	US 12,218,974 B2
	Securing web browsing on a managed user device
Rohit Pradeep Shetty, Bangalore (IN); Ramanandan Nambannor Kunnath, Bangalore (IN); and Kar-Fai Tse, Atlanta, GA (US)
Assigned to Omnissa, LLC, Mountain View, CA (US)
Filed by Omnissa, LLC, Mountain View, CA (US)
Filed on Apr. 22, 2022, as Appl. No. 17/726,566.
Claims priority of application No. 202241003563 (IN), filed on Jan. 21, 2022.
Prior Publication US 2023/0239324 A1, Jul. 27, 2023
Int. Cl. H04L 9/40 (2022.01); H04L 9/32 (2006.01); H04L 67/02 (2022.01)

CPC H04L 63/166 (2013.01) [H04L 9/3228 (2013.01); H04L 63/0807 (2013.01); H04L 67/02 (2013.01); H04L 63/083 (2013.01)]

17 Claims

1. A method for accessing secure content from an unmanaged web browser on a managed user device, comprising:

sending, from the unmanaged browser to a server, a request for secure content, wherein the server is part of a unified endpoint management (UEM) system to which the managed user device is enrolled, and wherein a managed browser extension is installed on the unmanaged browser, the managed browser extension being managed by the UEM system;

prompting a user for authentication credentials in an instance where the request is redirected to an identity manager;

when the credentials are authenticated, receiving, by the managed browser extension installed on the unmanaged browser, a first session token and a temporary token from the server or the identity manager;

sending the first session token and the temporary token from the managed browser extension to a managed application on the managed user device;

validating, by the managed application at the managed user device, that the first session token was received from a trusted source;

sending the first session token, temporary token, and a second session token to the server, the second session token having been obtained by the managed application upon enrollment of the managed device with the UEM system; and

receiving authorization to access the secure content.