodiment of the disclosure also provides a management system of the network device, and the architecture of the system is schematically shown in fig. 4, including:
client service, overall management service, proxy service;
the client service is configured to: receiving deployment information of proxy service input by a user at a fourth preset interface, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service; receiving management account information corresponding to the network device and input by a user at a fifth preset interface, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; the network equipment is equipment in a local area network; receiving a device login request input by a user on a first preset interface, wherein the device login request is used for requesting to login to a target network device;
the overall management service is configured to: receiving deployment information of proxy service and management account information corresponding to network equipment; and receiving a device login request, and sending login data to the target proxy service based on the device login request and the deployment address of the target proxy service so as to log in the target network device through the target proxy service.
The plurality of proxy services are provided, and the deployment addresses of the plurality of proxy services are different. For example, three Agent services (agents) are deployed in beijing, guangzhou, and shanghai three places, respectively, each Agent service managing network devices of its corresponding territory. For the overall management service, it needs to know that the proxy service is deployed in those areas, and then the network device can be managed by using the deployed proxy service, so the overall management service needs to receive the deployment information of the proxy service, where the process may be to receive the deployment information of the proxy service input by the user at the fourth predetermined interface (which may be a web page interface or a client interface, etc.), and the deployment information needs to include at least a unique identifier for distinguishing the proxy service and a deployment address (for example, may be an IP address) of the proxy service.
Because the total management service is an account management system for managing all accounts, the total management service needs to know management account information corresponding to all network devices, and the implementation of the process can be that the management account information corresponding to the network devices, which is input at the client side service, i.e. the user in the fifth preset interface, for example, includes proxy service corresponding to the network devices, management accounts corresponding to the network devices, management passwords corresponding to the management accounts, and the like, and can also include information such as an IP address, a network port, and the like, so that the total management service knows the account management information of the network devices.
When the total management service has knowledge of the management account information corresponding to the network device, the network device can be managed normally through the proxy service.
The network device in the public network may interact directly with the account management system server (or may interact with the account management system server through a proxy service, of course), however, the network device in the local area network cannot directly access the public network (i.e. the internet), so the network device referred to in the embodiments of the present disclosure generally refers to a device in the local area network.
The client service receives a device login request input by a user at a first predetermined interface, where the device login request is used to request to login to a target network device, where the target network device may be any network device, and different network devices correspond to different proxy services.
For a user, the user logs in to the account management system through a device login request sent by a first preset interface, and then the user displays all network devices which can be managed by the user to the user, when the user wants to log in which network device, the user only needs to click a corresponding button behind the network device, and then the device login request is triggered through the button. For the account number of the user management network device, the same account number can be used by a plurality of network devices, or different account numbers can be used, and the embodiment of the disclosure is not limited and can be used by referring to the existing account number management system; the embodiment of the disclosure is not limited as to whether the first predetermined interface has other displayed contents, and those skilled in the art can perform corresponding setting according to actual needs.
For a user, a user account is also required to be logged into the account management system, and the user account is different from the management account for managing the network device, and is used for logging into the account management system and cannot manage the network device. When logging in the account management system, a user can input a user account and a user password through a second preset interface and send the user account and the user password to the overall management service, the overall management service receives a user login request from the second preset interface, and under the condition that the user account is successfully logged in, the overall management service obtains management account information of all network devices managed by the user account and sends the management account information of all network devices and the device login interface to the first preset interface so as to be checked by the user and further ensure management of subsequent network devices.
In the specific implementation, the total management service determines a management account number, a management password and a target proxy service corresponding to the login target network device based on the device login request, and then sends the management account number and the management password to the target proxy service corresponding to the deployment address.
Correspondingly, the target proxy service receives login data from the total management service, and the target proxy service establishes a communication channel between the target proxy service and the target network device based on the login data, specifically, the target proxy service establishes a secure file transfer protocol (SSH, secret File Transfer ProtoC l) channel between the total management service and the target network device according to a management account number and a management password of the target network device.
When the network device is logged in through the target proxy service, a management operation, such as modifying a management command, such as a password, on the network device in bulk may be performed, where the management command is from a third predetermined interface of the client service, and the overall management service receives the management command from the third predetermined interface and sends the management command to the target proxy service to send the management command to the target network device through the target proxy service.
The system manager deploys the Agent service in different areas, and simultaneously adds the Agent to the account management system for unified management. The account passwords of network devices in different areas (corresponding to different agents) are added to an account management system, after the account passwords are added, the account numbers of the network devices can be managed through the account management system, and when the account numbers are added, an Agent to which the account numbers belong needs to be appointed, so that the network devices can be logged in through the corresponding agents for subsequent management to operate. When the network equipment is used, the equipment login request is triggered in the account management system, the account management system can send the equipment login request to the Agent, and after the Agent receives the request, an SSH (secure physical layer) link channel is established for the account management system, so that the command can be transmitted through the channel.
The Agent is a service between the account management system and the network device, multiple agents can be integrated in the account management system to manage the network devices in different cities, the Agent supports distributed deployment, and the account management system is connected to corresponding network devices through the Agent, such as local servers in other cities, remote desktops and the like.
According to the method and the device for managing the network equipment, corresponding proxy services are deployed in different areas, account management information corresponding to the network equipment comprising the proxy service information is recorded again, when the network equipment needs to be managed, the total management service establishes a communication channel through the proxy service and forwards management commands through the proxy service, management of the network equipment in the local area network can be achieved only through deployment of the proxy service, a plurality of independent account management systems do not need to be deployed, only one set of account management system can be achieved, labor, financial resources and operation cost are saved, and user experience is good.
It will be appreciated by those skilled in the art that embodiments of the present application may be provided as a method, system, computer-readable storage medium, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. It will be understood that when implemented in software, it may be stored in a computer-readable medium or transmitted as one or more instructions or code on a computer-readable medium.
The present application also provides forms of a computer program product embodied on one or more computer-readable storage media having computer-usable program code embodied therein. That is, in an embodiment of the present application, there is further provided a computer-readable storage medium storing a computer program, where the computer program when executed by a processor causes the processor to perform some or all of the steps implemented by the overall management service, the proxy service, and the client service in any of the foregoing implementations.
Furthermore, although exemplary embodiments have been described herein, the scope thereof includes any and all embodiments having equivalent elements, modifications, omissions, combinations (e.g., of the various embodiments across schemes), adaptations or alterations based on the present disclosure. Elements in the claims are to be construed broadly based on the language employed in the claims and are not limited to examples described in the present specification or during the practice of the present application, which examples are to be construed as non-exclusive. It is intended, therefore, that the specification and examples be considered as exemplary only, with a true scope and spirit being indicated by the following claims and their full scope of equivalents.
The above description is intended to be illustrative and not restrictive. For example, the above-described examples (or one or more aspects thereof) may be used in combination with each other. For example, other embodiments may be used by those of ordinary skill in the art upon reading the above description. In addition, in the above detailed description, various features may be grouped together to streamline the disclosure. This is not to be interpreted as an intention that the disclosed features not being claimed are essential to any claim. Rather, the disclosed subject matter may include less than all of the features of a particular disclosed embodiment. Thus, the following claims are hereby incorporated into the detailed description as examples or embodiments, with each claim standing on its own as a separate embodiment, and it is contemplated that these embodiments may be combined with one another in various combinations or permutations. The scope of the disclosure should be determined with reference to the appended claims, along with the full scope of equivalents to which such claims are entitled.
While various embodiments of the present disclosure have been described in detail, the present disclosure is not limited to these specific embodiments, and various modifications and embodiments can be made by those skilled in the art on the basis of the concepts of the present disclosure, and these modifications and modifications should be within the scope of the present disclosure as claimed.
Claims (10)
1. A method for logging in a network device, comprising:
the general management service receives deployment information of the proxy service, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service;
the total management service receives management account information corresponding to network equipment, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; at least one of the network devices is a device in a local area network;
the overall management service receives a device login request from a first preset interface, wherein the device login request is used for requesting to login to a target network device;
the overall management service sends login data to the target proxy service based on the device login request and the deployment address of the target proxy service so as to log in the target network device through the target proxy service.
2. The method of claim 1, wherein the overall management service sending login data to a target proxy service based on the device login request and a deployment address of the target proxy service, comprising:
the overall management service determines to log in a management account number, a management password and the target proxy service corresponding to the target network device based on the device login request;
and the total management service sends the management account number and the management password to the target proxy service corresponding to the deployment address.
3. The method of claim 1, wherein prior to the overall management service receiving a device login request from the first predetermined interface, further comprising:
the overall management service receives a user login request from a second preset interface, wherein the user login request carries a user account number and a user password;
under the condition that the user account login is successful, the total management service acquires management account information of all network devices managed by the user account;
and the total management service sends the management account information of all the network devices and the device login interface to the first preset interface.
4. The method of claim 1, wherein after the logging into the target network device through the target proxy service, further comprising:
the overall management service receives a management command from a third preset interface;
the overall management service sends the management command to the target proxy service to send the management command to the target network device through the target proxy service.
5. The method of any of claims 1-4, wherein after the overall management service sends login data to the target proxy service based on the device login request and a deployment address of the target proxy service, further comprising:
the target proxy service receiving the login data from the overall management service;
the target proxy service establishes a communication channel between the target proxy service and the target network device based on the login data.
6. The method of claim 5, wherein the target proxy service establishing a communication channel between the target proxy service and the target network device based on the login data comprises:
and the target proxy service establishes a secure file transfer protocol link channel between the total management service and the target network equipment according to the management account number and the management password of the target network equipment.
7. A management system for a network device, comprising:
client service, overall management service, proxy service;
the client service is configured to:
receiving deployment information of proxy service input by a user at a fourth preset interface, wherein the deployment information at least comprises: a unique identification of the proxy service, a deployment address of the proxy service;
receiving management account information corresponding to network equipment input by a user at a fifth preset interface, wherein the management account information at least comprises: proxy service corresponding to the network equipment, a management account corresponding to the network equipment and a management password corresponding to the management account; the network equipment is equipment in a local area network;
receiving a device login request input by a user on a first preset interface, wherein the device login request is used for requesting to login to target network equipment;
the overall management service is configured to:
receiving deployment information of proxy service and management account information corresponding to network equipment;
and receiving the equipment login request, and sending login data to the target proxy service based on the equipment login request and the deployment address of the target proxy service so as to log in the target network equipment through the target proxy service.
8. The system of claim 7, wherein the system comprises a plurality of sensors,
the overall management service is further configured to:
receiving a user login request from a second preset interface, wherein the user login request carries a user account and a user password;
under the condition that the user account login is successful, acquiring management account information of all network devices managed by the user account;
and sending the management account information of all the network devices and the device login interfaces to the first preset interface.
9. The system of any one of claim 7 to 8,
the number of the proxy services is multiple, and the deployment addresses of the multiple proxy services are different.
10. A computer readable storage medium storing a computer program, characterized in that the method according to any one of claims 1 to 6 is implemented when the computer program is executed by a processor.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202211705169.8A CN116032611B (en) | 2022-12-28 | 2022-12-28 | Login method, system and storage medium of network equipment |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202211705169.8A CN116032611B (en) | 2022-12-28 | 2022-12-28 | Login method, system and storage medium of network equipment |
Publications (2)
Publication Number | Publication Date |
---|---|
CN116032611A true CN116032611A (en) | 2023-04-28 |
CN116032611B CN116032611B (en) | 2024-08-06 |
Family
ID=86073424
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202211705169.8A Active CN116032611B (en) | 2022-12-28 | 2022-12-28 | Login method, system and storage medium of network equipment |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN116032611B (en) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106330479A (en) * | 2015-06-16 | 2017-01-11 | 中兴通讯股份有限公司 | Equipment operation and maintenance method and equipment operation and maintenance system |
JP2019168956A (en) * | 2018-03-23 | 2019-10-03 | 日本電気株式会社 | Proxy login system and proxy login method |
CN110839027A (en) * | 2019-11-14 | 2020-02-25 | 北京京东尚科信息技术有限公司 | User authentication method, device, proxy server and network service system |
CN111371775A (en) * | 2020-02-28 | 2020-07-03 | 深信服科技股份有限公司 | Single sign-on method, device, equipment, system and storage medium |
CN114785590A (en) * | 2022-04-21 | 2022-07-22 | 成都商汤科技有限公司 | Login method, device, equipment and storage medium |
CN115296848A (en) * | 2022-07-05 | 2022-11-04 | 北京瑞和云图科技有限公司 | Bastion machine system based on multi-local area network environment and bastion machine access method |
-
2022
- 2022-12-28 CN CN202211705169.8A patent/CN116032611B/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106330479A (en) * | 2015-06-16 | 2017-01-11 | 中兴通讯股份有限公司 | Equipment operation and maintenance method and equipment operation and maintenance system |
JP2019168956A (en) * | 2018-03-23 | 2019-10-03 | 日本電気株式会社 | Proxy login system and proxy login method |
CN110839027A (en) * | 2019-11-14 | 2020-02-25 | 北京京东尚科信息技术有限公司 | User authentication method, device, proxy server and network service system |
CN111371775A (en) * | 2020-02-28 | 2020-07-03 | 深信服科技股份有限公司 | Single sign-on method, device, equipment, system and storage medium |
CN114785590A (en) * | 2022-04-21 | 2022-07-22 | 成都商汤科技有限公司 | Login method, device, equipment and storage medium |
CN115296848A (en) * | 2022-07-05 | 2022-11-04 | 北京瑞和云图科技有限公司 | Bastion machine system based on multi-local area network environment and bastion machine access method |
Also Published As
Publication number | Publication date |
---|---|
CN116032611B (en) | 2024-08-06 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11088903B2 (en) | Hybrid cloud network configuration management | |
US10853475B2 (en) | Systems and methods for event delivery in a cloud storage system | |
US9992176B2 (en) | Systems and methods for encrypted communication in a secure network | |
US20200296084A1 (en) | Domain Pass-Through Authentication In A Hybrid Cloud Environment | |
US8856906B2 (en) | Authentication processing method and system | |
US10229262B2 (en) | Systems, methods, and apparatuses for credential handling | |
CN108200155A (en) | The mirror image synchronization method in Docker mirror images warehouse and mirror image synchronization system | |
CN111447133B (en) | Message transmission method and device, storage medium and electronic device | |
CN103404103A (en) | System and method for combining an access control system with a traffic management system | |
US10348772B2 (en) | Method and apparatus for enforcing realtime access controls for endpoints | |
CN110401641B (en) | User authentication method and device and electronic equipment | |
CN108848145B (en) | Method and system for accessing near-end network management of equipment through WEB agent and far-end network management | |
CN104468550B (en) | A kind of user login method of windows desktop, equipment and system | |
JP2016523416A (en) | Account login method, device and system | |
US20230421566A1 (en) | Method and apparatus for credential handling | |
CN106330816A (en) | Method and system for logging in cloud desktop | |
US11689629B2 (en) | Binding a public cloud user account and a personal cloud user account for a hybrid cloud environment | |
US20180034750A1 (en) | Instant messaging method, server, and storage medium | |
CN111108736B (en) | Method and system for automatic address failover of a computing device | |
US20210133342A1 (en) | Securely Sharing Files with User Devices Based on Location | |
CN113364741A (en) | Application access method and proxy server | |
CN106060186B (en) | A kind of message processing method and device | |
CN116032611B (en) | Login method, system and storage medium of network equipment | |
CN105959197A (en) | SSL VPN user interface customization method and device | |
US10182119B2 (en) | System and methods for facilitating communication among a subset of connections that connect to a web application |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |