Automated provisioning of certificates
US-2017005808-A1 · Jan 5, 2017 · US
Automated provisioning of certificates
US10044511B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10044511-B2 |
| Application number | US-201715789344-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 20, 2017 |
| Priority date | Jun 30, 2015 |
| Publication date | Aug 7, 2018 |
| Grant date | Aug 7, 2018 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
In a computer-implemented method for automated provisioning a certificate in a computing system a certificate signing request is accessed from a computing node by a centralized management tool of the computing system. The certificate signing request is provided to a certificate authority by the centralized management tool. A signed certificate is accessed from the certificate authority for the computing node. The signed certificate is provided to the computing node, by the centralized management tool, such that there is automated provisioning of the signed certificate at the computing node to establish trust of the computing node in the computing system.
First claim
Opening claim text (preview).
We claim: 1. A computer-implemented method for automated provisioning of a certificate in a computing system, said computer-implemented method comprising: accessing a certificate signing request from a computing node by a centralized management tool of said computing system, wherein said computing node is able to communicate with a second computing node in a networked environment, and wherein said centralized management tool is communicatively coupled with said computing system; providing said certificate signing request to a certificate authority by said centralized management tool; providing a root certificate to said computing node by said centralized management tool; accessing a signed certificate from said certificate authority for said computing node; and providing said signed certificate to said computing node, by said centralized management tool, wherein said signed certificate replaces a self-signed certificate at said computing node, such that there is automated provisioning of said signed certificate at said computing node to establish trust of said computing node in said computing system. 2. The computer-implemented method of claim 1 , wherein said computing node is a storage device in a storage area network. 3. The computer-implemented method of claim 1 , wherein said signed certificate is a X.509 certificate. 4. The computer-implemented method of claim 1 , further comprising: providing a certificate revocation list to said computing node by said centralized management tool. 5. The computer-implemented method of claim 1 , further comprising: informing services associated with said computing node to utilize said signed certificate rather than a self-signed certificate. 6. A non-transitory computer-readable storage medium having instructions embodied therein that when executed cause a computer system to perform a method of automated provisioning of a certificate in a computing system, the method comprising: accessing a signed certificate from a certificate authority for a computing node, by a centralized management tool, wherein said computing node initially comprises an untrusted self-signed certificate, and wherein said signed certificate replaces said untrusted self-signed certificate at said computing node, wherein said computing node is able to communicate with a second computing node in a networked environment, and wherein said centralized management tool is communicatively coupled with said computing system; providing a root certificate to said computing node by said centralized management tool; and providing said signed certificate to said computing node, by said centralized management tool, such that there is automated provisioning of said signed certificate at said computing node to establish trust of said computing node in said computing system. 7. The non-transitory computer-readable storage medium of claim 6 , wherein said computing node is a storage device. 8. The non-transitory computer-readable storage medium of claim 6 , further comprising: providing a certificate revocation list to said computing node by said centralized management tool. 9. A computer-implemented method for automated provisioning of a certificate in a computing system, said computer-implemented method comprising: providing an untrusted self-signed certificate to a centralized management tool of said computing system; providing a certificate signing request to a certificate authority via said centralized management tool of said computing system, wherein said computing node is able to communicate with a second computing node in a networked environment, and wherein said centralized management tool is communicatively coupled with said computing system; providing a root certificate to said computing node by said centralized management tool; and accessing a signed certificate from said certificate authority via said centralized management tool, wherein said signed certificate replaces said untrusted self-signed certificate, such that there is automated provisioning of said signed certificate at a computing node to establish trust of said computing node in said computing system. 10. The computer-implemented method of claim 9 , wherein said computing node is a storage device. 11. The computer-implemented method of claim 9 , wherein said signed certificate is a X.509 certificate. 12. The computer-implemented method of claim 9 , further comprising: accessing a certificate revocation list. 13. The computer-implemented method of claim 9 , wherein services associated with said computing node utilize said signed certificate rather than said untrusted self-signed certificate.
Assignees
Inventors
Classifications
- H04L9/3268Primary
using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL] · CPC title
involving a third party or a trusted authority · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10044511B2 cover?
- In a computer-implemented method for automated provisioning a certificate in a computing system a certificate signing request is accessed from a computing node by a centralized management tool of the computing system. The certificate signing request is provided to a certificate authority by the centralized management tool. A signed certificate is accessed from the certificate authority for the …
- Who is the assignee on this patent?
- Vmware Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L9/3268. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Aug 07 2018 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 5 related publications on this page (citations in our corpus or others sharing the same primary CPC).