CN106330816A - Method and system for logging in cloud desktop - Google Patents
Method and system for logging in cloud desktop Download PDFInfo
- Publication number
- CN106330816A CN106330816A CN201510337205.3A CN201510337205A CN106330816A CN 106330816 A CN106330816 A CN 106330816A CN 201510337205 A CN201510337205 A CN 201510337205A CN 106330816 A CN106330816 A CN 106330816A
- Authority
- CN
- China
- Prior art keywords
- cloud desktop
- user
- account
- server
- cloud
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
- H04L67/025—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/08—Protocols specially adapted for terminal emulation, e.g. Telnet
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a method and a system for logging in a cloud desktop. The method comprises steps of: receiving 4A account information input by a user on a 4A login page; when a cloud desktop login link is triggered, sending the 4A account information to a cloud desktop account management server so as to allow the cloud desktop account management server to authenticate the received 4A account information; storing the 4A account information of the user and corresponding cloud desktop access authority information on the cloud desktop account management server; if the authentication is passed, according to the 4A account information of the user and the corresponding cloud desktop access authority information, generating a cloud desktop list and sending the cloud desktop list to the cloud desktop server so as to send the cloud desktop list to the user; and the authentication is not passed, sending an authentication failure to the cloud desktop server so as to send a cloud desktop login failure to the user. According to the invention, by carrying out unified management and storage on the 4A account information of the user and the corresponding cloud desktop access authority information, the user is required to only input the 4A account information for authentication once when logging in the cloud desktop, so authentication processes are saved and use experience of the user is improved.
Description
Technical field
The present invention relates to technical field of network security, be specifically related to a kind of method and system logging in cloud desktop.
Background technology
Cloud platform is a kind of application model user's desktop operating system being separated with physical end equipment,
Script is run desktop operating system on the subscriber terminal and application program trustship and transports to server end by it
OK, and accessed by network remote by terminal unit, and terminal itself only realizes input and output and shows with interface
Show function.Cloud platform is broadly divided into virtual desktop and remote desktop from technology realizes.Virtual desktop: base
In the individual operating system desktop that server virtualization technology provides, distribute independent virtual for each user
Desktop, user is connected remotely to independent virtual desktop, can use the application on this desktop of virtual desktop sum
Program.Remote desktop: utilize the multi-user conversation sharing functionality of server OS, for each user
One desktop session-context is provided.Multiple users are connected remotely to same server OS simultaneously,
The desktop configuration of oneself can be had, the application program using server OS can be shared.
4A safety control platform is to equipment and the account number of application, logs in, authorizes and audit carries out concentrate tube
The system of control.The account number (Account) that so-called 4A is exactly centralized and unified manages, authorizes (Authorization)
Management, certification (Authentication) management and security audit (Audit).Due to cloud platform hardware device
Many, on it, the operation system of carrying is the most numerous and diverse, higher to security requirement.In order to flat to accessing cloud
The user of platform is managed and controls, it is ensured that the safety of cloud platform, needs a kind of security control mode profit
The all resources being cloud platform with 4A platform provide 4A service.
But, current 4A platform and cloud platform independently manage respective login account number, and user passes through
During 4A platform access cloud platform (i.e. logging in cloud desktop), first input in the login page of 4A platform
User is the 4A account registered and password in 4A management server, by 4A management server to user
The 4A account inputted and password carry out certification for the first time, and after certification is passed through, transmission comprises cloud desktop and steps on
The 4A page of record link is to user, and when user clicks on this cloud desktop login link, cloud platform sends cloud
The login page of desktop, to user, receives the cloud desktop account that user inputs on the login page of cloud desktop
And password, cloud desktop server forwards this cloud desktop account and password to the Account Administration server of cloud desktop
Carry out second time certification;After certification is passed through, the cloud desktop list that transmission user is authorized to use is to cloud desktop
Server, is sent to user by cloud desktop server by cloud desktop list.
To sum up, current 4A account number is two different account numbers with cloud desktop account number, and user is visited by 4A platform
At least need when asking cloud platform Managed Resource to input two account numbers respectively, through double probate, verification process
Loaded down with trivial details, poor user experience.
Summary of the invention
The invention provides a kind of method and system logging in cloud desktop, to solve existing to be visited by 4A platform
Ask that cloud platform is loaded down with trivial details by verification process during pipe application resource, the problem of poor user experience.
In order to solve above-mentioned technical problem, the technical scheme is that and be achieved in that:
According to an aspect of the invention, it is provided a kind of method logging in cloud desktop, the method includes:
4A management server receives the 4A account that user inputs on 4A login page;
When the cloud desktop login link arranged on 4A login page is triggered, 4A management server will be used
Family 4A account be sent to cloud desktop Account Administration server so that cloud desktop Account Administration take
The 4A account received is authenticated by business device, preserves user in cloud desktop Account Administration server
4A account information and cloud desktop access authority information corresponding to 4A account information;
If certification is passed through, cloud desktop Account Administration server is according to 4A account and this 4A account number
The cloud desktop access authority information that information is corresponding, the cloud desktop list that generation user is authorized to use is sent to
Cloud desktop server, cloud desktop list is sent to user by cloud desktop server;
If certification is not passed through, cloud desktop Account Administration server sends the result of authentification failure to cloud desktop
Server, cloud desktop server sends cloud desktop login failure result to user.
Alternatively, the method also includes:
Cloud desktop server receives the selection instruction that user inputs in cloud desktop list, refers to according to this selection
Order returns corresponding cloud desktop to user.4A management server distributes 4A account information to user, and will
This 4A account information and cloud desktop access authority information corresponding to described 4A account information are sent to described
Cloud desktop Account Administration server;
Alternatively, the method also includes:
4A management server disposes proxy module on cloud desktop, and proxy module receives the return of user's input
The request of 4A management server, obtains the 4A account of user, is sent to by this 4A account
4A manages server;
4A account information is filled up to the relevant position of 4A login page by 4A management server, by 4A
Login page is sent to user, and generates a random cipher transmission to user;
4A management server receives the password of user's input and determines currently received password and random cipher
The most consistent;
If consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management
The server failure page is to user.
Alternatively, the method also includes: 4A management server is taken signing in 4A management by fort machine
The user of the 4A login page that business device provides is monitored and record.
Alternatively, 4A account information includes: 4A account and static password;
Cloud desktop access authority information corresponding to 4A account information includes:
Whether this 4A account has the authority accessing cloud desktop, and this 4A account when having access cloud desktop authority
Number addressable cloud desktop list.
With the method for above-mentioned login cloud desktop corresponding, present invention also offers a kind of cloud desktop that logs in
System, system includes:
Cloud desktop Account Administration server, for preserving 4A account information and the 4A account information of user
Corresponding cloud desktop access authority information, and the 4A account received is authenticated, if
Certification is passed through, according to the cloud desktop access authority information that 4A account and this 4A account are corresponding
Generate the cloud desktop list that user is authorized to use, this cloud desktop list is sent to cloud desktop server;
If certification is not passed through, send the result of authentification failure to described cloud desktop server;
4A manages server, for receiving the 4A account information that user inputs on 4A login page,
When the cloud desktop login link arranged on described 4A login page is triggered, 4A management server is by institute
The 4A account stating user is sent to cloud desktop Account Administration server;Cloud desktop server, is used for
Receive the cloud desktop list of cloud desktop Account Administration server transmission and be sent to this cloud desktop list use
Family, or, receive the result of the authentification failure that cloud desktop Account Administration server sends, and by cloud desktop
Login failure result is sent to user.
Alternatively, cloud desktop server is additionally operable to receive the selection instruction that user inputs in cloud desktop list,
Corresponding cloud desktop is returned to user according to this selection instruction.
Alternatively, 4A management server includes: proxy module;
Proxy module is deployed on cloud desktop, for receiving the return 4A management server of user's input
Request, obtains the 4A account of user, this 4A account is sent to 4A and manages server;
4A management server is additionally operable to be filled up to 4A account information the relevant position of login page, will step on
The record page is sent to user, and generates a random cipher transmission to user;
4A management server be additionally operable to receive user input password and determine currently received password with
Secret code is the most consistent;
If consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management
The server failure page is to user.
Alternatively, 4A management server also includes: fort machine,
Fort machine, for being monitored the user signing in the login page that 4A management server provides
And record.
Alternatively, 4A account information includes: 4A account and static password;
Cloud desktop access authority information corresponding to 4A account information includes:
Whether this 4A account has the authority accessing cloud desktop, and this 4A account when having access cloud desktop authority
Number addressable cloud desktop list.
The invention has the beneficial effects as follows: the present invention is by storing user in cloud desktop account management server
4A account and cloud desktop access authority corresponding to this 4A account, when 4A management service
Cloud desktop login on the 4A login page of device receives user when triggering request, and 4A manages service
The 4A account that user inputs on 4A login page is sent to cloud desktop account management service by device
Device, the cloud table corresponding to 4A account and this 4A account by cloud desktop account management server
Face authority information is authenticated, if certification is passed through, believes according to the cloud desktop authority of this 4A account
Breath generates the cloud desktop list that user is authorized to use, and is sent to cloud desktop server, cloud desktop services
This cloud desktop list is sent to user by device, facilitates user to access cloud desktop.Thus, only cloud table is being logged in
During face, the cloud desktop authority to 4A account and correspondence carries out once certification, not to logging in 4A pipe
The 4A account of reason server is authenticated, and after certification is passed through, just can send user and be awarded
The cloud desktop list that power uses is to user, it is ensured that the safety that cloud desktop logs in, and simplifies verification process,
Improve user's experience.
Accompanying drawing explanation
Fig. 1 is the flow chart of a kind of method logging in cloud desktop of one embodiment of the invention;
Fig. 2 is the flow chart of a kind of method logging in cloud desktop of another embodiment of the present invention;
Fig. 3 is the block diagram of a kind of system logging in cloud desktop of one embodiment of the invention;
Fig. 4 is the structural representation of a kind of system logging in cloud desktop of one embodiment of the invention.
Detailed description of the invention
The core concept of the present invention is: by user 4A account in prior art and cloud desktop account
Number information is integrated, and utilizes the 4A account of user to log in cloud desktop, and gives phase to 4A account number
Corresponding cloud desktop access authority so that user has only to input a 4A account just can basis
Its cloud desktop access authority directly accesses cloud desktop, simplifies identifying procedure, improves authentication efficiency.
Fig. 1 is the flow chart of a kind of method logging in cloud desktop of one embodiment of the invention, sees Fig. 1,
The method of this login cloud desktop of the embodiment of the present invention includes:
Step S110,4A management server receives the 4A account number letter that user inputs on 4A login page
Breath;
Step S120, when the cloud desktop login link arranged on 4A login page is triggered, by user
4A account be sent to cloud desktop Account Administration server so that cloud desktop Account Administration server
The 4A account received is authenticated, in cloud desktop Account Administration server, preserves user's
4A account information and cloud desktop access authority information corresponding to 4A account information;
Step S130, if certification is passed through, cloud desktop Account Administration server according to 4A account with
And the cloud desktop access authority information that this 4A account is corresponding, generate the cloud table that user is authorized to use
Face list is sent to cloud desktop server, cloud desktop server cloud desktop list is sent to user;
Step S140, if certification is not passed through, cloud desktop Account Administration server sends the knot of authentification failure
Fruit gives cloud desktop server, cloud desktop server send cloud desktop login failure result to user.
By the method shown in Fig. 1, the 4A login page of 4A management server is provided with cloud desktop login
Link, (such as, receives user when this cloud desktop login link is triggered and clicks on this cloud desktop login
The triggering request of link), the 4A account letter that user is inputted on 4A login page by 4A management server
Breath forwards cloud desktop account management server to be authenticated, and after certification is passed through, cloud desktop account management
Server, according to the authority information of user, generates corresponding cloud desktop list and is sent to cloud desktop server,
The cloud desktop list received is sent to user by cloud desktop server.Due in embodiments of the present invention,
Only the 4A account information logging in cloud desktop is carried out once certification, eliminate the certification of 4A platform, simplify
Verification process, has saved the certification waiting time of user, has alleviated log-on message maintenance work;Additionally,
Only after this 4A account certification is passed through by cloud desktop account management server, just can send the cloud of user
Desktop list, to user, also ensure that the safety of cloud desktop access.
In one embodiment of the invention, when user needs to access cloud desktop, first in operation terminal
Browser in input 4A management server login link, open 4A management server login page,
Input 4A account and password, in the login page of above-mentioned 4A management server, be provided with cloud desktop
Log in link;When user clicks on the cloud desktop login link on login page, 4A management server will receive
To the 4A account information of user's input be sent to cloud desktop account management server and be authenticated, certification
By rear, cloud desktop account management server returns, to cloud desktop server, the cloud table that user is authorized to use
Face list.
In the present embodiment, 4A account information includes 4A account and static password, 4A account information pair
The cloud desktop access authority answered refers to, whether this 4A account has the authority accessing cloud desktop, and at 4A
When account has access cloud desktop authority, the cloud desktop extent of competence preserving 4A account concrete is the most addressable
Cloud desktop the Resources list.Specifically, cloud desktop account management server, can be using 4A account as rope
Draw, the cloud desktop access authority information that storage 4A account is corresponding.
Embodiments of the invention are by giving by 4A server-assignment can visit to the 4A account information of user
Ask the attribute of cloud desktop, the 4A account information of user will access the cloud desktop account of cloud desktop as user
Number information, for a user, it is only necessary to remember that the 4A account information on 4A server need not memorize cloud
The account information of desktop server, improves user's experience.Here cloud desktop server (cloud platform)
It is a big platform, cloud platform comprises the cloud desktop list that user is authorized to use, purchases for such as one
Thing website can regard a cloud platform as, has various resource and system in cloud platform.The authority of user is not
With, the cloud desktop of acquisition is the most different, and such as, according to the access rights of user, a certain user gets
Cloud desktop is to comprise men's clothing, two Managed Resources of women's dress, and the cloud desktop that another one user gets is only
Including this Managed Resource of men's clothing, multiple spendable resource composition cloud desktop lists.
In one embodiment of the invention, cloud desktop server reception user inputs in cloud desktop list
Selection instruction, return corresponding cloud desktop to user according to this selection instruction.I.e. by user according to use
Needing in cloud desktop list, select cloud desktop to be operated, cloud desktop server is receiving
After the selection instruction of user, send selected cloud desktop to user, it is achieved user is to corresponding cloud desktop
Access.
In one embodiment of the invention, the method also includes: 4A management server is by fort machine pair
The user signing in the 4A login page that 4A management server provides is monitored and record.Guarantee user
Behavior is legal, it is provided that safety assurance.Fort machine on 4A management server can manage server to 4A
The conversation procedure such as O&M agreement such as SSH/FTP/Telnet/SFTP/Http/Https/RDP/X11/VNC enter
The record that row is complete, to meet the demand of later audit;Auditing result can be recorded a video and log mode presents,
Video information include O&M user's name, target resource name, client ip, client computer title,
The information such as protocol name, O&M time started, end time, O&M duration.
Fig. 2 is the flow chart of a kind of method logging in cloud desktop of another embodiment of the present invention;See figure
2, in another embodiment of the invention, 4A management server includes: proxy module;Proxy module portion
Administration is on cloud desktop, and proxy module manages the request of server for the return 4A receiving user's input,
Obtain the 4A account of user, this 4A account is sent to 4A and manages server;
In the present embodiment, the cloud desktop list that cloud desktop Account Administration server is returned by cloud desktop server
It is sent to user, and receives user's selection instruction in this cloud desktop list, receive the choosing of user
After selecting instruction, corresponding cloud desktop is returned to user by cloud desktop server, sends deployment to user simultaneously
The proxy module of server is managed at the 4A of cloud desktop;Proxy module receives the return 4A pipe of user's input
The request of reason server, and obtain the 4A account of user, this 4A account is sent to 4A
Management server carries out verifying to determine whether the user logging in cloud desktop can directly return 4A management clothes
The administration page of business device.
Why the embodiment of the present invention is arranged on cloud desktop 4A management server proxy module be by
4A platform (4A manages server) and cloud platform (cloud desktop server) both it in prior art
Between can not directly return, so wanting to return to 4A when user signs in after cloud desktop operated completes
During platform, the proxy module of the 4A platform disposed on the cloud desktop used by user is needed to realize,
Proxy module obtains the 4A account of the current user logging in cloud desktop, and is sent to 4A management service
Device is verified.4A management server is additionally operable to be filled up to 4A account information the corresponding positions of login page
Put, login page is sent to user, and generates a random cipher transmission to user;4A manages server
It is additionally operable to receive the password of user's input and determine that currently received password is the most consistent with random cipher;As
Fruit is consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management server
Failure page is to user.
Concrete, when user clicks on this proxy module, cloud desktop sends the request of return to 4A management clothes
Business device, the 4A account information of the user that 4A management server Receiving Agent module sends;4A manages clothes
The 4A account information of business device input user is to the relevant position of 4A login page, and sends 4A log in page
Face is to user;Meanwhile, 4A management server generates a random cipher, sends this random cipher to user;
In embodiments of the present invention, when user manages server registration at 4A, fill in individual's contact method,
Such as: phone number and email address etc..It is to register according to user that 4A management server generates random cipher
Time contact method, send random cipher to user.
4A management server, when receiving the password of user's input, determines current reception password and with secret
Code is the most consistent;If consistent, send 4A administration page to user so that user directly returns 4A and puts down
Platform;Otherwise, transmission logs in 4A platform failure page to user.Wherein, when user is in 4A management service
When password filled in by device, 4A management server password user filled in and the random cipher being sent to user enter
Row comparison, if both are completely the same, sends the administration page of 4A management server to user;Otherwise
Transmission logs in the 4A management server failure page to user.
It follows that user can be realized in this way is returned directly to 4A platform by cloud desktop
Administration page, is convenient for users to operate.
Fig. 3 is the block diagram of a kind of system logging in cloud desktop of one embodiment of the invention.See Fig. 3,
Corresponding with the method for above-mentioned login cloud desktop, present invention also offers a kind of system logging in cloud desktop,
System 300 includes:
Cloud desktop Account Administration server 310, for preserving 4A account information and the 4A account of user
The cloud desktop access authority information that information is corresponding, and the 4A account received is authenticated,
If certification is passed through, according to the cloud desktop access authority that 4A account and this 4A account are corresponding
Information generates the cloud desktop list that user is authorized to use, and this cloud desktop list is sent to cloud desktop services
Device 330;If certification is not passed through, send the result of authentification failure to described cloud desktop server 330;
4A manages server 320, for receiving the 4A account letter that user inputs on 4A login page
Breath, when the cloud desktop login link arranged on 4A login page is triggered, 4A manages server 320
The 4A account of user is sent to cloud desktop Account Administration server 310;
Cloud desktop server 330, for receiving the cloud desktop that cloud desktop Account Administration server 310 sends
This cloud desktop list is also sent to user by list, or, receive cloud desktop Account Administration server 310
The result of the authentification failure sent, and cloud desktop login failure result is sent to user.
In one embodiment of the invention, cloud desktop server 330 is additionally operable to receive user at cloud desktop
The selection instruction of input in list, returns corresponding cloud desktop to user according to this selection instruction.
In one embodiment of the invention, 4A management server 320 includes: proxy module;
Proxy module is deployed on cloud desktop, manages server 320 for receiving the return 4A of user's input
Request, obtain user 4A account, this 4A account is sent to 4A manage server
320;
4A manages server 320, is additionally operable to be filled up to 4A account information the relevant position of login page,
Login page is sent to user, and generates a random cipher transmission to user;
4A manages server 320, is additionally operable to receive the password of user's input and determine currently received password
The most consistent with random cipher;
If consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management
The server failure page is to user.
Fig. 4 is the structural representation of a kind of system logging in cloud desktop of one embodiment of the invention, sees
Fig. 4, in one embodiment of the invention, the system logging in cloud desktop includes: 4A management server 420,
Cloud desktop Account Administration server 410 and cloud desktop server 430, wherein, 4A management server includes:
Account Administration (Account), authentication management (Authentication), empowerment management (Authorization)
With audit management (Audit).Account Administration is specifically for distributing 4A account number for user, to this 4A account number
Safeguarding, empowerment management distributes corresponding cloud desktop access authority such as the 4A account number for user,
Whether there are access rights, and have which type of access rights etc..Authentication management is 4A platform self
One certified component, carries out preliminary certification to the user logging in 4A platform.Audit management is to pass through fort
The user signing in the 4A login page that 4A management server 420 provides is monitored and record by machine.
4A management server 420 also provides for 4A login page, is provided with cloud desktop on this 4A login page
The cloud desktop login link of server.
Specifically, user inputs the network address of 4A management server in the browser of operation terminal, opens
The login page of 4A management server;Then in above-mentioned login page, user is inputted at this 4A management clothes
The 4A account information registered in business device and password;The cloud desktop login of above-mentioned 4A login page connects
When receiving the triggering request of user, 4A management server is supplied to cloud after this 4A account and password
Desktop Account Administration server is authenticated, to determine whether active user has the authority of access cloud desktop.
In one embodiment of the invention, 4A account information includes: 4A account and static password;
Cloud desktop access authority information corresponding to 4A account information includes:
Whether this 4A account has the authority accessing cloud desktop, and this 4A account when having access cloud desktop authority
Number addressable cloud desktop list.
It should be noted that the system of this login cloud desktop of the present invention is and aforesaid login cloud desktop
Method corresponding, thus before the work process of system logging in cloud desktop in the present embodiment may refer to
State the illustrating of method part logging in cloud desktop, do not repeat them here.
By the system shown in Fig. 3 and Fig. 4, in the account management server of cloud desktop, store user's
4A account and cloud desktop access authority corresponding to this 4A account, when the login of 4A platform
When cloud desktop login on the page receives the 4A account of user's input, this 4A account number is believed
Breath is sent to cloud desktop server, and this 4A account information is sent to cloud desktop account by cloud desktop server
Management server, by cloud desktop account management server to 4A account and this 4A account pair
The cloud desktop authority information answered is authenticated, if certification is passed through, corresponding according to this 4A account
Cloud desktop authority information generates the cloud desktop list that user is authorized to use, and is sent to cloud desktop server,
This cloud desktop list is sent to user by cloud desktop server, facilitates user to access cloud desktop.Thus, only
When logging in cloud desktop, the cloud desktop authority that 4A account is corresponding is carried out once certification, not to stepping on
The 4A account of record 4A platform is authenticated, and after certification is passed through, just can send user and be awarded
The cloud desktop list that power uses is to user, it is ensured that cloud desktop logs in safety, letter change verification process,
Improve user's experience.
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the protection model of the present invention
Enclose.All any modification, equivalent substitution and improvement etc. made within the spirit and principles in the present invention, all
Comprise within the scope of the present invention.
Claims (10)
1. the method logging in cloud desktop, it is characterised in that the method includes:
4A management server receives the 4A account that user inputs on 4A login page;
When the cloud desktop login link arranged on described 4A login page is triggered by user, 4A manages clothes
The 4A account of described user is sent to cloud desktop Account Administration server by business device so that described cloud
The described 4A account received is authenticated by desktop Account Administration server, described cloud desktop account
Number management server in preserve the 4A account information of user and the cloud table that described 4A account information is corresponding
Face access authority information;
If certification is passed through, described cloud desktop Account Administration server according to described 4A account and
The cloud desktop access authority information that this 4A account is corresponding, generates the cloud desktop that user is authorized to use
List is sent to cloud desktop server, and described cloud desktop list is sent to user by described cloud desktop server;
If certification is not passed through, described cloud desktop Account Administration server sends the result of authentification failure to institute
Stating cloud desktop server, described cloud desktop server sends cloud desktop login failure result to user.
2. the method for claim 1, it is characterised in that the method also includes:
Described cloud desktop server receives the selection instruction that user inputs in described cloud desktop list, according to
This selection instruction returns corresponding cloud desktop to user.
3. the method for claim 1, it is characterised in that the method also includes:
4A management server disposes proxy module on cloud desktop, and described proxy module receives user's input
Return the request of 4A management server, obtain the 4A account of user, this 4A account is sent out
Give described 4A and manage server;
Described 4A account information is filled up to the relevant position of 4A login page by described 4A management server,
Described 4A login page is sent to user, and generates a random cipher transmission to user;
Described 4A management server receives the password of user's input and determines that currently received password is with described
Random cipher is the most consistent;
If consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management
The server failure page is to user.
4. method as claimed in claim 3, it is characterised in that the method also includes: 4A manages clothes
The user signing in the 4A login page that 4A management server provides is monitored by business device by fort machine
And record.
5. the method for claim 1, it is characterised in that described 4A account information includes: 4A
Account and static password;
Cloud desktop access authority information corresponding to described 4A account information includes:
Whether this 4A account has the authority accessing cloud desktop, and this 4A account when having access cloud desktop authority
Number addressable cloud desktop list.
6. the system logging in cloud desktop, it is characterised in that described system includes:
Cloud desktop Account Administration server, for preserving the 4A account information of user and described 4A account
The cloud desktop access authority information that information is corresponding;And, the 4A account received is authenticated,
If certification is passed through, according to the cloud desktop access that described 4A account and this 4A account are corresponding
Authority information generates the cloud desktop list that user is authorized to use, and this cloud desktop list is sent to described cloud
Desktop server;If certification is not passed through, send the result of authentification failure to described cloud desktop server;
4A manages server, for receiving the 4A account information that user inputs on 4A login page,
When the cloud desktop login link arranged on described 4A login page is triggered, 4A management server is by institute
The 4A account stating user is sent to cloud desktop Account Administration server;
Cloud desktop server, for receiving the cloud desktop list of cloud desktop Account Administration server transmission and inciting somebody to action
This cloud desktop list is sent to described user, or, receive recognizing of cloud desktop Account Administration server transmission
Demonstrate,prove failed result and cloud desktop login failure result is sent to described user.
7. system as claimed in claim 6, it is characterised in that described cloud desktop server is additionally operable to connect
Receive the selection instruction that user inputs in described cloud desktop list, return corresponding cloud according to this selection instruction
Desktop is to user.
8. system as claimed in claim 6, it is characterised in that described 4A management server includes:
Proxy module;
Described proxy module is deployed on cloud desktop, for receiving the return 4A management service of user's input
The request of device, obtains the 4A account of user, and this 4A account is sent to described 4A management
Server;
4A management server is additionally operable to be filled up to described 4A account information the corresponding positions of 4A login page
Put, described 4A login page is sent to user, and generates a random cipher transmission to user;
Described 4A management server is additionally operable to receive the password of user's input and determine currently received password
The most consistent with described random cipher;
If consistent, then send 4A administration page to user;If inconsistent, send and log in 4A management
The server failure page is to user.
9. system as claimed in claim 8, it is characterised in that described 4A management server also includes:
Fort machine,
Described fort machine, for entering the user signing in the 4A login page that 4A management server provides
Row monitoring and record.
10. system as claimed in claim 6, it is characterised in that described 4A account information includes:
4A account and static password;
Cloud desktop access authority information corresponding to described 4A account information includes:
Whether this 4A account has the authority accessing cloud desktop, and this 4A account when having access cloud desktop authority
Number addressable cloud desktop list.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510337205.3A CN106330816B (en) | 2015-06-17 | 2015-06-17 | A kind of method and system logging in cloud desktop |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510337205.3A CN106330816B (en) | 2015-06-17 | 2015-06-17 | A kind of method and system logging in cloud desktop |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106330816A true CN106330816A (en) | 2017-01-11 |
| CN106330816B CN106330816B (en) | 2019-09-27 |
Family
ID=57733223
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510337205.3A Active CN106330816B (en) | 2015-06-17 | 2015-06-17 | A kind of method and system logging in cloud desktop |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106330816B (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108989021A (en) * | 2018-06-04 | 2018-12-11 | 北京辰森世纪科技股份有限公司 | Information authentication method, device, computer equipment and readable storage medium storing program for executing |
| CN109302414A (en) * | 2018-11-08 | 2019-02-01 | 山西省农村信用社联合社 | Desktop cloud login method, terminal, SDN controller and system based on software defined network SDN |
| CN110430273A (en) * | 2019-08-09 | 2019-11-08 | 深圳市瑞云科技有限公司 | One kind being based on 5G real-time Transmission mobile phone cloud desktop system and method |
| CN110474916A (en) * | 2019-08-20 | 2019-11-19 | 广州海颐信息安全技术有限公司 | Web oriented application provides the method and device of franchise account |
| CN111193776A (en) * | 2019-12-11 | 2020-05-22 | 福建升腾资讯有限公司 | Method, device, equipment and medium for automatically logging in client under cloud desktop environment |
| CN111447176A (en) * | 2020-02-26 | 2020-07-24 | 中国平安人寿保险股份有限公司 | Method and device for safely accessing external network by internal network, computer equipment and storage medium |
| CN112328938A (en) * | 2020-11-05 | 2021-02-05 | 常州微亿智造科技有限公司 | Web application permission control method and device |
| CN112507303A (en) * | 2020-12-10 | 2021-03-16 | 医渡云(北京)技术有限公司 | Cloud desktop management method, device and system, storage medium and electronic equipment |
| CN112667879A (en) * | 2020-12-24 | 2021-04-16 | 广东轩辕网络科技股份有限公司 | Resource matching method and device for teaching cloud desktop, storage medium and terminal equipment |
| CN113191729A (en) * | 2021-04-26 | 2021-07-30 | 西安雷风电子科技有限公司 | Cloud desktop management method and system |
| CN113452711A (en) * | 2021-06-29 | 2021-09-28 | 新华三大数据技术有限公司 | Single sign-on method of cloud desktop and network equipment |
| CN113794691A (en) * | 2021-08-20 | 2021-12-14 | 新华三大数据技术有限公司 | Multi-station point cloud desktop unified login method and device and storage medium |
| CN114024730A (en) * | 2021-10-29 | 2022-02-08 | 敦讯信息咨询(海南)有限公司 | Enterprise portal management system |
| CN114189513A (en) * | 2021-10-28 | 2022-03-15 | 福建升腾资讯有限公司 | File scanning method, device, equipment and medium based on trusted cloud desktop |
| CN114398114A (en) * | 2021-08-31 | 2022-04-26 | 北京来也网络科技有限公司 | AI-based RPA system body interface generation method and device |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102571359A (en) * | 2012-04-06 | 2012-07-11 | 上海凯卓信息科技有限公司 | Method for certificating cloud desktop based on smart card |
| US20120192263A1 (en) * | 2011-01-24 | 2012-07-26 | Hon Hai Precision Industry Co., Ltd. | Access gateway and method for providing cloud storage service |
| CN102833238A (en) * | 2012-08-14 | 2012-12-19 | 上海聚力传媒技术有限公司 | Method, device, equipment and system for assisting network equipment to carry out user authentication |
| CN102882947A (en) * | 2011-09-14 | 2013-01-16 | 微软公司 | Automation desktop service supply |
| CN103023918A (en) * | 2012-12-26 | 2013-04-03 | 百度在线网络技术(北京)有限公司 | Method, system and device for uniformly providing login for multiple network services |
| CN103037004A (en) * | 2012-12-21 | 2013-04-10 | 曙光信息产业(北京)有限公司 | Implement method and device of cloud storage system operation |
| CN103118030A (en) * | 2013-02-22 | 2013-05-22 | 浪潮电子信息产业股份有限公司 | Desktop cloud based identity authentication method |
| US20130304880A1 (en) * | 2012-05-11 | 2013-11-14 | Chunghwa Telecom Co., Ltd | Control system and method for network service and function of virtual desktop application in cloud |
| CN103731432A (en) * | 2014-01-11 | 2014-04-16 | 西安电子科技大学昆山创新研究院 | Multi-user supported searchable encryption system and method |
| CN104144172A (en) * | 2013-05-06 | 2014-11-12 | 上海宏第网络科技有限公司 | Cloud platform system and method based on desktop virtualization technology |
-
2015
- 2015-06-17 CN CN201510337205.3A patent/CN106330816B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120192263A1 (en) * | 2011-01-24 | 2012-07-26 | Hon Hai Precision Industry Co., Ltd. | Access gateway and method for providing cloud storage service |
| CN102882947A (en) * | 2011-09-14 | 2013-01-16 | 微软公司 | Automation desktop service supply |
| CN102571359A (en) * | 2012-04-06 | 2012-07-11 | 上海凯卓信息科技有限公司 | Method for certificating cloud desktop based on smart card |
| US20130304880A1 (en) * | 2012-05-11 | 2013-11-14 | Chunghwa Telecom Co., Ltd | Control system and method for network service and function of virtual desktop application in cloud |
| CN102833238A (en) * | 2012-08-14 | 2012-12-19 | 上海聚力传媒技术有限公司 | Method, device, equipment and system for assisting network equipment to carry out user authentication |
| CN103037004A (en) * | 2012-12-21 | 2013-04-10 | 曙光信息产业(北京)有限公司 | Implement method and device of cloud storage system operation |
| CN103023918A (en) * | 2012-12-26 | 2013-04-03 | 百度在线网络技术(北京)有限公司 | Method, system and device for uniformly providing login for multiple network services |
| CN103118030A (en) * | 2013-02-22 | 2013-05-22 | 浪潮电子信息产业股份有限公司 | Desktop cloud based identity authentication method |
| CN104144172A (en) * | 2013-05-06 | 2014-11-12 | 上海宏第网络科技有限公司 | Cloud platform system and method based on desktop virtualization technology |
| CN103731432A (en) * | 2014-01-11 | 2014-04-16 | 西安电子科技大学昆山创新研究院 | Multi-user supported searchable encryption system and method |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108989021A (en) * | 2018-06-04 | 2018-12-11 | 北京辰森世纪科技股份有限公司 | Information authentication method, device, computer equipment and readable storage medium storing program for executing |
| CN109302414B (en) * | 2018-11-08 | 2021-06-11 | 山西省农村信用社联合社 | Desktop cloud login method, terminal, SDN controller and system based on Software Defined Network (SDN) |
| CN109302414A (en) * | 2018-11-08 | 2019-02-01 | 山西省农村信用社联合社 | Desktop cloud login method, terminal, SDN controller and system based on software defined network SDN |
| CN110430273A (en) * | 2019-08-09 | 2019-11-08 | 深圳市瑞云科技有限公司 | One kind being based on 5G real-time Transmission mobile phone cloud desktop system and method |
| CN110474916A (en) * | 2019-08-20 | 2019-11-19 | 广州海颐信息安全技术有限公司 | Web oriented application provides the method and device of franchise account |
| CN111193776A (en) * | 2019-12-11 | 2020-05-22 | 福建升腾资讯有限公司 | Method, device, equipment and medium for automatically logging in client under cloud desktop environment |
| CN111193776B (en) * | 2019-12-11 | 2022-02-25 | 福建升腾资讯有限公司 | Method, device, equipment and medium for automatically logging in client under cloud desktop environment |
| CN111447176A (en) * | 2020-02-26 | 2020-07-24 | 中国平安人寿保险股份有限公司 | Method and device for safely accessing external network by internal network, computer equipment and storage medium |
| CN111447176B (en) * | 2020-02-26 | 2023-07-21 | 中国平安人寿保险股份有限公司 | Method, device, computer equipment and storage medium for safely accessing external network by internal network |
| CN112328938A (en) * | 2020-11-05 | 2021-02-05 | 常州微亿智造科技有限公司 | Web application permission control method and device |
| CN112328938B (en) * | 2020-11-05 | 2022-07-26 | 常州微亿智造科技有限公司 | Web application permission control method and device |
| CN112507303A (en) * | 2020-12-10 | 2021-03-16 | 医渡云(北京)技术有限公司 | Cloud desktop management method, device and system, storage medium and electronic equipment |
| CN112667879A (en) * | 2020-12-24 | 2021-04-16 | 广东轩辕网络科技股份有限公司 | Resource matching method and device for teaching cloud desktop, storage medium and terminal equipment |
| CN113191729A (en) * | 2021-04-26 | 2021-07-30 | 西安雷风电子科技有限公司 | Cloud desktop management method and system |
| CN113452711A (en) * | 2021-06-29 | 2021-09-28 | 新华三大数据技术有限公司 | Single sign-on method of cloud desktop and network equipment |
| CN113794691A (en) * | 2021-08-20 | 2021-12-14 | 新华三大数据技术有限公司 | Multi-station point cloud desktop unified login method and device and storage medium |
| CN114398114A (en) * | 2021-08-31 | 2022-04-26 | 北京来也网络科技有限公司 | AI-based RPA system body interface generation method and device |
| CN114189513A (en) * | 2021-10-28 | 2022-03-15 | 福建升腾资讯有限公司 | File scanning method, device, equipment and medium based on trusted cloud desktop |
| CN114189513B (en) * | 2021-10-28 | 2024-04-16 | 福建升腾资讯有限公司 | File scanning method, device, equipment and medium based on created cloud desktop |
| CN114024730A (en) * | 2021-10-29 | 2022-02-08 | 敦讯信息咨询(海南)有限公司 | Enterprise portal management system |
| CN114024730B (en) * | 2021-10-29 | 2024-04-09 | 海南学之舟科技有限公司 | Enterprise portal management system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106330816B (en) | 2019-09-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106330816A (en) | Method and system for logging in cloud desktop | |
| CN108901022B (en) | Micro-service unified authentication method and gateway | |
| US11722465B2 (en) | Password encryption for hybrid cloud services | |
| CN109120620B (en) | Server management method and system | |
| CN110719276B (en) | Network equipment safety access system based on cache password and working method thereof | |
| US9992176B2 (en) | Systems and methods for encrypted communication in a secure network | |
| CN104348777B (en) | The access control method and system of a kind of mobile terminal to third-party server | |
| CN109815656A (en) | Login authentication method, device, equipment and computer readable storage medium | |
| US9807086B2 (en) | Authentication of a client device based on entropy from a server or other device | |
| CN105554098B (en) | A kind of equipment configuration method, server and system | |
| US8555339B2 (en) | Identifying guests in web meetings | |
| CN104580364B (en) | A kind of method and apparatus of resource sharing | |
| CN107332808A (en) | A kind of method, server and the terminal of the certification of cloud desktop | |
| CN105450581B (en) | The method and apparatus of permission control | |
| CN107251035A (en) | Account recovers agreement | |
| CN104320423A (en) | Single sign-on light weight implementation method based on Cookie | |
| JP2016518662A (en) | Method and apparatus for authorization authentication | |
| CN110719277B (en) | System and method for secure access of network device based on one-time access credential | |
| CN107124433A (en) | Internet of things system, internet of things equipment access method, access authorization methods and equipment | |
| CN106331003B (en) | The access method and device of application door system on a kind of cloud desktop | |
| CN106230594B (en) | Method for user authentication based on dynamic password | |
| CN108111497A (en) | Video camera and server inter-authentication method and device | |
| CN105049427A (en) | Management method and management device for login accounts of application systems | |
| CN107835155A (en) | A kind of double authentication protection methods and device | |
| CN108092988A (en) | Unaware Certificate Authority network system and method based on dynamic creation temporary password |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CP02 | Change in the address of a patent holder |
Address after: Room 818, 8 / F, 34 Haidian Street, Haidian District, Beijing 100080 Patentee after: BEIJING ULTRAPOWER SOFTWARE Co.,Ltd. Address before: 100089 Beijing city Haidian District wanquanzhuang Road No. 28 Wanliu new building 6 storey block A Room 601 Patentee before: BEIJING ULTRAPOWER SOFTWARE Co.,Ltd. |
|
| CP02 | Change in the address of a patent holder |