	US 11,736,944 B2
	Dynamic policy-based on-boarding of devices in enterprise environments
Mark Grayson, Maidenhead (GB); Desmond Joseph O'Connor, London (GB); Malcolm Muir Smith, Richardson, TX (US); and Bart Brinckman, Nevele (BE)
Assigned to CISCO TECHNOLOGY, INC., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on May 25, 2022, as Appl. No. 17/824,527.
Application 17/824,527 is a continuation of application No. 16/866,166, filed on May 4, 2020, granted, now 11,350,279.
Application 16/866,166 is a continuation of application No. 15/868,573, filed on Jan. 11, 2018, granted, now 10,667,135, issued on May 26, 2020.
Prior Publication US 2022/0286856 A1, Sep. 8, 2022
This patent is subject to a terminal disclaimer.
Int. Cl. H04W 12/08 (2021.01); H04L 9/40 (2022.01); H04W 12/06 (2021.01); H04W 12/084 (2021.01)

CPC H04W 12/08 (2013.01) [H04L 63/0876 (2013.01); H04L 63/0892 (2013.01); H04L 63/102 (2013.01); H04L 63/20 (2013.01); H04W 12/06 (2013.01); H04W 12/084 (2021.01)]

20 Claims

1. A network component, comprising:

one or more processors; and

one or more computer-readable non-transitory storage media coupled to the one or more processors and comprising instructions that, when executed by the one or more processors, cause the network component to perform operations comprising:

receiving, by an identity provider, a request to access a wireless network from an access provider, wherein:

the identity provider and the access provider are members of an identity and access federation implemented in a wireless roaming environment; and

the request to access the wireless network is made on behalf of a user;

obtaining, by the identity provider, data associated with the user;

comparing, by the identity provider, the data associated with the user to a user-consented policy; and

determining, by the identity provider, whether the user previously consented to the user-consented policy.