US 12,192,192 B2
Secure access service edge function with configured metric collection intelligence
Vinay Saini, Bangalore (IN); Rajesh Indira Viswambharan, Bangalore (IN); Nagendra Kumar Nainar, Morrisville, NC (US); Akram Ismail Sheriff, San Jose, CA (US); and David John Zacks, Vancouver (CA)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on May 20, 2022, as Appl. No. 17/749,274.
Prior Publication US 2023/0379319 A1, Nov. 23, 2023
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/083 (2013.01) [H04L 63/20 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method, comprising:
receiving, at a device, a registration request from a telemetry exporter that transmits telemetry data;
generating, by the device, a telemetry configuration file for the telemetry exporter, the telemetry configuration file defining a policy for transmission of telemetry data from the telemetry exporter and an authentication token for the telemetry exporter;
sharing, by the device, the policy with a security enforcer; and
sending, by the device, the telemetry configuration file to the telemetry exporter, wherein the telemetry exporter is caused to: connect with the security enforcer using the authentication token, send the telemetry configuration file to the security enforcer, and transmit collected telemetry data to the security enforcer, and further wherein the security enforcer is caused to create, based on obtaining the telemetry configuration file and the policy, a dynamic publish-subscribe stream for publishing the collected telemetry data received from the telemetry exporter.