JP2010267146A - System, and method for allocating computer resource, thin client terminal and terminal server - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To improve usability in a terminal server type thin client system by allowing environmental setting of computer resources by a user. <P>SOLUTION: The computer resource allocation system 10 includes a thin client terminal 100 including a name transmission unit 110 which receives a selection from a list of using place names of a thin client terminal, and transmits the using place name selected by the user to a terminal server 200 after establishment of a thin client connection; and a terminal server 200 including a terminal server function unit 210 which specifies and provides a virtual desktop of the user within a first table based on a user ID transmitted from the thin client terminal 100, and a resource allocation unit 211 which receives information for the using place name from the thin client terminal 100, specifies a computer resource in a second table stored in the virtual desktop, and sets it as a default use resource to the second table. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a computer resource allocation system, a computer resource allocation method, a thin client terminal, and a terminal server. Specifically, in a terminal server type thin client system, a user can set an environment for computer resources. The present invention relates to a technique for improving usability.

  In recent years, due to the enforcement of the Personal Information Protection Law, etc., the security needs of companies are increasing. One way to technically supplement this is to introduce a thin client system. This is a computer that remotely connects to an information processing apparatus such as a server installed in a highly confidential place such as a center from a terminal that does not have a non-volatile storage device such as a hard disk via a network. System. In this thin client system, since no information is stored in the thin client terminal, the risk of information leakage is low.

  When such a thin client system is used, an IC device called authentication device that stores authentication information of each user, connection information to the information processing apparatus, and the like is often distributed to each user. The authentication device is a device having a size suitable for carrying such as a USB memory, and is connected to a thin client terminal by a user using the information processing apparatus. The thin client terminal uses the authentication information and connection information registered in the authentication device to access the information processing apparatus in the center via the network.

  The information processing apparatus is roughly divided into two application forms. One is a blade PC or the like assigned to each user individually, which is basically the same as distributing an individual PC to each user. Therefore, the user bears much of the responsibility for managing the blade PC. On the other hand, the other is a form in which a single server (terminal server) is shared by a plurality of users, which is called a terminal service (TS) type. In the terminal server, a user area for each user is allocated in advance, and access to the user area is permitted during user authentication. Compared to the case where the blade PC is used, resources can be effectively utilized by sharing the terminal server among a plurality of users. In other words, the TS type is a typical centralized system configuration, and the manager of the center bears the responsibility for managing the terminal server. Therefore, from the administrator's point of view, it is possible to limit the management target to the terminal server, and it is easy to thoroughly enforce security policies and prevent arbitrary environmental changes by the user. There are many.

  In addition, the TS type has a merit that the management burden is reduced on the user side. This is because when a blade PC is used, operations such as application version upgrades and virus checks that the user has performed are executed on the management side. In general, a high-performance and highly reliable terminal server can be used as if it were assigned to each user as compared to an individual PC. It is easy to be freed from the risk of rework due to disk crashes. However, as a demerit on the user side, since the terminal server is shared, the degree of freedom regarding environment change or the like is suppressed, and it is difficult to add an application.

  From the background as described above, it is required to deal with user convenience within a proper range that is suppressed in the connection between the terminal server and the thin client terminal in the TS type. For example, since the authentication device is easy to carry, the user may carry only the authentication device and use a shared thin client terminal installed at a predetermined location. At this time, every time the user moves from one location to another, it is necessary to change usage settings for computer resources such as a printer, a display, a plotter, an audio output device, and an external storage device. In the case of the TS type, such setting changes require the user to manually change the environment setting contents in the user area assigned to each user in the terminal server. If the user forgets or mistakes this change, for example, unintentionally performing print output with a printer at another site. In this case, not only a mere output error and an increase in printing cost, but also information leakage, etc. There is also a risk of it occurring.

  As measures for coping with such a problem, for example, the following methods are considered. That is, in a thin client system, in order to print data on a server with a printer in the vicinity of the client PC, there is a technology for managing information for improving usability by installing an intermediate server between the server and the thin client terminal. It has been proposed (see Patent Document 1). In addition, in order to provide a framework that allows a user to easily select a default printer when multiple printer devices of different models are available, there is a technique for adding information for improving usability to the TS server itself installed in the center. It has been proposed (see Patent Document 2).

JP 2007-207131 A JP 2008-204389 A

  In the above-described conventional technology, for example, an intermediate server must be installed in addition to the devices that make up a normal thin client system, and the advantages of the TS type that produce merits by being limited to the terminal server can be reduced. become. That is, it is necessary to place a system administrator in the installation department of each intermediate server in addition to the center, which is not suitable for a strategy of improving management efficiency by concentrating resources in companies and the like. Also, if computer resources such as all thin client terminals and printers are pre-defined in the terminal server, the burden on the administrator will be enormous in companies with a large number of thin client terminals and printers to be managed. End up. In addition, it is difficult to manage a thin client terminal such as a notebook type whose installation location can be easily changed.

  SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and a main object of the present invention is to provide a technology that enables a user to set an environment for computer resources and improve usability in a terminal server type thin client system.

  The computer resource allocation system of the present invention that solves the above problems is a computer system including a terminal server and a thin client terminal that constitute a thin client system.

  The thin client terminal reads connection information including a list of use location names of the thin client terminal from an authentication device connected to the interface, displays the connection information on the output device, and selects a user of the use location name from the list. A name transmission unit that receives the name of the place of use received by the input device and selected by the user is transmitted to the terminal server after establishing a thin client connection with the terminal server.

  On the other hand, the terminal server stores a first table in which a user ID of a thin client terminal user and virtual desktop information assigned to each user are associated with each other, a thin client terminal use place name, and a thin client terminal use place A storage device storing a second table stored for each virtual desktop of the corresponding thin client terminal in association with the name of the computer resource used for each.

  In addition, the terminal server executes processing for establishing a thin client connection with the thin client terminal, and specifies information on the virtual desktop of the corresponding user in the first table based on a user ID transmitted from the thin client terminal. And a terminal server function unit for providing the virtual desktop to the thin client terminal.

  In addition, the terminal server receives the information on the use place name transmitted from the thin client terminal after the thin client connection is established, and stores the information in the virtual desktop provided to the thin client terminal. The information on the used place name is collated in the table, the computer resource associated with the used place name is specified, and the computer resource is set in the second table as a default used resource in the virtual desktop environment. A resource allocation unit is provided.

  The resource allocation unit of the terminal server receives the information on the use place name transmitted from the thin client terminal after establishing the thin client connection, and stores it in the virtual desktop provided to the thin client terminal. When the information of the used place name is collated with the second table and the computer resource associated with the used place name cannot be specified, the input screen accepts the designation of the computer resource corresponding to the used place name Data is transmitted to the thin client terminal, and designation of a computer resource corresponding to the use location name is received from the thin client terminal via the input screen, and the computer resource is used as a default in the virtual desktop environment at the use location. The second table as a resource to be used The data set may be.

  In addition, when the terminal server function unit of the terminal server receives a use request of a computer resource from the corresponding thin client terminal when providing a virtual desktop to the thin client terminal, the terminal server function unit corresponds to the computer resource indicated by the use request. Identifying a computer resource that is set as a default in the second table of the virtual desktop, executing a process according to the use request for the computer resource, and returning the processing result to the thin client terminal in the virtual desktop; It is good.

  In addition, when the terminal server function unit of the terminal server receives a use request of a computer resource from the corresponding thin client terminal when providing a virtual desktop to the thin client terminal, the terminal server function unit corresponds to the computer resource indicated by the use request. Computer resources that are set as default in the second table of the virtual desktop may be specified, and information regarding the corresponding resource in the environment settings of the virtual desktop may be updated with the information of the specified computer resource.

  Also, according to the computer resource allocation method of the present invention, a thin client terminal connected to a terminal server and a thin client reads connection information including a list of use location names of the thin client terminal from an authentication device connected to the interface and outputs the information. Displays on the device, accepts user selection of the usage location name from the list by the input device, and executes processing to transmit the usage location name selected by the user to the terminal server after establishing a thin client connection with the terminal server To do.

  On the other hand, the terminal server stores the first table in which the user ID of the thin client terminal user and the virtual desktop information assigned to each user are associated with each other, the use location name of the thin client terminal, and the thin client terminal A storage device that stores a second table that is stored for each virtual desktop of the corresponding thin client terminal in association with the name of the computer resource used for each use location, and for connecting a thin client to the thin client terminal A process of executing establishment processing, specifying information on the virtual desktop of the user in the first table based on a user ID transmitted from the thin client terminal, and providing the virtual desktop to the thin client terminal; After the client connection is established, the thin client The use place name information transmitted from the terminal is received, the use place name information is collated with the second table stored in the virtual desktop provided to the thin client terminal, and the use is confirmed. A computer resource associated with the place name is specified, and processing for setting the computer resource as a default use resource in the virtual desktop environment in the second table is executed.

  In addition, the thin client terminal of the present invention includes a communication device that communicates with other devices, an interface that connects the authentication device, and a list of usage location names of the thin client terminal from the authentication device connected to the interface. The connection information is read and displayed on the output device, and the user selection of the usage location name from the list is accepted by the input device, and the usage location name selected by the user is connected to the terminal after establishing the thin client connection with the terminal server. A name transmission unit for transmission to the server.

  In addition, the terminal server of the present invention includes a communication device that communicates with other devices, a first table that stores a thin client terminal user ID and virtual desktop information assigned to each user in association with each other, and a thin client A storage device that stores a second table that stores the name of the terminal usage location and the name of the computer resource used for each usage location of the thin client terminal in association with each virtual desktop of the corresponding thin client terminal; Perform processing for establishing a thin client connection with the thin client terminal, identify information on the virtual desktop of the user in the first table based on a user ID transmitted from the thin client terminal, and send the information to the thin client terminal A terminal server function unit that provides virtual desktops and a thin Information on the used place name transmitted from the thin client terminal after establishment of the client connection is received, and the used place name information is stored in the second table stored in the virtual desktop provided to the thin client terminal. And a resource allocating unit that specifies a computer resource associated with the use location name and sets the computer resource in the second table as a default use resource in the virtual desktop environment.

  Note that the “computer resources” mentioned above can target various things necessary for providing computer functions. For example, in addition to the computer itself, peripheral devices such as a printer, a display, a plotter, an audio output device, and an external storage device, a program and data managed by the computer, a memory area, a processing capacity of the computer, and the like may be included.

  A terminal server type thin client system is a computer system that provides a terminal service. The terminal service is a function for making a desktop virtually configured on a terminal server available from a thin client terminal and executing applications and tools on the terminal server. The virtual desktop used by the thin client terminal is displayed as if it is running on the thin client terminal, and the user operates applications on the terminal server as if operating the desktop on the thin client terminal. it can.

  A terminal server that provides such a terminal service passes only screen information of the virtual desktop to the thin client terminal connected to the thin client, and receives only input data from a mouse or a keyboard of the thin client terminal. As a result, the desktop screen can be displayed and operated on the thin client terminal, and the application is executed on the terminal server. In such communication between the terminal server and the thin client terminal, for example, a protocol unique to the terminal service called RDP (Remote Desktop Protocol) is used.

  In addition, the problems disclosed by the present application and the solutions thereof will be clarified by the embodiments of the present invention and the drawings.

  According to the present invention, in a terminal server type thin client system, it is possible for a user to set up an environment for computer resources, thereby improving usability.

It is a network block diagram containing the computer resource allocation system of this embodiment. It is a figure which shows the structural example of the thin client terminal of this embodiment. It is a figure which shows the structural example of the authentication device of this embodiment. It is a figure which shows the example of the authentication information and remote authentication information of this embodiment. It is a figure which shows the example of the profile information of this embodiment It is a figure which shows the structural example of the terminal server of this embodiment. It is a figure which shows the example of the allocation table of this embodiment. It is a figure which shows the example of the printer setting information of this embodiment. It is a figure which shows the structural example of the user area | region of this embodiment. It is a figure which shows the example of the user area environment setting table of this embodiment. It is a figure which shows the example of the environment setting information storage table of this embodiment. It is a figure which shows the processing flow example 1 of the computer resource allocation method of this embodiment. It is a figure which shows the processing flow example 2 of the computer resource allocation method of this embodiment. It is a figure which shows the example of the profile information list screen of this embodiment. It is a figure which shows the example 3 of a processing flow of the computer resource allocation method of this embodiment. It is a figure which shows the example of the environment setting screen of this embodiment.

--- System configuration ---
Embodiments of the present invention will be described below in detail with reference to the drawings. FIG. 1 is a network configuration diagram of a computer resource allocation system 10 according to this embodiment. The computer resource allocation system 10 (hereinafter, system 10) shown in FIG. 1 is assumed to be a terminal server type (hereinafter, TS type) thin client system as an example. For example, the terminal server 200 constituting the system 10 is installed in a predetermined center (for example, a building considering earthquake resistance, security, etc.) by a company or the like that has introduced and operated the system 10. Further, the thin client terminal 100, the printer 300, and the like constituting the system 10 are arranged at each of the bases 1, 2, ..., n of the company (eg, branch offices, factories, etc.). Yes. The base may be of the company or a company other than the company.

  Each of the bases and the center is connected to a network 6 such as an intranet. The thin client terminal 100 of each user located in the base responds to the user's instruction received by the input device 105, and the user area 5 (virtual desktop) assigned to the user in the terminal server 200 of the center through the network 6. The operation processing is performed, and processing such as output to the printer 300 is executed as necessary.

--- Thin client terminal ---.

  Next, each device constituting the computer resource allocation system 10 in this embodiment will be described. FIG. 2 is a diagram illustrating a configuration example of the thin client terminal 100 according to the present embodiment. The thin client terminal 100 is a device that uses the user area 5 that is a virtual desktop provided by the terminal server 200 via the network 6 by the use allocation process of the terminal server 200, and has a function of realizing the present invention. Accordingly, the program 102 stored in the flash ROM 108 or the like is read out to the RAM 103 and executed by the CPU 104 which is an arithmetic unit.

  In addition, the thin client terminal 100 exchanges data with various input devices 105 such as various keyboards, mice, and buttons, output devices 106 such as a display, and the terminal server 200 that are generally provided in computer devices. It has a NIC 107 (Network Interface Card), which is a communication device that bears it. The thin client terminal 100 is connected to the terminal server 200 and the like via the network 6 by the NIC 107, and executes data exchange.

  In the present embodiment, a so-called HDD-less type thin client terminal is assumed as such a thin client terminal 100. The thin client terminal 100 includes a USB interface 144 as an interface for connecting various devices, an I / O connector 160 for connecting a keyboard and a mouse, a video card 130 for connecting a display, and each of these units 101. ˜160 has a bridge 109 that relays a bus connected to 160 and a power source 120. The CPU 104 first recognizes the system configuration of the thin client terminal 100 by accessing the flash ROM 108 and executing the BIOS 135 after the power source 120 is turned on.

  The OS 136 in the flash ROM 108 is a program for the CPU 104 to control each unit 101 to 160 of the thin client terminal 100 and execute a program corresponding to each unit to be described later. In accordance with the BIOS 135, the CPU 104 loads the OS 136 from the flash ROM 108 to the RAM 103 and executes it. As the OS 136 of the present embodiment, an OS having a relatively small size that can be stored in the flash ROM 108 such as an embedded OS is used.

  Next, functional units that the thin client terminal 100 configures and holds in the flash ROM 108 based on the program 102 will be described. The thin client terminal 100 reads connection information including a list of use location names of the thin client terminal 100 from the authentication device 50 connected to the USB interface 144 and displays the connection information on the output device 106. The input device 105 includes a name transmission unit 110 that receives a user location selection by the input device 105 and transmits the usage location name selected by the user to the terminal server 200 after establishing a thin client connection with the terminal server 200.

  The thin client terminal 100 transmits the operation information input from the input device 105 of the thin client terminal 100 to the address of the terminal server 200 as the connection establishment process with the terminal server 200 is executed. Naturally, the thin client terminal also has a function of receiving video information corresponding to the operation information from the terminal server 200 and displaying it on the output device 106 of the thin client terminal 100.

  The thin client terminal 100 includes a remote client program 170 and an encrypted communication program 171 in the flash ROM 108. The remote client program 170 is a program for the thin client terminal 100 to remotely access the user area 5 as a virtual desktop of the terminal server 200, and is, for example, a VNC client (viewer) program. The CPU 104 loads the remote client program 170 from the flash ROM 108 to the RAM 103 and executes it in accordance with the OS 136. Thereby, the CPU 104 transmits the input information (operation contents of the keyboard and mouse) of the I / O connector 160 to the terminal server 200 via the network 6 such as VPN, for example, and the relevant information via the network 6 such as VPN. The video information (display desktop screen) sent from the terminal server 200 is output to an output device 106 such as a display connected to the video card 130.

  The encrypted communication program 171 is a communication program for constructing a secure communication network such as VPN with the terminal server 200 having the address notified from the remote client program 170. For example, a communication program using IPsec can be assumed. The CPU 104 loads the encrypted communication program 171 from the flash ROM 108 to the RAM 103 and executes it in accordance with the OS 136. As a result, the CPU 104 transmits a communication start request to the terminal server 200 assigned to the own thin client terminal 100 via the NIC 107, and constructs a network such as a VPN with the terminal server 200. The terminal server 200 communicates via

  In the present embodiment, the thin client terminal 100 stores the name transmission unit 110, the remote client program 170, the encrypted communication program 171 and the like in a chip called TPM (Trusted Platform Module) instead of the flash ROM 108. It may be. This TPM has a function similar to that of a security chip mounted on a smart card (IC card). It is a hardware chip that has an asymmetric key calculation function and tamper resistance for safe storage of these keys. is there. The functions of this TPM include, for example, RSA (Rivest-Shamir-Adleman Scheme) private key generation / storage, RSA private key computation (signature, encryption, decryption), SHA-1 (Secure Hash Algorithm 1) hash Calculation, platform state information (software measurement) retention (PCR), key, certificate, credential trust chain retention, high-quality random number generation, non-volatile memory, other opt-in and I / O It is done.

  The TPM has a function to securely store and notify platform status information (software measurement values) in a register PCR (Platform Configuration Registers) in the TPM, in addition to generating, storing, and calculating cryptographic keys (asymmetric keys). Have. In the latest specification of TPM, functions such as locality and delegation (authority delegation) are further added. The TPM is physically attached to platform parts (motherboard or the like).

--- Authentication device ---
FIG. 3 is a diagram illustrating a configuration example of the authentication device 50 according to the present embodiment. As an example of the authentication device 50, an IC chip 401 is stored in an appropriate storage case such as a plastic housing, and data communication is performed using a USB adapter 400 on the USB interface 144 of the thin client terminal 100 installed at a base. For example, a device such as a USB memory that can be connected can be used.

  The IC chip 401 of the authentication device 50 includes authentication information 4011, remote authentication information 4012, profile information 4013, an authentication program 4014, and a CPU 4015 that executes the authentication program 4014. The authentication device 50 may be configured so that a flash memory can be externally attached, and a part of the data in the IC chip 401 may be stored in the flash memory.

  The authentication program 4014 performs user authentication by comparing authentication information received from the thin client terminal 100 with authentication information 4011 stored in the IC chip 401, and transmits the authentication result to the thin client terminal 100. . Further, when the authentication result indicates that the authentication is successful, the authentication program 4014 includes profile information 4013 (IP address of the terminal server 200, network information setting method, etc.) stored in the IC chip 401 together with the authentication result. Remote authentication information 4012 for performing user authentication by the terminal server 200 is transmitted to the thin client terminal 100.

  Here, as shown in FIG. 4, the authentication information 4011 is information (user ID) required to authenticate the user by checking with the user ID and password received from the thin client terminal 100 at the authentication device 50. , Password). The authentication program 4014 performs user authentication by comparing authentication information received from the thin client terminal 100 with authentication information 4011 stored in the IC chip 401. As shown in FIG. 4, the remote authentication information 4012 is information necessary for performing user authentication in the terminal server 200 by checking with the user ID and password stored in the terminal server 200 ( User ID, password).

  FIG. 5 is a diagram illustrating an example of the profile information 4013. On the other hand, the profile information 4013 is associated with information indicating the user area environment setting name 501 (= use location name of the thin client terminal 100), the IP address 502 of the terminal server 200, and the network information setting method 503, respectively. It has been. The user area environment setting name 501 corresponds to the “use location name of the thin client terminal” in the present invention, and is information indicating the installation (use) location of the thin client terminal 100 such as a base name. The IP address 502 of the terminal server 200 is a network address indicating the destination of the terminal server 200. The network information setting method 503 is information related to a network information setting method such as DHCP. These pieces of information 501 to 503 are information set by user responsibility, for example. When connecting the thin client terminal 100 to the terminal server 200 and starting communication, the user selects a “user area environment setting name” corresponding to the communication start location (base) from the column of the user area environment setting name 501. (For example, when accessing from “base 1”, the user selects “setting_base 1”).

  The authentication device 50 includes an authentication device (trade name) in which a personal certificate, a private key, a password, and various application software necessary for mobile use are preinstalled in a memory card in which an IC card unit and a flash memory are integrated. : KeyMobile).

---- Terminal server ---
FIG. 3 is a diagram illustrating a configuration example of the terminal server 200 of the present embodiment. On the other hand, the terminal server 200 is a server device that provides the user area 5 as a virtual desktop to the thin client terminal 100 via the network 6 and receives use from the thin client terminal 100. The terminal server 200 reads a program 202 stored in an HDD (Hard Disk Drive) 201 or the like so as to have a function for realizing the present invention, and executes the program by a CPU 204 as an arithmetic unit. In addition, the terminal server 200 includes a NIC 207 that is a communication device that exchanges data with the thin client terminal 100 and the like. The terminal server 200 is connected to the thin client terminal 100 and the like via the network 6 by the NIC 207 and executes data exchange. The terminal server 200 also includes a flash ROM (Read Only Memory) 208, a video card 230 that generates desktop video information, a bridge 209 that relays these units 201 to 230 and a bus, and a power source 220. .

  The flash ROM 208 stores a BIOS (Basic Input / Output System) 235. The CPU 204 first recognizes the system configuration of the terminal server 200 by accessing the flash ROM 208 and executing the BIOS 235 after the power source 220 is turned on.

  A description will be given of functional units configured and held by the terminal server 200 based on the program 202, for example. The terminal server 200 includes an allocation table 225 as the “first table” of the present invention, printer setting information 226, and an authentication information management table 227 in the HDD 201, and further, in each user area 5 provided in the HDD 201. Includes a user area environment setting table 901 and an environment setting information accumulation table 902 as the “second table” of the present invention (both will be described in detail later).

  The terminal server 200 executes processing for establishing a thin client connection with the thin client terminal 100, and the user of the corresponding user is assigned in the allocation table 225 as the first table based on the user ID transmitted from the thin client terminal 100. A terminal server function unit 210 that specifies information on the area 5 (= virtual desktop) and provides the user area 5 (= virtual desktop) to the thin client terminal 100 is provided.

  Further, the terminal server 200 receives the information of the user area environment setting name (= use place name) transmitted from the thin client terminal 100 after establishing the thin client connection, and provides the information to the thin client terminal 100. The user area environment setting table 901 and the environment setting information accumulation table 902 stored in the user area 5 are collated with the information of the user area environment setting name, and the computer resources associated with the user area environment setting name And a resource allocation unit 211 that sets data in the user area environment setting table 901 as a default use resource in the user area 5. It can be assumed that the resource allocation unit 211 is provided in the user area 5.

  The resource allocation unit 211 of the terminal server 200 receives the information on the user area environment setting name transmitted from the thin client terminal 100 after establishing the thin client connection, and provides the information to the thin client terminal 100. The user area environment setting table 901 and the environment setting information accumulation table 902 stored in the user area 5 are collated with the information on the user area environment setting name, and the computer resources associated with the user area environment setting name are obtained. If not specified, input screen data (preliminarily stored in the HDD 201) for accepting the designation of computer resources according to the user area environment setting name is transmitted to the thin client terminal 100, and the thin client is transmitted via the input screen. The user from the terminal 100 A computer resource designation corresponding to the area environment setting name is received, and the computer resource is set in the user area environment setting table 901 as the user area environment setting name = default use resource in the user area 5 at the use location; It is good.

  In addition, when the terminal server function unit 210 of the terminal server 200 receives the use request of the computer resource from the corresponding thin client terminal 100 when providing the user area 5 to the thin client terminal 100, the use request indicates For the computer resource, the computer resource that is set as default in the user area environment setting table 901 of the corresponding user area 5 is specified, the process according to the use request is executed for the computer resource, and the processing result is obtained as the user resource. It may be returned to the thin client terminal 100 in the area 5.

  In addition, when the terminal server function unit 210 of the terminal server 200 receives the use request of the computer resource from the corresponding thin client terminal 100 when providing the user area 5 to the thin client terminal 100, the use request indicates For the computer resource, the computer resource that is set as default in the user area environment setting table 901 of the corresponding user area 5 is specified, and the information regarding the corresponding resource among the environment settings of the user area 5 is the information of the specified computer resource. It may be updated.

  The terminal server 200 receives operation information from the thin client terminal 100 as the connection establishment process with the thin client terminal 100 is executed, and performs information processing according to the operation content indicated by the operation information. Naturally, the terminal server in the thin client system has a function of transmitting the video information indicating the result to the thin client terminal 100 as the virtual desktop for each user = user area 5.

  Further, the terminal server 200 stores a remote server program 270, an encrypted communication program 271, and an OS (Operating System) 236 in the HDD 201. The OS 236 is a program for the CPU 204 to control each unit 201 to 230 of the terminal server 200 and execute each program that implements each unit such as each unit 210 to 211. In accordance with the BIOS 235, the CPU 204 loads the OS 236 from the HDD 201 to the RAM 203 and executes it. As a result, the CPU 204 comprehensively controls the units 201 to 230 of the terminal server 200.

  The remote server program 270 is a program for enabling the user area 5 as a virtual desktop of the terminal server 200 to be remotely operated from the thin client terminal 100. For example, the remote server program 270 is a VNC (Virtual Network Computing) developed at AT & T Cambridge Laboratory. ) Server program. The CPU 204 loads the remote server program 270 from the HDD 201 to the RAM 203 and executes it in accordance with the OS 236. Thus, the CPU 204 receives and processes the input information (keyboard and mouse operation contents) sent from the thin client terminal 100 via a network such as VPN, and also displays video information indicating the processing result (display desktop screen). ) Is transmitted to the thin client terminal 100 via a network such as VPN.

  The encrypted communication program 271 is a communication program for constructing a network such as VPN with the thin client terminal 100, for example, a communication program using IPsec (Security Architecture for the Internet Protocol). In accordance with the OS 236, the CPU 204 loads the encrypted communication program 271 from the HDD 201 into the RAM 203 and executes it. As a result, the CPU 204 constructs a secure network such as VPN with the thin client terminal 100 in accordance with the connection establishment request received from the thin client terminal 100 via the NIC 207, and the thin client terminal via this VPN or the like. Communicate with 100.

  The terminal server 200 has an authentication program 212 and a common area 228 in the HDD 201, and stores printer setting information 226 in the common area 228. The authentication program 212 is a program for performing user authentication by comparing the remote authentication information 4012 received from the thin client terminal 100 via the network 6 with the authentication information stored in the authentication information management table 227 in advance. is there.

  As shown in FIG. 7, the allocation table 225 (= first table) stores a user ID 701 and information 702 relating to the user area 5 in association with each other. This allocation table 225 is registered and managed, for example, by a center administrator.

  Further, as described above, the user area 5 is a virtual desktop previously assigned to each user by the terminal server 200, and a data group constituting the virtual desktop is, for example, a predetermined storage divided for each user in the HDD 201. Stored in the area. Each user occupies the user area 5 assigned to himself / herself and does not have the authority to access the user area 5 of other users.

  The common area 228 is a shared area that can be referred to by any user who is permitted to access the user area 5. In this, printer setting information 226 is registered. As shown in the example of FIG. 8, as the printer setting information 226, a printer name 801, a printer IP address 802, and a printer driver 803 are registered in association with each other. Registration, change, and the like of the printer setting information 226 are all performed by the center administrator, for example. The user selects a specific printer from the printer setting information 226 via the thin client terminal 100 and assigns it to a user area environment setting table 901 in the user area 5 described later.

  Next, the user area 5 will be described. FIG. 9 is a diagram illustrating a configuration example of the user area 5. The user area 5 corresponds to a virtual desktop fixedly assigned to each user. In each user area 5, at least a user area environment setting table 901, an environment setting information accumulation table 902, and a resource allocation unit 211 are registered.

  FIG. 10 is a setting example of the user area environment setting table 901. The user area environment setting table 901 includes an environment name 1001 indicating a computer resource, a default setting 1002 indicating a default computer resource in the user area 5, a computer resource setting name 1003, an IP address of the computer resource, and the like. It includes information A1004, information B1005 indicating other information of computer resources, and the like.

  The user area environment setting table 901 is set manually by each user according to guidance and the like, and the user can take responsibility for setting mistakes although the setting can be freely changed. In this example, “printer” and “wallpaper” are registered as the environment name 1001 indicates as a computer resource. In this example, as indicated by the setting name 1003, “printer_base 1”, “printer_base 2”, and “printer_base n” are registered as “printer”, and information A1003 indicates the corresponding printer. The driver of the corresponding program is registered as the IP address and information B1004. In the default setting 1002 in the example of FIG. 10, “default” is set for “printer_site 1”, that is, the printer is normally used in the user area 5.

  FIG. 11 is a setting example of the environment setting information accumulation table 902. The environment setting information accumulation table 902 includes an environment name 1101 indicating a computer resource, a user area environment setting name 1102, and a setting name 1103. In this example, for example, “printer” set as the environment name 1101 has a setting name 1103 (in the user area environment setting table 901) when the data of the user area environment setting name 1102 is “setting_base 1”. This indicates that “printer_base 1” is used as a default as a default setting name 1003. Registration and correction of this table 902 are performed by the user as appropriate. For example, in this case, when there is an access from the “base 3” at the thin client terminal 100, a record of “setting_base 3” does not exist in the user area environment setting name 1102; Sent from the terminal server 200 (user area 5) to the thin client terminal 100. Once the setting is made in this way, the setting contents of the user area environment setting table 901 are reflected in the environment setting information accumulation table 902 unless the user changes the settings independently thereafter.

  Note that the units 110, 210-211 and the like in the thin client terminal 100, the terminal server 200, and the like that configure the computer resource allocation system 10 described so far may be realized as hardware, a memory, an HDD (Hard Disk), or the like. It may be realized as a program stored in an appropriate storage device such as (Drive). In this case, the CPU of each device reads the corresponding program from the storage device to each RAM and executes it in accordance with the program execution. The program for realizing each unit is acquired from a predetermined storage medium via an input / output interface or executed from another device when it is stored in the storage device of each device in advance and when necessary. It is good. The storage medium refers to, for example, a storage medium that can be attached to and detached from an input / output interface, or a communication medium (that is, a network or a carrier wave or digital signal that propagates through the network).

  In addition to the Internet and LAN, the network 6 may employ various networks such as an ATM line, a dedicated line, a WAN (Wide Area Network), a power line network, a wireless network, a public line network, and a mobile phone network. I can do it. If a virtual private network technology such as VPN (Virtual Private Network) is used, communication with improved security is established when the Internet is adopted.

--- Processing flow example 1 ---
First, an outline of processing of the computer resource allocation method of this embodiment will be described. FIG. 12 is a diagram showing a processing flow example 1 of the computer resource allocation method in the present embodiment. Various operations corresponding to the computer resource allocation method described below are realized by programs executed by the thin client terminal 100, the terminal server 200, the authentication device 50, and the like that constitute the computer resource allocation system 10. And this program is comprised from the code | cord | chord for performing the various operation | movement demonstrated below.

  In this case, first, the user inserts the authentication device 50 into the USB interface 144 provided in the thin client terminal 100. On the other hand, the thin client terminal 100 displays a predetermined input form on the output device 106, and accepts input of authentication information (for example, user ID, password) from the input device 105 such as a keyboard and a mouse from the user. Further, the thin client terminal 100 sends an authentication request including this authentication information to the authentication device 50 (s100).

  The authentication device 50 performs user authentication by comparing authentication information received from the thin client terminal 100 with authentication information (user ID, password) stored in the authentication device 50 (s101), and the authentication result (authentication) Established), information on a method for setting network information (such as the IP address of the thin client terminal 100) (for example, DHCP (Dynamic Host Configuration Protocol)), the IP address of the terminal server 200 serving as a connection destination device, and the terminal server 200 Authentication information (for example, user ID and password) for authenticating the user is transmitted to the thin client terminal 100 (s102).

  On the other hand, the thin client terminal 100 accesses the authentication device 50, reads a plurality of connection methods registered in the authentication device 50, displays them on the output device 106, and accepts a user selection related to the optimum connection method. The thin client terminal 100 receives the network information setting method and the user area environment setting name 501 of the thin client terminal 100 from the authentication device 50 according to the user's selection here, and for example, from the network 6 by a method such as DHCP. Obtain a unique IP address with an intranet IP address system. The thin client terminal 100 transmits the authentication information received from the authentication device 50, the IP address of the thin client terminal 100, and the user area environment setting name 501 to the terminal server 200 via the network 6 (s103).

  On the other hand, the terminal server 200 receives the authentication information from the thin client terminal 100 via the network 6 and collates the received authentication information with the authentication information (for example, user ID, password) stored by itself. Then, user authentication is performed (s104). After the authentication is established, the terminal server 200 collates the user ID included in the received authentication information with the assignment table 225, identifies the user area 5 assigned to the user, and permits access. Further, the terminal server 200 notifies the user area environment setting name 501 to the resource allocation unit 211 of the user area 5 (s105). The resource allocation unit 211 of the user area 5 refers to the user area environment setting name 501 and the user area environment setting table 901 and the environment setting information accumulation table 902 stored in the user area 5, and performs appropriate resource allocation. (S106). The user area 5 serving as a virtual desktop (providing the terminal server 200) communicates with the thin client terminal 100 (s107).

--- Processing flow example 2 ---
Next, a detailed processing procedure example of the computer resource allocation method will be described. FIG. 13 is a diagram showing a processing flow example 2 of the computer resource allocation method in this embodiment. Here, it is assumed that the authentication device 50 is inserted into the USB interface 144 of the thin client terminal 100. In this case, the thin client terminal 100 executes a predetermined authentication program and displays an authentication information (user D, password) input form (data stored in the HDD 201 in advance) on the display 106 connected to the video card 130. .

  The thin client terminal 100 receives the authentication information input from the input device 105 via the input form via the I / O connector 160. Further, the thin client terminal 100 transmits this to the authentication device 50 connected to the USB interface 144 and requests user authentication (S1201).

  The authentication device 50 executes the authentication program 4014 and collates the authentication information (user D, password) received from the thin client terminal 100 with the authentication information (user D, password) 4011 stored in the authentication device 50. Then, user authentication is performed (S1202). After the authentication is established, the authentication device 50 transmits profile information 4013 (FIG. 5) and remote authentication information 4012 (FIG. 4) stored in the authentication device 50 to the thin client terminal 100.

  When the name transmission unit 110 of the thin client terminal 100 receives the profile information 4013 and the remote authentication information 4012 from the authentication device 50 through the USB interface 144, the profile information list screen 1500 (= Data of connection information including a list of use place names of the thin client terminal 100 is displayed on the display 106.

  From the profile information list screen 1500 displayed on the display 106, the user uses the input device 105 such as a mouse and a keyboard, for example, to specify a user area environment setting name 1501 (for example, “setting_base 2”) and the terminal server 200. The user selects the IP address 1502 (for example, “10.10.10.10”) and clicks the connection button 1503. In the meantime, it is assumed that the remote client program 170 of the thin client terminal 100 has completed the thin client connection establishment process with the remote server program 270 of the terminal server 200.

  Then, the name transmission unit 110 of the thin client terminal 100 uses the encrypted communication program 171 while using the remote authentication information (user D, password) 4012 and the user area environment setting name 501 (in the above example, “ The setting_location 2 ”) is transmitted to the terminal server 200 whose IP address is“ 10.10.10.10 ”, for example, via the network 6 (S1203). Note that if the user selects the wrong location, the thin client terminal 100 displays a communication error on the output device 106 because the acquisition of the IP address of the terminal server 200 fails.

  On the other hand, the terminal server function unit 210 of the terminal server 200 uses the authentication program 212 to receive the remote authentication information (user D, password) 4012 transmitted from the thin client terminal 100, and the authentication information. User authentication is performed by collating with the remote authentication information (user D, password) stored in the management table 227 (S1204). After the user authentication is established in step S1204, the terminal server function unit 210 of the terminal server 200 compares the user ID received in step S1204 with the user ID 701 in the allocation table 225, and selects a matching record. Further, the terminal server function unit 210 acquires information on the user area 5 (= virtual desktop) indicated by the user area 702 of the record, and provides the user area 5 (= virtual desktop) to the thin client terminal 100. The method for providing the virtual desktop may be the same as that of the existing terminal service.

  In addition, the terminal server 200 uses the user area environment setting name 501 (“Setting_Location 2” in the above example) received from the thin client terminal 100 as the resource allocation unit 211 of the user area 5. (S1205). The resource allocation unit 211 receives this data and changes the contents of the user area environment setting table 901 stored in the user area 5. FIG. 15 shows a processing flow in the resource allocation unit 211 in this case.

  At this time, it is assumed that the resource allocation unit 211 receives the notification of the user area environment setting name 501 and acquires, for example, data of “setting_base 2” (S1601). The resource allocation unit 211 compares the data “setting_base 2” with the data of the user area environment setting name 1102 in the environment setting information accumulation table 902 (S1602). In the example of FIG. 11, among the records whose environment name 1101 is “printer”, there is a record whose user area environment setting name 1102 is “setting_base 2”. Therefore, the resource allocation unit 211 obtains “printer_base 2” from the setting name 1103 of the corresponding record.

  If a matching record can be retrieved in step S1602 (S1602: match), the resource allocation unit 211 determines that the environment name 1101: “printer” and the setting name 1103: “printer_site 2” obtained in step S1602 The user area environment setting table 901 is checked using data such as “ For example, in the user area environment setting table 901, the resource allocation unit 211 searches for a record in which the environment name 1001 is “printer” and the default setting 1002 is set to “default”, and sets the record. It is checked whether the name 1003 matches “printer_base 2” (S1603). If it is determined as “match” in this check (S1603: match), the resource allocation unit 211 does not update the contents of the user area environment setting table 901 and ends this flow.

  On the other hand, a record in which the environment name 1001 is “printer” and the default setting 1002 is set to “default” is searched, and the setting name 1003 of the record does not match “printer_base 2”. In the case (S1603: mismatch), the resource allocation unit 211 deletes the “default” data set in the default setting 1002 for the record of “printer_site 1” shown in the example of FIG. Further, “default” data is set in the default setting 1002 of the record whose setting name 1003 is “printer_site 2” (S1604).

  Subsequently, the resource allocation unit 211 returns the process to step S1602 after completing the updating process of the user area environment setting table 901 in step S1604. In the example of the present embodiment, for example, the processes S1602 to S1604 are repeated for a record whose environment name 1101 is “wallpaper”. As a result, in the user area environment setting table 901, the environment name 1001 is “default” only for records where the setting name 1003 is “printer_base 2” and “wallpaper_base 2” in both “printer” and “wallpaper”. The setting 1002 changes to a state in which “default” data is set.

  If it is determined in step S1602 that a record that matches the user area environment setting name 501 and the user area environment setting name 1102 of the environment setting information accumulation table 902 cannot be identified (S1602: mismatch), the resource The allocation unit 211 shifts the process to step S1605. In step S1605, the resource allocation unit 211 determines whether there is a matching record in step S1602 that has already been executed, for example, execution history data in step S1602 (eg, the resource allocation unit 211 has the user area 5). At (S1605). In the above example, since there is a matching record for the records whose environment names 1101 are “printer” and “wallpaper”, the resource allocation unit 211 determines in step S1602 that there is a matching record (S1605: Yes). ), The process is terminated.

  As described above, when “setting_base 2” is received as the user area environment setting name 501 in the step S1601, the setting names 1003 in the user area environment setting table 901 are “printer_base 2” and “wallpaper_base 2”. It has been described that “default” data is set in the default setting 1002 only for the record of “”. If the record hits in step S1602, it indicates that the user has previously worked at “base 2”, and the user has performed the optimum environment setting for “base 2”. .

  On the other hand, it is assumed that the resource allocation unit 211 acquires “setting_base 3” as the user area environment setting name 501 in step S1601. In this case, the resource allocation unit 211 proceeds with the processing of steps S1601 to S1603 described above, but in the case shown in FIGS. Therefore, in step S1605, the resource allocation unit 211 determines that there is no matching record in step S1602 (S1605: No), and shifts the processing to S1606.

  In this case, it is shown that the user is connecting for the first time from “base 3”. Accordingly, new registration of computer resources is performed for the “base 3”. At this time, the resource allocation unit 211 reads the data of the environment setting screen 1701 shown in FIG. 16 from the HDD 201 and displays it on the user area 5, directly on the output device 106 of the thin client terminal 100. In the environment setting screen 1701, the resource allocation unit 211 displays “setting_base 3” of the user area environment setting name 501 acquired in step S1601 in the “user area environment setting name” column. In the “setting item” field, “printer” and “wallpaper” are displayed by default so as to be selectable (such as a pull-down menu).

  In the screen example of FIG. 16, the user selects “printer” from the pull-down menu via the input device 105 such as a mouse in the thin client terminal 100. Further, the resource allocation unit 211 accepts a user's selection from a setting name selection pull-down menu 1702. However, since the registration of the printer existing in “base 3” is not registered in the user area environment setting table 901, there is no printer option corresponding to “base 3” in this pull-down menu. Therefore, for example, when the selection of “printer setting information” in the pull-down menu 1702 is received from the user via the thin client terminal 100, the resource allocation unit 211 extracts information registered in the printer information 226, A new pull-down menu is displayed on the user area 5, directly on the output device 106 of the thin client terminal 100. The user refers to this pull-down menu on the output device 106 of the thin client terminal 100, selects “printer_site 3” corresponding to “location 3” on the input device 105, and further presses the enter button 1703.

  On the other hand, the resource allocation unit 211 sends a new registration request for “printer_base 3” with respect to “setting_base 3”, together with the pressing data of the determination button 1703, via the screen 1701 displayed in the user area 5. Accept from the thin client terminal 100. Therefore, the resource allocation unit 211 adds a new record in which “printer_site 3” is set in the setting name 1003 column and “default” is set in the default setting 1002 column in the user area environment setting table 901. Further, the resource allocation unit 211 newly adds a record in which the user area environment setting name 1102 is “setting_base 3” in the environment setting information accumulation table 902 (S1606).

  In the above steps S1601 to S1606, the setting contents of the user area environment setting table 901 stored in the user area 5 assigned to each user include the user area setting name 501 selected by the user in step S1203 as a key. Information previously set in the environment setting information accumulation table 902 is automatically reflected (S1206). Thereafter, terminal communication is started between the user area 5 and the thin client terminal 100, and the terminal server function unit 210 of the terminal server 200 is connected between the user area 5 of the user and the thin client terminal 100. The remote operation is processed (S1207).

  In addition, when the terminal server function unit 210 provides the user area 5 to the thin client terminal 100, the terminal server function unit 210 receives the use request of the computer resource, for example, “printer”, from the corresponding thin client terminal 100. For the “printer”, which is a computer resource indicated by “”, the record in which the default setting 1002 column is set to “default” in the user area environment setting table 901 of the corresponding user area 5 is identified, and the printer indicated by this record, for example, “printer” _Location 3 ”is specified, the printout process of the predetermined print data indicated by the use request is executed for the“ printer_location 3 ”, and the processing result is returned to the thin client terminal 100 in the user area 5 (S1208).

  The terminal server function unit 210 receives the use request for the computer resource, for example, “wallpaper” from the corresponding thin client terminal 100 when providing the user area 5 to the thin client terminal 100. For the “wallpaper” that is the computer resource indicated by “”, the “wallpaper_site 3” that is set as default in the user area environment setting table 901 of the corresponding user area 5 is specified, The information related to “wallpaper” may be updated with the specified information of “wallpaper_base 3”.

  Further, the terminal server function unit 210 of the terminal server 200 closes the user area 5 opened to the user when the thin client connection between the user area 5 and the thin client terminal 100 ends (S1209), and ends the processing. To do.

  In the conventional thin client system, there is a case where the setting contents of the user area environment setting table 901 and the place where the user is actually working do not match, so that the printer output is made to the place where the user is absent. Had occurred. However, according to the computer resource allocation method of this embodiment, the terminal server 200 automatically switches the setting contents of the user area environment setting table 901 based on the user area environment setting name 501 selected by the user at the start of connection. Appropriate environment settings can always be made.

  As described above, according to the present embodiment, in the terminal server type thin client system, it is possible to set the environment of the computer resource by the user, and the usability can be improved.

  As mentioned above, although embodiment of this invention was described concretely based on the embodiment, it is not limited to this and can be variously changed in the range which does not deviate from the summary.

5 User area 6 Network 10 Computer resource allocation system 50 Authentication device 100 Thin client terminal 102, 202 Program 103, 203 RAM (Random Access Memory)
104, 204 CPU (Central Processing Unit)
105, 205 Input device 106, 206 Output device 107, 207 NIC (Network Interface Card)
108, 208 Flash ROM
109, 209 Bridge 110 Name transmission unit 115, 236 OS
120, 220 Power supply 130, 230 Video card 135, 235 BIOS
144 USB interface 160 I / O connector 170 Remote client program 171, 271 Encrypted communication program 200 Terminal server 201 HDD (Hard Disk Drive: storage device)
210 Terminal Server Function Unit 211 Resource Allocation Unit 225 Allocation Table (First Table)
226 Printer setting information 227 Authentication information management table 901 User area environment setting table (second table)
902 Environment setting information accumulation table 270 Remote server program 300 Printer (computer resource)

Claims (7)

A computer system including a terminal server and a thin client terminal constituting a thin client system,
The thin client terminal
From the authentication device connected to the interface, the connection information including a list of use location names of the thin client terminal is read and displayed on the output device, and the user selection of the use location name from the list is received by the input device, A name transmitting unit that transmits a usage location name selected by the user to the terminal server after establishing a thin client connection with the terminal server;
The terminal server is
The first table storing the user ID of the thin client terminal user and the virtual desktop information assigned to each user in association with each other, the use location name of the thin client terminal, and the computer resources used for each use location of the thin client terminal A second table stored for each virtual desktop of the corresponding thin client terminal in association with the name of the storage device,
Perform processing for establishing a thin client connection with the thin client terminal, identify information on the virtual desktop of the user in the first table based on a user ID transmitted from the thin client terminal, and send the thin client terminal with the information A terminal server function unit that provides a virtual desktop;
The information on the used place name transmitted from the thin client terminal after establishing the thin client connection is received, and the used place name is stored in the second table stored in the virtual desktop provided to the thin client terminal. A resource allocation unit that collates information, identifies a computer resource associated with the use location name, and sets the computer resource as a default use resource in the virtual desktop environment in the second table;
A computer resource allocation system characterized by the above. The resource allocation unit of the terminal server is
The information on the used place name transmitted from the thin client terminal after establishing the thin client connection is received, and the used place name is stored in the second table stored in the virtual desktop provided to the thin client terminal. If the computer resource associated with the use location name cannot be identified by collating information, input screen data for accepting the designation of the computer resource corresponding to the use location name is transmitted to the thin client terminal, The computer resource corresponding to the use location name is received from the thin client terminal via the input screen, and the computer resource is set in the second table as a default use resource in the virtual desktop environment at the use location. The claim 1 characterized by the above-mentioned. Computer resource allocation system according. The terminal server function unit of the terminal server is:
In providing a virtual desktop to the thin client terminal, when a use request for a computer resource is received from the corresponding thin client terminal, the computer resource indicated by the use request is set by default in the second table of the corresponding virtual desktop. Identifying a computer resource, executing a process according to the use request for the computer resource, and returning the processing result to the thin client terminal in the virtual desktop.
The computer resource allocation system according to claim 1, wherein the computer resource allocation system is a computer resource allocation system. The terminal server function unit of the terminal server is:
In providing a virtual desktop to the thin client terminal, when a use request for a computer resource is received from the corresponding thin client terminal, the computer resource indicated by the use request is set by default in the second table of the corresponding virtual desktop. Identifying the computer resource, and updating the information related to the resource in the environment setting of the virtual desktop with the information of the identified computer resource,
The computer resource allocation system according to claim 1, wherein the computer resource allocation system is a computer resource allocation system. A thin client terminal connected to a terminal server and a thin client
From the authentication device connected to the interface, the connection information including the list of the use location names of the thin client terminal is read and displayed on the output device, and the user selection of the use location name from the list is received by the input device, Execute the process of sending the usage location name selected by the user to the terminal server after establishing a thin client connection with the terminal server,
The terminal server is
The first table storing the user ID of the thin client terminal user and the virtual desktop information assigned to each user in association with each other, the use location name of the thin client terminal, and the computer resources used for each use location of the thin client terminal A storage device storing a second table stored for each virtual desktop of the corresponding thin client terminal in association with the name of
Perform processing for establishing a thin client connection with the thin client terminal, identify information on the virtual desktop of the user in the first table based on a user ID transmitted from the thin client terminal, and send the information to the thin client terminal The process of providing a virtual desktop;
The information on the used place name transmitted from the thin client terminal after establishing the thin client connection is received, and the used place name is stored in the second table stored in the virtual desktop provided to the thin client terminal. A process of collating information, specifying a computer resource associated with the use location name, and setting data in the second table as a default use resource in the virtual desktop environment;
A computer resource allocation method characterized by the above. A communication device for communicating with other devices;
An interface to connect the authentication device;
From the authentication device connected to the interface, the connection information including a list of use location names of the thin client terminal is read and displayed on the output device, and the user selection of the use location name from the list is received by the input device, A name transmitting unit that transmits the usage location name selected by the user to the terminal server after establishing a thin client connection with the terminal server;
A thin client terminal comprising: A communication device for communicating with other devices;
The first table storing the user ID of the thin client terminal user and the virtual desktop information assigned to each user in association with each other, the use location name of the thin client terminal, and the computer resources used for each use location of the thin client terminal A second table stored for each virtual desktop of the corresponding thin client terminal in association with the name of
Perform processing for establishing a thin client connection with the thin client terminal, identify information on the virtual desktop of the user in the first table based on a user ID transmitted from the thin client terminal, and send the information to the thin client terminal A terminal server function unit that provides a virtual desktop;
The information on the used place name transmitted from the thin client terminal after establishing the thin client connection is received, and the used place name is stored in the second table stored in the virtual desktop provided to the thin client terminal. A resource allocation unit that collates information, identifies a computer resource associated with the use location name, and sets the computer resource as a default use resource in the virtual desktop environment in the second table;
A terminal server comprising:

Images