US 9,811,654 B2
Systems and methods for providing authentication using a managed input/output port
Rajeshkumar Ichchhubhai Patel, Bangalore (IN); Chandrasekhar Puthillathe, Bangalore (IN); Elie Antoun Jreij, Pflugerville, TX (US); Shawn Joel Dube, Austin, TX (US); and Pablo Rafael Arias, Austin, TX (US)
Assigned to Dell Products L.P., Round Rock, TX (US)
Filed by Dell Products L.P., Round Rock, TX (US)
Filed on Jun. 11, 2014, as Appl. No. 14/301,701.
Prior Publication US 2015/0363590 A1, Dec. 17, 2015
Int. Cl. G06F 21/00 (2013.01); G06F 21/44 (2013.01); H04L 29/06 (2006.01)
CPC G06F 21/44 (2013.01) [H04L 63/102 (2013.01); H04L 63/0876 (2013.01)] 9 Claims
OG exemplary drawing
 
1. An information handling system comprising:
a processor;
an input/output port communicatively coupled to the processor and configured to receive an external input/output device and communicatively couple the external input/output device to one or more information handling resources of the information handling system; and
an access controller communicatively coupled to the processor and configured to:
provide out-of-band management of the information handling system via a communications channel separate from and physically isolated from a network interface for in-band communication between the processor and an external network;
responsive to detecting an attempt to perform any management operation selected from a group of management operations requiring an administrator physically present at the information handling system:
determine if the external input/output device is coupled to the input/output port; and
determine if the external input/output device is authenticated as a trusted input/output device;
responsive to determining that the external input/output device is authenticated as a trusted input/output device, allow execution of the attempted management operation; and
responsive to determining that the external input/output device is not coupled to the input/output port, disallow execution of the attempted management operation;
wherein the group of management operations requiring the administrator physically present at the information handling system includes:
powering off the information handling system via a power button;
booting to basic input/output system option read-only memories;
booting to a boot manager;
booting to pre-operating system environment;
provisioning the information handling system from a local user interface via a liquid crystal display screen for remote management purposes;
booting from an operating system stored on an external storage medium;
configuring a baseboard management controller; and
automatically configuring information handling system settings with information stored on an external storage medium.