Patent · US Active

Enrolling a virtual device as an unprivileged user

US12153689B2 · kind B2 · utility

0Cited by

2References

20Claims

0Family size

Assignee

Omnissa, LLC · US

Inventors

Chris Halstead · Nottingham, US
Kevin B. Sheehan · Bloomfield, US
Jared Cook · Lehi, US
Joshua Spencer · Whitehouse, US

Key dates

Filing date	Dec 9, 2021
Grant date	Nov 26, 2024
Priority date	—
Expiry date	Jun 19, 2042

Classification

Technology area (CPC G)Physics
CPC primaryG06F2009/45595
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Examples of enrollment of virtual devices for unprivileged users are described. In some examples, a virtual device includes an enrollment agent, encrypted enrollment credentials, and a user mode privilege elevation component that elevates privilege of the enrollment agent. A privilege elevated token is created to include an administrative privilege of a local security authority service, and a security context of an unprivileged user account logged in to the virtual device. The enrollment agent is launched using the privilege elevated token rather than a user token of a user that is logged in. The enrollment agent decrypts the encrypted enrollment credentials based on administrative privilege of the privilege elevated token, and enrolls the virtual device with a management service using decrypted enrollment credentials.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.