CN116074100A - A method to replace AD domain and provide unified authentication based on ldap protocol - Google Patents

A method to replace AD domain and provide unified authentication based on ldap protocol Download PDF

Info

Publication number
CN116074100A
CN116074100A CN202310117734.7A CN202310117734A CN116074100A CN 116074100 A CN116074100 A CN 116074100A CN 202310117734 A CN202310117734 A CN 202310117734A CN 116074100 A CN116074100 A CN 116074100A
Authority
CN
China
Prior art keywords
user
ldap
application program
module
service module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202310117734.7A
Other languages
Chinese (zh)
Other versions
CN116074100B (en
Inventor
毕玉冰
杨东
肖力炀
崔逸群
刘超飞
曾荣汉
胥冠军
朱博迪
刘迪
刘骁
王文庆
邓楠轶
董夏昕
朱召鹏
介银娟
王艺杰
崔鑫
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Wuzhong Hongsibao Xinke Energy Co ltd
Xian Thermal Power Research Institute Co Ltd
Huaneng Group Technology Innovation Center Co Ltd
Original Assignee
Xian Thermal Power Research Institute Co Ltd
Huaneng Group Technology Innovation Center Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xian Thermal Power Research Institute Co Ltd, Huaneng Group Technology Innovation Center Co Ltd filed Critical Xian Thermal Power Research Institute Co Ltd
Priority to CN202310117734.7A priority Critical patent/CN116074100B/en
Publication of CN116074100A publication Critical patent/CN116074100A/en
Application granted granted Critical
Publication of CN116074100B publication Critical patent/CN116074100B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

本发明属于网络管理技术领域,尤其为一种基于ldap协议实现替代AD域提供统一认证的方法,该方法设置登录认证服务器,登录认证服务器中设有ldap服务模块,在ldap服务模块中设置用户目录信息管理模块,用户目录信息管理模块用于对各用户的注册账号的相关信息进行管理;在用户通过第一应用程序登录模块、第二应用程序登录模块分别登录第一应用程序、第二应用程序时,基于ldap服务模块和ldap网络访问服务模块,使得用户通过一套账号进行认证,既可登录第一应用程序,也可登录第二应用程序。从而集团员工登录各种应用系统时,账号的管理更加方便,并且ldap服务模块为成熟可靠的账号管理模块,减少出现登录出错的现象。

Figure 202310117734

The invention belongs to the technical field of network management, and in particular provides a unified authentication method based on an ldap protocol to replace an AD domain. The method sets a login authentication server, an ldap service module is set in the login authentication server, and a user directory is set in the ldap service module. The information management module, the user directory information management module is used to manage the relevant information of the registered account of each user; when the user logs in the first application program and the second application program respectively through the first application program login module and the second application program login module At this time, based on the ldap service module and the ldap network access service module, the user is authenticated through a set of accounts, and can log in to the first application program or the second application program. Therefore, when group employees log in to various application systems, account management is more convenient, and the ldap service module is a mature and reliable account management module, which reduces the phenomenon of login errors.

Figure 202310117734

Description

一种基于ldap协议实现替代AD域提供统一认证的方法A method to replace AD domain and provide unified authentication based on ldap protocol

技术领域technical field

本发明属于网络管理技术领域,具体涉及一种基于ldap协议实现替代AD域提供统一认证的方法。The invention belongs to the technical field of network management, and in particular relates to a method based on an ldap protocol to replace an AD domain and provide unified authentication.

背景技术Background technique

对于大型电力公司来说,企业的数字化、网络化建设,对提升工作效率、改进管理模式有很大促进作用,随着整个集团应用系统的生态体系不断成长,应用系统种类众多,这些应用系统涵盖了供应链管理、项目管理、财务管理、人力资源管理、客户服务管理等各种工作场景,由于集团中不同的应用系统太多,如果用户终端在每一个应用系统均注册账号,导致用户终端登录系统太不方便,登录体验很不友好。目前,企业是通过AD域的方式对用户登录各种应用系统进行统一认证,AD域认证容易出现错误,比如账号登录一个应用后,登出后,换一台设备登录另一应用,容易出现登录不成功现象,在登录过程中,还容易出现显示出未知的用户名或错误的密码等信息,导致使用不方便,体验不友好。For large electric power companies, the digitalization and network construction of enterprises will greatly promote the improvement of work efficiency and management mode. With the continuous growth of the ecosystem of the entire group's application system, there are many types of application systems. Various work scenarios such as supply chain management, project management, financial management, human resource management, customer service management, etc., because there are too many different application systems in the group, if the user terminal registers an account in each application system, the user terminal login The system is too inconvenient and the login experience is very unfriendly. At present, enterprises use the AD domain to conduct unified authentication for users to log in to various application systems. AD domain authentication is prone to errors. Unsuccessful phenomenon, during the login process, it is easy to display information such as unknown user name or wrong password, which leads to inconvenient use and unfriendly experience.

发明内容Contents of the invention

本发明旨在提供一种基于ldap协议实现替代AD域提供统一认证的方法,解决现有技术中集团的员工登录各种应用系统时,账号管理不方便,以及通过AD域对用户的登录行为进行认证容易出错,导致登录认证失败的技术问题。The present invention aims to provide a method based on the ldap protocol to replace the AD domain to provide unified authentication, to solve the inconvenient account management when the employees of the group log in to various application systems in the prior art, and to monitor the user's login behavior through the AD domain. Authentication is prone to errors, leading to technical problems of login authentication failure.

为解决上述技术问题,本发明采用以下技术方案:In order to solve the problems of the technologies described above, the present invention adopts the following technical solutions:

提供一种基于ldap协议实现替代AD域提供统一认证的方法,包括:Provide a method based on the ldap protocol to replace the AD domain to provide unified authentication, including:

设置登录认证服务器,所述登录认证服务器中设有ldap服务模块,在所述ldap服务模块中设置用户目录信息管理模块,所述用户目录信息管理模块用于对各用户的注册账号的相关信息进行管理;Login authentication server is set, described login authentication server is provided with ldap service module, user directory information management module is set in described ldap service module, and described user directory information management module is used for the relevant information of each user's registered account manage;

用户的终端设备设有第一应用程序登录模块、第二应用程序登录模块,分别用于登录第一应用程序、第二应用程序,且用户的终端设备设有ldap网络访问服务模块;The user's terminal equipment is provided with a first application program login module and a second application program login module, which are respectively used to log in the first application program and the second application program, and the user's terminal equipment is provided with an ldap network access service module;

在用户通过所述第一应用程序登录模块、第二应用程序登录模块分别登录所述第一应用程序、第二应用程序时,基于所述ldap服务模块和ldap网络访问服务模块,使得用户通过一套账号进行认证,既可登录所述第一应用程序,也可登录所述第二应用程序。When the user logs in the first application program and the second application program respectively through the first application program login module and the second application program login module, based on the ldap service module and the ldap network access service module, the user can access the service module through a The user can log in to the first application program or the second application program through authentication with a set of accounts.

优选的,在用户通过所述第一应用程序登录模块登录所述第一应用程序时,认证方式如下:Preferably, when the user logs in to the first application through the first application login module, the authentication method is as follows:

(1)用户在所述第一应用程序登录模块输入账号号码和账号密码;(1) The user enters an account number and an account password in the first application login module;

(2)所述ldap网络访问服务模块获取账号号码和账号密码,所述ldap网络访问服务模块向所述ldap服务模块发送认证数据包,所述认证数据包中包括账号号码和账号密码;(2) described ldap network access service module obtains account number and account password, and described ldap network access service module sends authentication data packet to described ldap service module, comprises account number and account password in the described authentication data packet;

(3)所述ldap服务模块默认与接收的账号号码绑定,所述ldap服务模块根据账号号码,对所述用户目录信息管理模块执行搜索操作,所述用户目录信息管理模块向所述ldap服务模块返回一个与账号号码相关的用户信息;(3) The ldap service module is bound with the account number received by default, and the ldap service module performs a search operation on the user directory information management module according to the account number, and the user directory information management module provides the ldap service The module returns a user information related to the account number;

(4)所述ldap服务模块依据获取的账号密码所述与账号号码相关的用户信息,进行第二次绑定操作,如果绑定成功,说明认证成功。(4) The ldap service module performs the second binding operation according to the user information related to the account number described in the account password obtained, and if the binding is successful, it means that the authentication is successful.

优选的,所述用户目录信息管理模块中设有账号号码存储目录、账号密码存储目录、用户域名目录、用户ID目录、用户组织单位目录。Preferably, the user directory information management module is provided with an account number storage directory, an account password storage directory, a user domain name directory, a user ID directory, and a user organization unit directory.

优选的,所述与账号号码相关的用户信息包括账号号码、账号密码、用户域名、用户ID、用户组织单位。Preferably, the user information related to the account number includes account number, account password, user domain name, user ID, and user organization unit.

优选的,所述认证数据包中还包括所述终端设备的用户域名、用户ID、用户组织单位。Preferably, the authentication data packet further includes the user domain name, user ID, and user organization unit of the terminal device.

与现有技术相比,本发明的有益效果是:该基于ldap协议实现替代AD域提供统一认证的方法设置登录认证服务器,登录认证服务器中设有ldap服务模块,在ldap服务模块中设置用户目录信息管理模块,用户目录信息管理模块用于对各用户的注册账号的相关信息进行管理;在用户的终端设备设有第一应用程序登录模块、第二应用程序登录模块,分别用于登录第一应用程序、第二应用程序,且用户的终端设备设有ldap网络访问服务模块;在用户通过第一应用程序登录模块、第二应用程序登录模块分别登录第一应用程序、第二应用程序时,基于ldap服务模块和ldap网络访问服务模块,使得用户通过一套账号进行认证,既可登录第一应用程序,也可登录第二应用程序。从而集团员工登录各种应用系统时,账号的管理更加方便,并且ldap服务模块为成熟可靠的账号管理模块,减少出现登录出错的现象。Compared with the prior art, the beneficial effects of the present invention are: the method of providing unified authentication based on the ldap protocol to replace the AD domain is set to log in to the authentication server, the login authentication server is provided with an ldap service module, and the user directory is set in the ldap service module The information management module and the user directory information management module are used to manage the relevant information of each user's registered account; the user's terminal equipment is provided with a first application program login module and a second application program login module, which are used to log in to the first application program respectively. Application program, the second application program, and the user's terminal equipment is provided with ldap network access service module; When the user logs in the first application program and the second application program respectively by the first application program login module and the second application program login module, Based on the ldap service module and the ldap network access service module, the user is authenticated through a set of accounts, and can log in to the first application program or the second application program. Therefore, when group employees log in to various application systems, account management is more convenient, and the ldap service module is a mature and reliable account management module, which reduces the phenomenon of login errors.

附图说明Description of drawings

图1为本发明基于ldap协议实现替代AD域提供统一认证的方法一实施例的流程图。FIG. 1 is a flow chart of an embodiment of a method for implementing unified authentication instead of an AD domain based on the ldap protocol in the present invention.

图2为本发明基于ldap协议实现替代AD域提供统一认证的方法一实施例中用户目录信息管理模块的架构图。FIG. 2 is a structure diagram of a user directory information management module in an embodiment of a method for replacing an AD domain to provide unified authentication based on the ldap protocol of the present invention.

具体实施方式Detailed ways

下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

一种基于ldap协议实现替代AD域提供统一认证的方法,请参阅图1和图2。A method based on the ldap protocol to replace the AD domain to provide unified authentication, please refer to Figure 1 and Figure 2.

如图1所示,该基于ldap协议实现替代AD域提供统一认证的方法包括:As shown in Figure 1, the method for implementing unified authentication instead of the AD domain based on the ldap protocol includes:

设置第三方独立的登录认证服务器,登录认证服务器中设有ldap服务模块,在ldap服务模块中设置用户目录信息管理模块,用户目录信息管理模块用于对各用户的注册账号的相关信息进行管理。如图2所示,用户目录信息管理模块中设有账号号码存储目录、账号密码存储目录、用户域名目录、用户ID目录、用户组织单位目录。A third-party independent login authentication server is set, and an ldap service module is set in the login authentication server. A user directory information management module is set in the ldap service module. The user directory information management module is used to manage the relevant information of each user's registered account. As shown in FIG. 2 , the user directory information management module includes an account number storage directory, an account password storage directory, a user domain name directory, a user ID directory, and a user organization unit directory.

其中,账号号码存储目录用于存储账号号码,账号密码存储目录用于存储账号密码,用户域名目录用于存储终端设备的域名,用户ID目录用于存储终端省的地址,用户组织单位目录用于存储终端设备所对应的组织单位。Among them, the account number storage directory is used to store the account number, the account password storage directory is used to store the account password, the user domain name directory is used to store the domain name of the terminal device, the user ID directory is used to store the address of the terminal province, and the user organization unit directory is used for The organizational unit corresponding to the storage terminal device.

用户的终端设备设有第一应用程序登录模块、第二应用程序登录模块,分别用于登录第一应用程序、第二应用程序,且用户的终端设备设有ldap网络访问服务模块,在用户通过第一应用程序登录模块、第二应用程序登录模块分别登录第一应用程序、第二应用程序时,基于ldap服务模块和ldap网络访问服务模块,使得用户通过一套账号进行认证,既可登录第一应用程序,也可登录第二应用程序。The user's terminal equipment is provided with a first application program login module and a second application program login module, which are used to log in the first application program and the second application program respectively, and the user's terminal equipment is provided with an ldap network access service module, which can be accessed by the user through When the first application program login module and the second application program login module log in to the first application program and the second application program respectively, based on the ldap service module and the ldap network access service module, the user is authenticated through a set of accounts, and can log in to the second application program. One application program can also log in to a second application program.

具体的,在用户通过第一应用程序登录模块登录第一应用程序时,认证方式如下:Specifically, when the user logs in to the first application through the first application login module, the authentication method is as follows:

(1)用户在第一应用程序登录模块输入账号号码和账号密码;(1) The user enters the account number and account password in the first application program login module;

(2)ldap网络访问服务模块获取账号号码和账号密码,ldap网络访问服务模块向ldap服务模块发送认证数据包,认证数据包中包括账号号码和账号密码;(2) ldap network access service module obtains account number and account password, and ldap network access service module sends authentication packet to ldap service module, includes account number and account password in the authentication packet;

(3)ldap服务模块默认与接收的账号号码绑定,ldap服务模块根据账号号码,对用户目录信息管理模块执行搜索操作,用户目录信息管理模块向ldap服务模块返回一个与账号号码相关的用户信息;(3) The ldap service module is bound with the received account number by default, and the ldap service module performs a search operation on the user directory information management module according to the account number, and the user directory information management module returns a user information related to the account number to the ldap service module ;

(4)ldap服务模块依据获取的账号密码与账号号码相关的用户信息,进行第二次绑定操作,如果绑定成功,说明认证成功。(4) The ldap service module performs the second binding operation according to the obtained account password and user information related to the account number. If the binding is successful, it means that the authentication is successful.

在用户通过第二应用程序登录模块登录第二应用程序时,认证方式如下:When the user logs into the second application through the second application login module, the authentication method is as follows:

(1)用户在第二应用程序登录模块输入同一套账号号码和账号密码;(1) The user enters the same account number and account password in the second application login module;

(2)ldap网络访问服务模块获取账号号码和账号密码,ldap网络访问服务模块向ldap服务模块发送认证数据包,认证数据包中包括账号号码和账号密码;(2) ldap network access service module obtains account number and account password, and ldap network access service module sends authentication packet to ldap service module, includes account number and account password in the authentication packet;

(3)ldap服务模块默认与接收的账号号码绑定,ldap服务模块根据账号号码,对用户目录信息管理模块执行搜索操作,用户目录信息管理模块向ldap服务模块返回一个与账号号码相关的用户信息;(3) The ldap service module is bound with the received account number by default, and the ldap service module performs a search operation on the user directory information management module according to the account number, and the user directory information management module returns a user information related to the account number to the ldap service module ;

(4)ldap服务模块依据获取的账号密码与账号号码相关的用户信息,进行第二次绑定操作,如果绑定成功,说明认证成功。(4) The ldap service module performs the second binding operation according to the obtained account password and user information related to the account number. If the binding is successful, it means that the authentication is successful.

进一步的,与账号号码相关的用户信息包括账号号码、账号密码、用户域名、用户ID、用户组织单位,在认证数据包中还包括终端设备的用户域名、用户ID、用户组织单位,使得进行多种因素的认证,确保认证安全性。Further, the user information related to the account number includes the account number, account password, user domain name, user ID, and user organization unit, and the authentication data packet also includes the user domain name, user ID, and user organization unit of the terminal device, so that multiple The authentication of various factors ensures authentication security.

需要说明的是,在本文中,诸如第一和第二等之类的关系术语仅仅用来将一个实体或者操作与另一个实体或操作区分开来,而不一定要求或者暗示这些实体或操作之间存在任何这种实际的关系或者顺序。而且,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者设备所固有的要素。It should be noted that in this article, relational terms such as first and second are only used to distinguish one entity or operation from another entity or operation, and do not necessarily require or imply that there is a relationship between these entities or operations. There is no such actual relationship or order between them. Furthermore, the term "comprises", "comprises" or any other variation thereof is intended to cover a non-exclusive inclusion such that a process, method, article, or apparatus comprising a set of elements includes not only those elements, but also includes elements not expressly listed. other elements of or also include elements inherent in such a process, method, article, or device.

尽管已经示出和描述了本发明的实施例,对于本领域的普通技术人员而言,可以理解,在不脱离本发明的原理和精神的情况下可以对这些实施例进行多种变化、修改、替换和变型,本发明的范围由所附权利要求及其等同物限定。Although the embodiments of the present invention have been shown and described, it will be understood by those skilled in the art that various changes, modifications, Alternatives and modifications, the scope of the present invention is defined by the appended claims and their equivalents.

Claims (8)

1. A method for implementing a proxy AD domain to provide unified authentication based on ldap protocol, comprising:
a login authentication server is set, wherein an ldap service module is arranged in the login authentication server, a user directory information management module is arranged in the ldap service module, and the user directory information management module is used for managing the related information of the registration account numbers of all users;
the terminal equipment of the user is provided with a first application program login module and a second application program login module which are respectively used for logging in the first application program and the second application program, and the terminal equipment of the user is provided with a ldap network access service module;
when a user logs in the first application program and the second application program respectively through the first application program login module and the second application program login module, the user logs in the first application program or logs in the second application program based on the ldap service module and the ldap network access service module, so that the user can authenticate through a set of account numbers.
2. The method for providing unified authentication based on ldap protocol instead of AD domain according to claim 1, wherein when a user logs in the first application through the first application login module, the authentication mode is as follows:
(1) The user inputs an account number and an account password in the first application login module;
(2) The ldap network access service module acquires an account number and an account password, and the ldap network access service module sends an authentication data packet to the ldap service module;
(3) The ldap service module defaults to bind with the received account number, the ldap service module executes search operation on the user directory information management module according to the account number, and the user directory information management module returns user information related to the account number to the ldap service module;
(4) And the ldap service module carries out a second binding operation according to the obtained user information related to the account number according to the account number and the password, and if the binding is successful, the authentication is successful.
3. The method for realizing the unified authentication based on the ldap protocol for replacing the AD domain according to claim 2, wherein the user directory information management module is provided with an account number storage directory, an account password storage directory, a user domain name directory, a user ID directory and a user organization unit directory.
4. The method for providing unified authentication based on ldap protocol instead of AD domain according to claim 2, wherein the user information related to account number comprises account number, account password, user domain name, user ID and user organization.
5. The method for providing unified authentication based on the ldap protocol instead of the AD domain according to claim 2, wherein the authentication packet includes an account number and an account password.
6. The method for providing unified authentication based on ldap protocol instead of AD domain according to claim 5, wherein the authentication data packet further comprises a user domain name of the terminal device.
7. The method for providing unified authentication based on ldap protocol instead of AD domain according to claim 5, wherein the authentication data packet further comprises a user ID of the terminal device.
8. The method for providing unified authentication based on ldap protocol instead of AD domain according to claim 5, wherein the authentication data packet further comprises a user organization unit of the terminal device.
CN202310117734.7A 2023-02-15 2023-02-15 A method for replacing AD domain to provide unified authentication based on ldap protocol Active CN116074100B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310117734.7A CN116074100B (en) 2023-02-15 2023-02-15 A method for replacing AD domain to provide unified authentication based on ldap protocol

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310117734.7A CN116074100B (en) 2023-02-15 2023-02-15 A method for replacing AD domain to provide unified authentication based on ldap protocol

Publications (2)

Publication Number Publication Date
CN116074100A true CN116074100A (en) 2023-05-05
CN116074100B CN116074100B (en) 2024-11-12

Family

ID=86183561

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310117734.7A Active CN116074100B (en) 2023-02-15 2023-02-15 A method for replacing AD domain to provide unified authentication based on ldap protocol

Country Status (1)

Country Link
CN (1) CN116074100B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001055813A2 (en) * 2000-01-18 2001-08-02 Novell, Inc. System and method for using directory services to facilitate access to applications available on thin client servers
KR20040002036A (en) * 2002-06-29 2004-01-07 주식회사 케이티 Simple Binding Authorization Method for Strengthening Security
US20090217366A1 (en) * 2005-05-16 2009-08-27 Lenovo (Beijing) Limited Method For Implementing Unified Authentication
CN104717261A (en) * 2013-12-17 2015-06-17 华为技术有限公司 Login method and desktop management device
CN106685973A (en) * 2016-12-30 2017-05-17 东软集团股份有限公司 Method and device for remembering login information, login control method and device
CN111241504A (en) * 2020-01-16 2020-06-05 远景智能国际私人投资有限公司 Identity authentication method and device, electronic equipment and storage medium
CN113360862A (en) * 2021-05-06 2021-09-07 朗新科技集团股份有限公司 Unified identity authentication system, method, electronic device and storage medium
CN115150831A (en) * 2022-06-16 2022-10-04 阿里云计算有限公司 Network access request processing method, device, server and medium

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001055813A2 (en) * 2000-01-18 2001-08-02 Novell, Inc. System and method for using directory services to facilitate access to applications available on thin client servers
KR20040002036A (en) * 2002-06-29 2004-01-07 주식회사 케이티 Simple Binding Authorization Method for Strengthening Security
US20090217366A1 (en) * 2005-05-16 2009-08-27 Lenovo (Beijing) Limited Method For Implementing Unified Authentication
CN104717261A (en) * 2013-12-17 2015-06-17 华为技术有限公司 Login method and desktop management device
CN106685973A (en) * 2016-12-30 2017-05-17 东软集团股份有限公司 Method and device for remembering login information, login control method and device
CN111241504A (en) * 2020-01-16 2020-06-05 远景智能国际私人投资有限公司 Identity authentication method and device, electronic equipment and storage medium
CN113360862A (en) * 2021-05-06 2021-09-07 朗新科技集团股份有限公司 Unified identity authentication system, method, electronic device and storage medium
CN115150831A (en) * 2022-06-16 2022-10-04 阿里云计算有限公司 Network access request processing method, device, server and medium

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
LONGYING LIAN; CHUNYU SONG: "Research of RBAC access control model based on LDAP tree storage", 2011 INTERNATIONAL CONFERENCE ON ELECTRONIC & MECHANICAL ENGINEERING AND INFORMATION TECHNOLOGY (EMEIT 2011), 20 October 2011 (2011-10-20) *
常艳;: "校园网统一身份认证设计及实现", 网络安全技术与应用, no. 06, 15 June 2010 (2010-06-15) *

Also Published As

Publication number Publication date
CN116074100B (en) 2024-11-12

Similar Documents

Publication Publication Date Title
JP4554609B2 (en) Network asset tracker that identifies users of networked computers
JP5710596B2 (en) User-based authentication for real-time communication
CN103067257B (en) Method and server and system for achieving data mutual communication in social networking service
CN108900484B (en) Access right information generation method and device
CN109413096A (en) A kind of login method and device more applied
CN109361753A (en) A kind of Internet of things system framework and encryption method
CN101216904A (en) An e-mail box technique allowing the independent application for multi-user
CN103905399A (en) Account registration management method and apparatus
CN102984051B (en) A kind of e-mail sending method and method of reseptance and mail management system
CN107451794A (en) A kind of science service online management system
CN106301791B (en) Method and system for realizing unified user authentication authorization based on big data platform
CN107154982A (en) A kind of method and system of audit log record
CN102420808A (en) Method for realizing single sign-on in telecom online business hall
CN104902031A (en) Enterprise intelligent cloud system based on virtual desktop
CN115580409A (en) Distributed data storage access method and system based on object storage
CN102480472B (en) Application integrated login method and verification server of enterprise intranet
CN116074100A (en) A method to replace AD domain and provide unified authentication based on ldap protocol
CN107508810A (en) A kind of authentication management method, apparatus and system based on mobile office application
CN110035089A (en) A kind of network security verification method and system of distributed system
CN107395416A (en) A kind of data transmission method for uplink and server cluster
CN117135580A (en) 5G message universal access system and method
KR20080083530A (en) System and method for managing subscriber group data using web page of group administrator of IPP
US9143520B2 (en) Method and apparatus for computer network security
CN1892685A (en) E-mail technology
TWI858463B (en) Automation of account management system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20230818

Address after: No.136 Xingqing Road, Beilin District, Xi'an City, Shaanxi Province

Applicant after: Xi'an Thermal Power Research Institute Co.,Ltd.

Applicant after: Huaneng Group R&D Center Co., Ltd.

Applicant after: Wuzhong Hongsibao Xinke Energy Co.,Ltd.

Address before: No.136 Xingqing Road, Beilin District, Xi'an City, Shaanxi Province

Applicant before: Xi'an Thermal Power Research Institute Co.,Ltd.

Applicant before: Huaneng Group R&D Center Co., Ltd.

GR01 Patent grant
GR01 Patent grant