| CPC H04L 63/205 (2013.01) [H04L 12/66 (2013.01); H04L 63/102 (2013.01); H04L 63/104 (2013.01); H04L 63/108 (2013.01)] | 20 Claims |
|
1. A method, comprising:
providing credentials of users to an authorization service for an underlay network, wherein the authorization service authenticates the users as members of one or more authorization groups for the underlay network;
providing one or more user groups associated with an overlay network, each user being associated with a respective user group of the one or more user groups, the user group for a respective user identified based on a match of the user group to an authorization group in which the respective user is authenticated as a member;
providing one or more resource groups associated with one or more resources in the overlay network; and
configuring policy information for gateways of the overlay network according to an access time window, wherein the policy information is configured according to one or more disqualified access tags and one or more disqualified resource groups,
the one or more disqualified access tags being determined according to at least some of the one or more user groups associated with the access time window, and
the one or more disqualified resource groups determined based on resources corresponding to the one or more disqualified access tags.
|