CN116340902A - A device activation method, system and readable storage medium based on domain control - Google Patents

A device activation method, system and readable storage medium based on domain control Download PDF

Info

Publication number
CN116340902A
CN116340902A CN202310274474.4A CN202310274474A CN116340902A CN 116340902 A CN116340902 A CN 116340902A CN 202310274474 A CN202310274474 A CN 202310274474A CN 116340902 A CN116340902 A CN 116340902A
Authority
CN
China
Prior art keywords
domain
activation
server
script
batch
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310274474.4A
Other languages
Chinese (zh)
Inventor
李鹏伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Uniontech Software Technology Co Ltd
Original Assignee
Uniontech Software Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Uniontech Software Technology Co Ltd filed Critical Uniontech Software Technology Co Ltd
Priority to CN202310274474.4A priority Critical patent/CN116340902A/en
Publication of CN116340902A publication Critical patent/CN116340902A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D10/00Energy efficient computing, e.g. low power processors, power management or thermal management

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a domain control-based equipment activation method, a domain control-based equipment activation system and a readable storage medium, relates to the technical field of batch activation of applications, and aims to solve the problem that the conventional batch activation service cannot accurately control the activation of terminal equipment. The domain control-based device activation method comprises the following steps: a user logs in on a terminal device through a domain account number and a password, a domain management client arranged in the terminal device pushes a login request to a domain control platform server arranged in a first server, after the login request is successfully checked by the domain control platform server, a domain account number login notification is pushed to a batch activation server of a second server, after the domain account number login notification is successfully checked by the batch activation server, the association relation between the terminal device and the domain account number is updated, and a script creating task notification is pushed to the domain control platform server; the domain control platform server creates a script and pushes the script to the domain management client; and the domain management client executes the script to complete the activation of the terminal equipment.

Description

一种基于域控的设备激活方法、系统及可读存储介质A device activation method, system and readable storage medium based on domain control

技术领域technical field

本发明涉及应用的批量激活技术领域,尤其是一种基于域控的设备激活方法、系统及可读存储介质。The present invention relates to the technical field of application batch activation, in particular to a domain control-based device activation method, system and readable storage medium.

背景技术Background technique

现代的操作系统或商业软件通常采用激活控制来管控其功能特性。常用的激活方案主要有序列号激活、激活文件激活、在线激活以及批量激活工具激活。Modern operating systems or business software often employ activation controls to govern their features. The commonly used activation schemes mainly include serial number activation, activation file activation, online activation and batch activation tool activation.

序列号激活也称激活码,必须由用户手动输入序列号,存在序列号被复制传播的风险,安全性差。Serial number activation is also called activation code, and the user must manually enter the serial number. There is a risk of the serial number being copied and disseminated, and the security is poor.

激活文件激活与序列号激活类似,必须由用户手动导入激活文件,同样存在被复制分发的风险,难以管控。Activation file activation is similar to serial number activation. The activation file must be manually imported by the user. There is also the risk of being copied and distributed, which is difficult to control.

在线激活需要预先注册账号,登录账号后自动激活,此方案不适用于无法连接广域网或网络安全级别较高的场所。Online activation needs to register an account in advance, and it will be activated automatically after logging in to the account. This solution is not suitable for places that cannot connect to the WAN or have a high level of network security.

批量激活工具是一种提供批量激活的服务,接入特定网络的设备可以轮转使用导入服务器中的序列号,这种激活方式需要部署批量激活服务(Key Management Service,KMS),并一次性导入一批序列号至批量激活工具,需要激活的设备/软件只需要输入KMS的IP端口及口令即可登录批量激活服务,完成自动激活。相对于序列号激活和激活文件激活,批量激活工具激活具有以下优势:1、能够避免用户接触可直接用于激活的序列号,增强了数据的安全性;2、批量激活服务可以根据用户场景部署在公网或局域网内,比在线激活适用性更广;3、对于大批量激活需求,无需单独为每台设备手动输入不同的激活码或手动导入不同的激活文件,能够大大简化激活流程,用户体验得到提升;4、序列号是可回收和共享的,设备只有连接上KMS时才消耗服务的序列号,当设备与KMS断开时,服务端会回收此序列号以供其他设备使用。The batch activation tool is a service that provides batch activation. Devices connected to a specific network can use the serial number imported from the server in rotation. This activation method needs to deploy the batch activation service (Key Management Service, KMS) and import one at a time. From the batch serial number to the batch activation tool, the device/software that needs to be activated only needs to enter the IP port and password of KMS to log in to the batch activation service and complete the automatic activation. Compared with serial number activation and activation file activation, batch activation tool activation has the following advantages: 1. It can prevent users from touching the serial number that can be directly used for activation, which enhances data security; 2. The batch activation service can be deployed according to user scenarios In the public network or LAN, it is more applicable than online activation; 3. For mass activation requirements, there is no need to manually enter a different activation code or manually import a different activation file for each device, which can greatly simplify the activation process. The experience is improved; 4. The serial number is recyclable and shared. The serial number of the service is consumed only when the device is connected to KMS. When the device is disconnected from KMS, the server will recycle the serial number for other devices to use.

对于批量激活服务端来说,所有通过IP端口和正确口令连接上的设备都是同等的,但是某些机构需要对不同层级不同部门终端设备的激活实现更精细的管控,例如保密性很强的企业,只允许部分终端设备激活,那么传统的批量激活服务显然不能满足需求。For the batch activation server, all devices connected through IP ports and correct passwords are equal, but some organizations need to implement more fine-grained control over the activation of terminal devices at different levels and departments, such as those with strong confidentiality Enterprises only allow some terminal devices to be activated, so the traditional batch activation service obviously cannot meet the demand.

综上,现有批量激活服务存在无法对终端设备的激活进行精细管控的问题。To sum up, the existing batch activation service has the problem of being unable to fine-tune the activation of terminal devices.

发明内容Contents of the invention

为此,本发明提供了一种基于域控的设备激活方法、系统及可读存储介质,以力图解决或者至少缓解上面存在的至少一个问题。To this end, the present invention provides a domain control-based device activation method, system and readable storage medium in an attempt to solve or at least alleviate at least one of the above problems.

根据本发明的一个方面,提供了一种适用于域控平台服务端的基于域控的设备激活方法,包括:响应于接收到域管客户端推送的登录请求,对所述登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端推送域账号登录通知,以使所述批量激活服务端对所述域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后、且域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知;以及响应于接收到所述批量激活服务端推送的创建脚本任务通知,根据所述创建脚本任务通知创建脚本,并将创建的脚本推送至与所述脚本相对应的域管客户端,所述域管客户端布置于终端设备上,以使所述域管客户端执行所述脚本,完成所述终端设备的激活。According to one aspect of the present invention, there is provided a domain controller-based device activation method suitable for domain controller platform servers, including: in response to receiving a login request pushed by a domain management client, updating the domain account number carried in the login request Verify with the password, and push the domain account login notification to the batch activation server after the verification is successful, so that the batch activation server can verify the batch activation server address and password carried in the domain account login notification. verification, and after the verification is successful and the number of domain account activations has a remaining quota, push a creation script task notification to the domain control platform server; and in response to receiving the creation script task notification pushed by the batch activation server, Create a script according to the script creation task notification, and push the created script to the domain management client corresponding to the script, the domain management client is arranged on the terminal device, so that the domain management client executes The script completes the activation of the terminal device.

可选地,在根据本发明的基于域控的设备激活方法中,所述方法还包括:响应于接收到所述域管客户端推送的入域请求,向所述批量激活服务端推送入域事件通知,以使所述批量激活服务端在数据库中新增终端设备硬件信息记录。Optionally, in the domain control-based device activation method according to the present invention, the method further includes: in response to receiving a domain entry request pushed by the domain management client, pushing a domain entry request to the batch activation server Event notification, so that the batch activation server adds a terminal device hardware information record in the database.

可选地,在根据本发明的基于域控的设备激活方法中,所述根据所述创建脚本任务通知创建脚本包括:根据所述创建脚本任务通知携带的所述批量激活服务端地址、所述口令以及所述终端设备的域内身份标识码创建激活脚本。Optionally, in the domain controller-based device activation method according to the present invention, the creating script according to the creation script task notification includes: according to the batch activation server address carried in the creation script task notification, the The password and the domain identification code of the terminal device create an activation script.

根据本发明的另一个方面,提供了一种适用于批量激活服务端的基于域控的设备激活方法,包括:响应于接收到域控平台服务端推送的域账号登录通知,对所述域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备与域账号的关联关系;以及在所述域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知,以使所述域控平台服务端创建脚本、并将所述脚本推送至与所述脚本相对应的域管客户端,所述域管客户端布置于所述终端设备上,使得所述域管客户端执行所述脚本,完成所述终端设备的激活。According to another aspect of the present invention, there is provided a domain control-based device activation method applicable to batch activation servers, including: in response to receiving a domain account login notification pushed by the domain control platform server, log in the domain account The batch activation server address and password carried in the notification are verified, and after the verification is successful, the association relationship between the terminal device and the domain account is updated; Pushing the script creation task notification, so that the domain control platform server creates the script and pushes the script to the domain management client corresponding to the script, and the domain management client is arranged on the terminal device , so that the domain management client executes the script to complete the activation of the terminal device.

可选地,在根据本发明的基于域控的设备激活方法中,响应于所述批量激活服务端地址和/或口令发生变更,将变更后的批量激活服务端地址和/或口令推送至所述域管客户端。Optionally, in the domain controller-based device activation method according to the present invention, in response to changes in the batch activation server address and/or password, the changed batch activation server address and/or password are pushed to all domain management client.

可选地,在根据本发明的基于域控的设备激活方法中,响应于接收到所述域管客户端推送的激活请求,对所述激活请求携带的批量激活服务端地址和口令进行校验;以及在校验成功后向所述域管客户端返回序列号,并将所述序列号与所述终端设备的硬件信息进行绑定。Optionally, in the domain control-based device activation method according to the present invention, in response to receiving the activation request pushed by the domain management client, verify the batch activation server address and password carried in the activation request ; and returning a serial number to the domain management client after the verification is successful, and binding the serial number with the hardware information of the terminal device.

可选地,在根据本发明的基于域控的设备激活方法中,所述方法还包括:响应于接收到所述域控平台服务端推送的入域事件通知,在数据库中新增终端设备硬件信息记录。Optionally, in the domain control-based device activation method according to the present invention, the method further includes: in response to receiving the domain entry event notification pushed by the domain control platform server, adding terminal device hardware information record.

可选地,在根据本发明的基于域控的设备激活方法中,所述方法还包括:响应于管理员对指定设备进行激活的操作,向所述域控平台服务端推送创建脚本任务通知,以使所述域控平台服务端根据所述创建脚本任务通知创建脚本,并将创建的脚本推送至所述指定设备的域管客户端,使得所述域管客户端执行所述脚本,完成所述指定设备的激活。Optionally, in the method for activating a device based on a domain controller according to the present invention, the method further includes: in response to the administrator's operation of activating a specified device, pushing a notification of creating a script task to the server of the domain controller platform, Make the domain control platform server notify the creation script according to the creation script task, and push the created script to the domain management client of the specified device, so that the domain management client executes the script to complete the Activation of the specified device described above.

根据本发明的再一方面,还提供了一种基于域控的设备激活系统,包括:布置于终端设备的域管客户端和批量激活客户端、布置于第一服务器的域控平台服务端以及布置于第二服务器的批量激活服务端;所述域管客户端适于向所述域控平台服务端发送登录请求以及执行所述域控平台服务端发来的脚本,使得与所述域管客户端布置在同一终端设备的批量激活客户端连接至批量激活服务端并完成激活;所述域控平台服务端适于对所述域管客户端发来的域账号登录信息的合法性进行验证、向所述批量激活服务端推送域账号登录事件通知、以及根据所述批量激活服务端发来的创建脚本任务通知创建脚本、以及将创建的脚本下发至对应的域管客户端;所述批量激活服务端适于对所述域账号登录事件通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备与域账号的关联关系,以及在所述域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知。According to another aspect of the present invention, a domain control-based device activation system is also provided, including: a domain management client and a batch activation client arranged on terminal devices, a domain control platform server arranged on the first server, and The batch activation server arranged on the second server; the domain management client is adapted to send a login request to the domain control platform server and execute the script sent by the domain control platform server, so that it can communicate with the domain management platform The batch activation client arranged on the same terminal device as the client connects to the batch activation server and completes the activation; the domain control platform server is suitable for verifying the legitimacy of the domain account login information sent by the domain management client , pushing a domain account login event notification to the batch activation server, and notifying the creation script according to the creation script task sent by the batch activation server, and sending the created script to the corresponding domain management client; The batch activation server is adapted to verify the batch activation server address and password carried in the domain account login event notification, and update the association relationship between the terminal device and the domain account after the verification is successful, and activate the domain account after the domain account activation When there is a remaining amount in the quantity, a notification of creating a script task is pushed to the server side of the domain control platform.

根据本发明的又一方面,还提供了一种存储有程序指令的可读存储介质,当程序指令被计算设备读取并执行时,使得计算设备执行如上的适用于域控平台服务端的基于域控的设备激活方法或适用于批量激活服务端的基于域控的设备激活方法。According to yet another aspect of the present invention, a readable storage medium storing program instructions is also provided. When the program instructions are read and executed by a computing device, the computing device executes the above domain-based Controlled device activation method or domain controller-based device activation method suitable for batch activation server.

根据本发明的基于域控的设备激活方法、系统及可读存储介质,能够实现以下有益效果中的至少一种:在传统KMS批量激活方案的批量分发序列号功能的基础上,增加了域控平台的设备管控能力,通过域控平台将终端设备加入域内,并对请求登录的终端设备的域账号和密码进行校验,实现了对终端设备激活更细粒度的管控,更加安全可靠;域账号登录触发自动激活和指定设备激活均通过下发脚本来实现,用户感知不到KMS服务的存在,即使批量激活服务端修改了IP地址和连接口令也不影响终端设备的激活,屏蔽了批量激活服务端连接配置对终端设备的影响,简化了用户的操作流程,增加了上述方法及系统的易用性和可靠性。According to the domain control-based device activation method, system and readable storage medium of the present invention, at least one of the following beneficial effects can be achieved: on the basis of the batch distribution serial number function of the traditional KMS batch activation scheme, the domain control The device management and control capabilities of the platform, adding terminal devices to the domain through the domain control platform, and verifying the domain account and password of the terminal device that requests to log in, realizes finer-grained control of terminal device activation, which is more secure and reliable; domain account Both the automatic activation triggered by login and the activation of the designated device are realized by issuing scripts. The user does not perceive the existence of the KMS service. Even if the batch activation server modifies the IP address and connection password, the activation of the terminal device will not be affected, and the batch activation service is blocked. The impact of the terminal connection configuration on the terminal equipment simplifies the user's operation process and increases the ease of use and reliability of the above method and system.

附图说明Description of drawings

为了实现上述以及相关目的,本文结合下面的描述和附图来描述某些说明性方面,这些方面指示了可以实践本文所公开的原理的各种方式,并且所有方面及其等效方面旨在落入所要求保护的主题的范围内。通过结合附图阅读下面的详细描述,本公开的上述以及其它目的、特征和优势将变得更加明显。遍及本公开,相同的附图标记通常指代相同的部件或元素。To the accomplishment of the foregoing and related ends, certain illustrative aspects are herein described, taken in conjunction with the following description and drawings, which are indicative of the various ways in which the principles disclosed herein may be practiced, and all aspects and their equivalents are intended to fall within the scope of within the scope of the claimed subject matter. The above and other objects, features and advantages of the present disclosure will become more apparent by reading the following detailed description in conjunction with the accompanying drawings. Like reference numerals generally refer to like parts or elements throughout this disclosure.

图1示出了根据本发明一个实施例的基于域控的设备激活系统100的示意图;FIG. 1 shows a schematic diagram of a domain control-based device activation system 100 according to an embodiment of the present invention;

图2示出了根据本发明一个实施例的域控平台服务端与批量激活服务端的数据同步原理示意图;Fig. 2 shows a schematic diagram of the principle of data synchronization between the domain control platform server and the batch activation server according to an embodiment of the present invention;

图3示出了根据本发明一个实施例的计算设备300的示意图;FIG. 3 shows a schematic diagram of a computing device 300 according to one embodiment of the present invention;

图4示出了根据本发明一个实施例的基于域控的设备激活方法400的流程图;FIG. 4 shows a flow chart of a domain controller-based device activation method 400 according to an embodiment of the present invention;

图5示出了根据本发明一个实施例的基于域控的设备激活方法500的流程图;FIG. 5 shows a flowchart of a domain control-based device activation method 500 according to an embodiment of the present invention;

图6示出了根据本发明一个实施例的方法400和方法500的原理示意图;FIG. 6 shows schematic diagrams of a method 400 and a method 500 according to an embodiment of the present invention;

图7示出了根据本发明一个实施例的重新发起激活请求的流程图。Fig. 7 shows a flow chart of re-initiating an activation request according to an embodiment of the present invention.

具体实施方式Detailed ways

下面将参照附图更详细地描述本公开的示例性实施例。虽然附图中显示了本公开的示例性实施例,然而应当理解,可以以各种形式实现本公开而不应被这里阐述的实施例所限制。相反,提供这些实施例是为了能够更透彻地理解本公开,并且能够将本公开的范围完整的传达给本领域的技术人员。Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited by the embodiments set forth herein. Rather, these embodiments are provided for more thorough understanding of the present disclosure and to fully convey the scope of the present disclosure to those skilled in the art.

针对现有批量激活服务无法实现只对满足特定条件设备的激活管控的问题,提供一种基于域控的设备激活方法、系统及可读存储介质。Aiming at the problem that the existing batch activation service cannot realize the activation management and control only for devices meeting specific conditions, a domain control-based device activation method, system and readable storage medium are provided.

图1示出了根据本发明一个实施例的基于域控的设备激活系统100的示意图。Fig. 1 shows a schematic diagram of a domain controller-based device activation system 100 according to an embodiment of the present invention.

如图1所示,基于域控的设备激活系统100包括布置于终端设备110中的域管客户端111和批量激活客户端112、布置于第一服务器120的域控平台服务端121以及布置于第二服务器130的批量激活服务端131。域管客户端111适于向域控平台服务端121发送登录请求以及执行域控平台服务端121发来的脚本,使得与域管客户端111布置在同一终端设备的批量激活客户端121连接至批量激活服务端131并完成激活;域控平台服务端121适于对域管客户端11发来的域账号登录信息的合法性进行验证、向批量激活服务端131推送域账号登录事件通知、以及根据批量激活服务端131发来的创建脚本任务通知创建脚本、以及将创建的脚本下发至对应的域管客户端111;批量激活服务端131适于对域账号登录事件通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备-域账号的关联关系,以及在域账号激活数量有剩余额度时向域控平台服务端121推送创建脚本任务通知。其中,第一服务器120和第二服务器130可以是两台服务器,也可以是一台服务器。第一服务器120和第二服务器130是两台服务器时,两台服务器通过通过HTTP POST接口实现信息同步。批量激活服务端131与批量激活客户端112通过TLS加密的TCP报文通信。As shown in FIG. 1 , a domain control-based device activation system 100 includes a domain management client 111 and a batch activation client 112 arranged in a terminal device 110, a domain control platform server 121 arranged in a first server 120, and a domain control platform server 121 arranged in a The batch activation server 131 of the second server 130 . The domain management client 111 is suitable for sending a login request to the domain control platform server 121 and executing the script sent by the domain control platform server 121, so that the batch activation client 121 arranged on the same terminal device as the domain management client 111 is connected to Activate the server 131 in batches and complete the activation; the domain control platform server 121 is suitable for verifying the validity of the domain account login information sent by the domain management client 11, pushing the domain account login event notification to the batch activation server 131, and Create a script according to the script creation task notification sent by the batch activation server 131, and send the created script to the corresponding domain management client 111; the batch activation server 131 is suitable for the batch activation service carried in the domain account login event notification Verify the terminal address and password, and update the terminal device-domain account association relationship after the verification is successful, and push the creation script task notification to the domain control platform server 121 when the number of domain account activations has a remaining quota. Wherein, the first server 120 and the second server 130 may be two servers, or one server. When the first server 120 and the second server 130 are two servers, the two servers implement information synchronization through the HTTP POST interface. The batch activation server 131 communicates with the batch activation client 112 through TLS encrypted TCP messages.

系统100在传统的KMS批量激活的基础上,加入了以下激活准入校验:1、终端设备是否已加入域内;2、终端设备所使用的域账号是否已消耗完分配的激活码。通过以上校验,能够实现对终端设备更精细的管控。Based on the traditional KMS batch activation, the system 100 adds the following activation access checks: 1. Whether the terminal device has joined the domain; 2. Whether the domain account used by the terminal device has consumed all the allocated activation codes. Through the above verification, more fine-grained management and control of terminal equipment can be realized.

本实施例在常规的批量激活服务端131程序中增加了KMS域管模块,用于与域控平台服务端121对接。批量激活服务端131与域控平台服务端121的域账号信息及终端设备信息是同步的,如果域控平台服务端121数据发生变更,则将变更的数据同步给批量激活服务端131。如图2所示,数据同步包括但不限于:停用域账号事件、删除域账号事件、删除终端/终端退域事件、停用终端事件以及启用终端事件等。对于停用域账号事件和删除域账号事件,批量激活服务端131需要将停用或删除的域账号的序列号额度置0,即,停用或删除的域账号下无可用的序列号。对于删除终端/终端退域事件和停用终端事件,批量激活服务端131需要将删除的终端、退域的终端以及停用的终端的硬件信息记录。对于启用终端事件,批量激活服务端131需要增加启用的终端设备的硬件信息记录。In this embodiment, a KMS domain management module is added to the routine batch activation server 131 program for docking with the domain control platform server 121 . The domain account information and terminal device information of the batch activation server 131 and the domain control platform server 121 are synchronized. If the data of the domain control platform server 121 changes, the changed data will be synchronized to the batch activation server 131 . As shown in Figure 2, data synchronization includes, but is not limited to: domain account deactivation events, domain account deletion events, terminal deletion/terminal de-domain events, terminal deactivation events, and terminal activation events. For domain account deactivation and domain account deletion events, the batch activation server 131 needs to set the serial number quota of the deactivated or deleted domain account to 0, that is, no serial number is available under the deactivated or deleted domain account. For terminal deletion/terminal de-domain events and terminal deactivation events, the batch activation server 131 needs to record hardware information of deleted terminals, de-domain terminals, and deactivated terminals. For the event of enabling a terminal, the batch activation server 131 needs to add the hardware information record of the enabled terminal device.

由管理员在域控平台中根据实际需要创建组织架构及域账号,并向域控平台中导入一批序列号,将这些序列号分配到各个域账号下,每个域账号下包含若干个。以企业为例,组织架构包括不同层级不同部门,每个部门又包含若干个终端设备,可以为每个部门分配一个域账号,并根据每个部门终端设备的数量来确定为各个域账号分配的序列号的数量。The administrator creates the organizational structure and domain accounts in the domain control platform according to actual needs, and imports a batch of serial numbers into the domain control platform, and assigns these serial numbers to each domain account, and each domain account contains several. Taking an enterprise as an example, the organizational structure includes different departments at different levels, and each department contains several terminal devices. A domain account can be assigned to each department, and the number of domain accounts assigned to each department can be determined according to the number of terminal devices in each department. The number of serial numbers.

在一个实施例中,用户也可以在终端设备110上申请入域。用户在终端设备110上发出入域请求;域管客户端111将入域请求推送至域控平台服务端121,入域请求中携带了终端设备110的硬件设备信息(例如主板序列号、硬盘序列号等);域控平台服务端121向批量激活服务端131推送一条入域事件通知,入域事件通知中携带上述硬件设备信息;批量激活服务端131将上述硬件设备信息添加至域管硬件信息记录中,完成终端设备110的入域。In an embodiment, the user can also apply for joining the domain on the terminal device 110 . The user sends a domain entry request on the terminal device 110; the domain management client 111 pushes the domain entry request to the domain control platform server 121, and the domain entry request carries the hardware device information of the terminal device 110 (such as the motherboard serial number, hard disk serial number, etc.) number, etc.); the domain control platform server 121 pushes a domain entry event notification to the batch activation server 131, and the domain entry event notification carries the above hardware device information; the batch activation server 131 adds the above hardware device information to the domain management hardware information During the recording, the domain entry of the terminal device 110 is completed.

终端设备110入域后,批量激活服务端131会自动向终端设备110返回第二服务器130的IP地址和口令,用户在终端设备上输入域账号和密码,域管客户端111根据域账号和密码、以及第二服务器130的IP地址和口令生成登录请求,并将登录请求推送至域控平台服务端121,域控平台服务端121对域账号和密码的合法性进行校验,校验通过后向批量激活服务端131推送一条域账号登录事件通知,批量激活服务端131更新数据库中终端设备与域账号的关联关系,更新的具体方式为:将域账号登录事件通知携带的终端设备110硬件信息与域账号的关联关系进行更新,更新完成后,查询该域账号是否存在空闲的序列号,如果存在空闲的序列号,则为该终端设备110分配一个空闲的序列号,并向域控平台服务端121推送一条创建脚本任务通知,创建脚本任务通知中携带了上述序列号信息,域控平台服务端121根据创建脚本任务通知创建一个脚本,脚本的功能是将批量激活客户端112连接至批量激活服务端131并完成激活,然后调用域控平台服务端121的应用程序编程接口(API)将脚本内容发送给域管客户端111,域管客户端111执行脚本,完成激活。After the terminal device 110 enters the domain, the batch activation server 131 will automatically return the IP address and password of the second server 130 to the terminal device 110. The user enters the domain account and password on the terminal device, and the domain management client 111 uses the domain account and password to , and the IP address and password of the second server 130 to generate a login request, and push the login request to the domain control platform server 121, the domain control platform server 121 checks the validity of the domain account number and password, and after the check is passed Push a domain account login event notification to the batch activation server 131, and the batch activation server 131 updates the association relationship between the terminal device and the domain account in the database. The specific method of updating is: the hardware information of the terminal device 110 carried in the domain account login event notification The association relationship with the domain account is updated. After the update is completed, check whether the domain account has an idle serial number. If there is an idle serial number, assign an idle serial number to the terminal device 110 and provide service to the domain control platform. Terminal 121 pushes a creation script task notification, which carries the above-mentioned serial number information in the creation script task notification, domain control platform server 121 creates a script according to the creation script task notification, and the function of the script is to connect the batch activation client 112 to the batch activation The server 131 completes the activation, and then calls the application programming interface (API) of the domain control platform server 121 to send the script content to the domain management client 111, and the domain management client 111 executes the script to complete the activation.

在一个实施例中,当某个终端设备110处于激活状态时,如果批量激活服务端131的IP地址和/口令发生变化,那么批量激活服务端131自动将发生变化的IP地址和/口令通过域控平台服务端121反馈给域管客户端111,域管客户端111再反馈给批量激活客户端112,批量激活客户端112根据新的IP地址和口令向批量激活服务端131重新发起激活请求。In one embodiment, when a terminal device 110 is in the activated state, if the IP address and/password of the batch activation server 131 changes, the batch activation server 131 will automatically pass the changed IP address and/password through the domain The control platform server 121 feeds back to the domain management client 111, and the domain management client 111 feeds back to the batch activation client 112, and the batch activation client 112 re-initiates an activation request to the batch activation server 131 according to the new IP address and password.

在一个实施例中,批量激活服务端131嵌有域管模块,域管模块界面上展示在线的终端设备列表,管理员可以在该界面上对选中的终端设备下发激活脚本,实现对指定设备的激活。In one embodiment, the batch activation server 131 is embedded with a domain management module, and a list of online terminal devices is displayed on the domain management module interface. The administrator can issue activation scripts to the selected terminal devices on this interface to realize the activation of the specified device. activation.

应当指出,本发明对终端设备110、第一服务器120和第二服务器130的具体种类不作限制。例如,第一服务器120和第二服务器130可以实现为桌面电脑、笔记本电脑、处理器芯片、手机、平板电脑等计算设备。It should be noted that the present invention does not limit the specific types of the terminal device 110 , the first server 120 and the second server 130 . For example, the first server 120 and the second server 130 may be implemented as computing devices such as desktop computers, notebook computers, processor chips, mobile phones, and tablet computers.

在一个实施例中,本发明的终端设备110、第一服务器120和第二服务器130可以实现为一种计算设备,使得本发明的基于域控的设备激活方法可以在计算设备中执行。计算设备可以是任意具有存储和计算能力的设备,其例如可以实现为服务器、工作站等,也可以实现为桌面计算机、笔记本计算机等个人配置的计算机,或者实现为手机、平板电脑、智能可穿戴设备、物联网设备等终端设备,但不限于此。In one embodiment, the terminal device 110, the first server 120 and the second server 130 of the present invention can be implemented as a computing device, so that the domain control-based device activation method of the present invention can be executed in the computing device. The computing device can be any device with storage and computing capabilities, which can be implemented as a server, workstation, etc., or as a personal computer such as a desktop computer or a notebook computer, or as a mobile phone, a tablet computer, or a smart wearable device. , IoT devices and other terminal devices, but not limited thereto.

图3示出了根据本发明一个实施例的计算设备300的示意图。需要说明的是,图3所示的计算设备300仅为一个示例,在实践中,用于实施本发明的基于域控的设备激活方法的计算设备可以是任意型号的设备,其硬件配置情况可以与图3所示的计算设备300相同,也可以与图3所示的计算设备300不同。实践中用于实施本发明的基于域控的设备激活方法的计算设备可以对图3所示的计算设备300的硬件组件进行增加或删减,本发明对计算设备的具体硬件配置情况不做限制。FIG. 3 shows a schematic diagram of a computing device 300 according to one embodiment of the invention. It should be noted that the computing device 300 shown in FIG. 3 is only an example. In practice, the computing device used to implement the domain control-based device activation method of the present invention may be any type of device, and its hardware configuration may be It is the same as the computing device 300 shown in FIG. 3 , or it may be different from the computing device 300 shown in FIG. 3 . In practice, the computing device used to implement the domain control-based device activation method of the present invention can add or delete hardware components of the computing device 300 shown in FIG. 3 , and the present invention does not limit the specific hardware configuration of the computing device .

需要说明的是,本发明的基于域控的设备激活方法需要多个计算设备300共同实施,每个计算设备300负责实施本发明的基于域控的设备激活方法的一部分。It should be noted that the domain control-based device activation method of the present invention requires multiple computing devices 300 to be jointly implemented, and each computing device 300 is responsible for implementing a part of the domain control-based device activation method of the present invention.

如图3所示,计算设备300典型地包括存储器310和处理器320,存储器310和处理器320之间通过总线330进行通信。取决于期望的配置,处理器320可以是任何类型的处理,包括但不限于:微处理器(μP)、微控制器(μC)、数字信息处理器(DSP)或者它们的任何组合。取决于期望的配置,存储器310可以是任意类型的存储器,包括但不限于:易失性存储器(诸如RAM)、非易失性存储器(诸如ROM、闪存等)或者它们的任何组合。存储器310可以包括操作系统311、执行基于域控的设备激活方法的程序指令312以及程序数据313,程序数据313可以包括用于记录终端设备-域账号的关联关系的文件以及终端设备硬件信息记录文件。As shown in FIG. 3 , the computing device 300 typically includes a memory 310 and a processor 320 , and the memory 310 and the processor 320 communicate through a bus 330 . Depending on the desired configuration, processor 320 may be any type of processing including, but not limited to, a microprocessor (μP), microcontroller (μC), digital signal processor (DSP), or any combination thereof. Depending on the desired configuration, memory 310 may be any type of memory including, but not limited to: volatile memory (such as RAM), non-volatile memory (such as ROM, flash memory, etc.), or any combination thereof. The memory 310 may include an operating system 311, program instructions 312 for executing a domain controller-based device activation method, and program data 313. The program data 313 may include files for recording associations between terminal devices and domain accounts and terminal device hardware information recording files. .

计算设备300可以实现为服务器,例如文件服务器、数据库服务器、应用程序服务器和WEB服务器等,也可以实现为包括桌面计算机和笔记本计算机配置的个人计算机。当然,计算设备300也可以实现为小尺寸便携(或者移动)电子设备的一部分。The computing device 300 can be implemented as a server, such as a file server, a database server, an application program server, and a WEB server, etc., and can also be implemented as a personal computer including a configuration of a desktop computer and a notebook computer. Of course, the computing device 300 can also be implemented as a part of a small-sized portable (or mobile) electronic device.

根据本发明实施例的一种基于域控的设备激活方法400适用于域控平台服务端,方法400包括:响应于接收到域管客户端推送的登录请求,对登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端推送域账号登录通知,以使批量激活服务端对域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后、且域账号激活数量有剩余额度时向域控平台服务端推送创建脚本任务通知;以及响应于接收到批量激活服务端推送的创建脚本任务通知,根据创建脚本任务通知创建脚本,并将创建的脚本推送至与脚本相对应的域管客户端,域管客户端布置于终端设备上,以使域管客户端执行脚本,完成终端设备的激活。A domain control-based device activation method 400 according to an embodiment of the present invention is applicable to a domain control platform server. The method 400 includes: in response to receiving a login request pushed by a domain management client, verifying the domain account number and password carried in the login request command to verify, and after the verification is successful, push the domain account login notification to the batch activation server, so that the batch activation server can verify the batch activation server address and password carried in the domain account login notification, and After success, and when the number of domain account activations has a remaining quota, push the creation script task notification to the domain control platform server; and in response to receiving the creation script task notification pushed by the batch activation server, create a script according to the creation script task notification, and send The created script is pushed to the domain management client corresponding to the script, and the domain management client is arranged on the terminal device, so that the domain management client executes the script to complete the activation of the terminal device.

图4示出了根据本发明一个实施例的基于域控的设备激活方法400的流程图。方法400在计算设备(例如前述计算设备300)中执行,用于对终端设备的激活进行精细的管控。如图4所示,方法400始于410。Fig. 4 shows a flow chart of a domain controller-based device activation method 400 according to an embodiment of the present invention. The method 400 is executed in a computing device (such as the aforementioned computing device 300 ), and is used for finely managing and controlling the activation of the terminal device. As shown in FIG. 4 , method 400 begins at 410 .

在410中,响应于接收到域管客户端111推送的登录请求,对登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端131推送域账号登录通知,以使批量激活服务端131对域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后、且域账号激活数量有剩余额度时向域控平台服务端121推送创建脚本任务通知。In 410, in response to receiving the login request pushed by the domain management client 111, verify the domain account number and password command carried in the login request, and push the domain account login notification to the batch activation server 131 after the verification is successful, To enable the batch activation server 131 to verify the batch activation server address and password carried in the domain account login notification, and push the creation to the domain control platform server 121 after the verification is successful and the number of domain account activations has a remaining quota. Script task notification.

用户在终端设备110上通过域账号和密码进行登录操作,布置在终端设备110上的域管客户端111向布置在第一服务器120上的域控平台服务端121推送登录请求。域控平台服务端121对登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端131推送域账号登录通知。批量激活服务端131对域账号登录通知中携带的批量激活服务端地址以及口令进行校验,并在校验成功后、且域账号激活数量有剩余额度时向域控平台服务端121推送创建脚本任务通知。The user performs a login operation on the terminal device 110 through a domain account and password, and the domain management client 111 arranged on the terminal device 110 pushes a login request to the domain control platform server 121 arranged on the first server 120 . The domain control platform server 121 verifies the domain account and password carried in the login request, and pushes a domain account login notification to the batch activation server 131 after the verification is successful. The batch activation server 131 verifies the batch activation server address and password carried in the domain account login notification, and pushes the creation script to the domain control platform server 121 after the verification is successful and the number of domain account activations has a remaining quota. Task notification.

接下来,在420中,域控平台服务端121接收到批量激活服务端131推送的创建脚本任务通知后,根据创建脚本任务通知创建脚本,例如,可以根据创建脚本任务通知携带的批量激活服务端地址口令以及所述端设备的域内身份标识码创建激活脚本,然后将创建的脚本推送至与脚本相对应的域管客户端111,域管客户端111执行脚本,完成终端设备的激活。Next, in 420, after the domain control platform server 121 receives the script creation task notification pushed by the batch activation server 131, it creates a script according to the script creation task notification, for example, according to the batch activation server The address password and the domain identification code of the terminal device create an activation script, and then push the created script to the domain management client 111 corresponding to the script, and the domain management client 111 executes the script to complete the activation of the terminal device.

域管客户端111还可以向域控平台服务端121推送入域请求,接收到入域请求后,域控平台服务端121向批量激活服务端131推送入域事件通知,批量激活服务端131收到入域事件通知后,在数据库中新增终端设备硬件信息记录,至此完成终端设备110的入域。The domain management client 111 can also push a domain entry request to the domain control platform server 121. After receiving the domain entry request, the domain control platform server 121 pushes a domain entry event notification to the batch activation server 131, and the batch activation server 131 receives the domain entry event notification. After the domain entry event is notified, a new terminal device hardware information record is added in the database, and thus the terminal device 110 enters the domain.

根据本发明实施例的一种基于域控的设备激活方法500适用于批量激活服务端131,包括:响应于接收到域控平台服务端121推送的域账号登录通知,对域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备110与域账号的关联关系;以及在域账号激活数量有剩余额度时向域控平台服务端121推送创建脚本任务通知,以使域控平台服务端121创建脚本、并将脚本推送至与脚本相对应的域管客户端111,域管客户端111布置于终端设备110上,使得域管客户端111执行脚本,完成终端设备110的激活。A domain control-based device activation method 500 according to an embodiment of the present invention is suitable for batch activation of the server 131, including: in response to receiving the domain account login notification pushed by the domain control platform server 121, the domain account login notification carried Batch activation server addresses and passwords are verified, and after the verification is successful, the association relationship between the terminal device 110 and the domain account is updated; and when the number of domain account activations has a remaining quota, push the creation script task notification to the domain control platform server 121 , so that the domain control platform server 121 creates a script, and pushes the script to the domain management client 111 corresponding to the script, and the domain management client 111 is placed on the terminal device 110, so that the domain management client 111 executes the script and completes Activation of the terminal device 110 .

图5示出了根据本发明一个实施例的基于域控的设备激活方法500的流程图。方法500在计算设备(例如前述计算设备300)中执行,用于对终端设备的激活进行精细的管控。如图5所示,方法500始于510。Fig. 5 shows a flow chart of a domain control-based device activation method 500 according to an embodiment of the present invention. The method 500 is executed in a computing device (such as the aforementioned computing device 300 ), and is used for finely managing and controlling the activation of the terminal device. As shown in FIG. 5 , method 500 begins at 510 .

在510中,响应于接收到域控平台服务端121推送的域账号登录通知,对域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备110与域账号的关联关系。In 510, in response to receiving the domain account login notification pushed by the domain control platform server 121, verify the batch activation server address and password carried in the domain account login notification, and update the terminal device 110 and Domain account association relationship.

用户在终端设备110上通过域账号和密码进行登录操作,布置在终端设备110上的域管客户端111向布置在第一服务器120上的域控平台服务端121推送登录请求。域控平台服务端121对登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端131推送域账号登录通知。批量激活服务端131对域账号登录通知中携带的批量激活服务端地址以及口令进行校验,并在校验成功后在数据库中更新终端设备110与域账号的关联关系。The user performs a login operation on the terminal device 110 through a domain account and password, and the domain management client 111 arranged on the terminal device 110 pushes a login request to the domain control platform server 121 arranged on the first server 120 . The domain control platform server 121 verifies the domain account and password carried in the login request, and pushes a domain account login notification to the batch activation server 131 after the verification is successful. The batch activation server 131 verifies the batch activation server address and password carried in the domain account login notification, and updates the association relationship between the terminal device 110 and the domain account in the database after the verification is successful.

接下来,在520中,在域账号激活数量有剩余额度时向域控平台服务端121推送创建脚本任务通知,以使域控平台服务端121创建脚本、并将脚本推送至与脚本相对应的域管客户端111,域管客户端111布置于终端设备110上,使得域管客户端111执行脚本,完成终端设备110的激活。Next, in 520, when there is a remaining amount in the number of domain account activations, a notification of creating a script task is pushed to the domain control platform server 121, so that the domain control platform server 121 creates a script and pushes the script to the script corresponding to the script. The domain management client 111 is arranged on the terminal device 110 so that the domain management client 111 executes a script to complete the activation of the terminal device 110 .

首先判断域账号激活数量是否还有剩余,若有,则向域控平台服务端121推送创建脚本任务通知,域控平台服务端121接到创建脚本任务通知后开始创建脚本,然后将创建好的脚本推送至与该脚本相对应的域管客户端111,域管客户端111执行脚本,完成终端设备110的激活。Firstly, it is judged whether the number of domain account activations is still remaining, and if so, a notification of creating a script task is pushed to the domain control platform server 121, and the domain control platform server 121 starts to create the script after receiving the notification of creating the script task, and then uploads the created script The script is pushed to the domain management client 111 corresponding to the script, and the domain management client 111 executes the script to complete the activation of the terminal device 110 .

基于方法400和方法500,本申请实施例给出了完整的基于域控的设备激活方法的原理示意图,如图6所示。Based on the method 400 and the method 500, the embodiment of the present application provides a schematic diagram of a complete domain control-based device activation method, as shown in FIG. 6 .

用户在终端设备110上通过域账号和密码进行登录的操作,域管客户端111向域控平台服务端121推送登录请求。已经入域的终端设备111称为域内设备,只有发送正确的批量激活服务端131的IP地址和口令的域内设备才能够被激活。The user performs a login operation on the terminal device 110 through a domain account and password, and the domain management client 111 pushes a login request to the domain control platform server 121 . The terminal device 111 that has entered the domain is called an intra-domain device, and only the intra-domain device that sends the correct batch activation server 131 IP address and password can be activated.

在一个实施例中,由管理员在批量激活服务端131上为每个域账号分配一定数量的激活码(即域账号激活码额度)。用户可以在终端设备110上申请入域。用户在终端设备110上发出入域请求操作后,域管客户端111向域控平台服务端121推送入域请求,入域请求携带了请求入域的终端设备110的硬件设备信息,域控平台服务端121根据上述硬件设备信息利用SHA生成摘要,并将生成的摘要作为请求入域的终端设备110的域内ID。接下来,域控平台服务端121向批量激活服务端131推送入域事件通知,入域通知携带了请求入域的终端设备110的硬件设备信息和域内ID。批量激活服务端131收到入域事件通知后,在数据库中记录域内设备硬件信息的文件中新增上述请求入域的终端设备110的域内ID和硬件设备信息记录。In one embodiment, the administrator assigns a certain number of activation codes (ie domain account activation code quota) to each domain account on the batch activation server 131 . The user can apply for joining the domain on the terminal device 110 . After the user sends a domain entry request operation on the terminal device 110, the domain management client 111 pushes the domain entry request to the domain control platform server 121. The domain entry request carries the hardware device information of the terminal device 110 requesting to enter the domain, and the domain control platform The server 121 uses the SHA to generate a digest according to the above hardware device information, and uses the generated digest as the intra-domain ID of the terminal device 110 requesting to enter the domain. Next, the domain control platform server 121 pushes a domain entry event notification to the batch activation server 131, and the domain entry notification carries the hardware device information and the domain ID of the terminal device 110 requesting to enter the domain. After the batch activation server 131 receives the domain entry event notification, it adds the above-mentioned in-domain ID and hardware device information record of the terminal device 110 requesting to enter the domain to the file in the database that records the hardware information of the in-domain device.

域内设备可以通过域账号和密码登录域控平台。用户在域内设备上输入域账号和密码,并发起登录,域管客户端111根据域账号、密码、批量激活服务端IP地址和口令生成登录请求,并将登录请求推送至域控平台服务端121。登录请求所携带的域账号和密码信息为用户输入的域账号和密码,登录请求所携带的批量激活服务端131的IP地址和口令是在终端设备110入域后由批量激活服务端131自动反馈给终端设备110并保存在终端设备110中,用户无法接触上述IP地址和口令。Devices in the domain can log in to the domain control platform through the domain account and password. The user enters the domain account and password on the device in the domain, and initiates a login. The domain management client 111 generates a login request according to the domain account, password, batch activation server IP address and password, and pushes the login request to the domain control platform server 121 . The domain account and password information carried in the login request is the domain account and password entered by the user, and the IP address and password of the batch activation server 131 carried in the login request are automatically fed back by the batch activation server 131 after the terminal device 110 enters the domain. Given to the terminal device 110 and stored in the terminal device 110, the user cannot access the above-mentioned IP address and password.

接收到域管客户端111端推送的登录请求后,域控平台服务端121对登录请求携带的域账号和密码进行校验,并在校验成功后向批量激活服务端131推送域账号登录通知。域账号登录通知由域控平台服务端121根据域账号、批量激活服务端131的IP地址、口令以及终端设备110的硬件设备信息生成。After receiving the login request pushed by the domain management client 111, the domain control platform server 121 verifies the domain account and password carried in the login request, and pushes a domain account login notification to the batch activation server 131 after the verification is successful. . The domain account login notification is generated by the domain control platform server 121 according to the domain account, the IP address and password of the batch activation server 131 and the hardware device information of the terminal device 110 .

接收到域控平台服务端121推送的域账号登录通知后,批量激活服务端131对域账号登录通知携带的批量激活服务端131的IP地址以及口令进行校验,并在校验成功后更新终端设备-域账号的关联关系,以及在域账号激活数量剩余额度大于0(即,该域账号下处于使用状态的激活码数量小于该域账号激活码额度)时向域控平台服务端121推送创建脚本任务通知。After receiving the domain account login notification pushed by the domain control platform server 121, the batch activation server 131 verifies the IP address and password of the batch activation server 131 carried in the domain account login notification, and updates the terminal after the verification is successful. The association relationship between the device and the domain account, and when the remaining amount of activation number of the domain account is greater than 0 (that is, the number of activation codes in use under the domain account is less than the amount of activation codes of the domain account), push creation to the domain control platform server 121 Script task notification.

在域账号登录通知所携带的IP地址及口令正确的情况下,进批量激活服务端131对记录终端设备-域账号关联关系的文件进行更新,更新方式为:根据域账号登录通知所携带的终端设备110硬件设备信息及域账号,将该硬件设备信息添加到该域账号下,实现该硬件设备信息与该域账号的关联,同时,将该硬件设备信息与其他域账号的关联关系解除。然后查询与上述终端设备110硬件设备信息相关联的域账号的激活数量剩余额度。每个域账号被预先分配了一定数量的激活码,激活码是可回收可共享的,每个终端设备110连接至批量激活服务端131时会消耗一个激活码,被消耗的激活码处于使用状态,当终端设备110从批量激活服务端131退出时,激活码被回收。域账号的激活数量剩余额度指代域账号未处于使用状态的激活码的数量,域账号的激活数量剩余额度大于0则表示可以为使用该域账号登录的域内设备分配一个可用的激活码。创建脚本任务通知中包含了为当前登录的终端设备110所分配的激活码、批量激活服务端131的IP地址、口令、以及终端设备的ID。When the IP address and password carried in the domain account login notification are correct, the batch activation server 131 updates the file that records the terminal device-domain account association relationship. The update method is: according to the terminal Device 110 hardware device information and domain account, add the hardware device information to the domain account, realize the association between the hardware device information and the domain account, and at the same time, disassociate the hardware device information from other domain accounts. Then query the remaining amount of activation quantity of the domain account associated with the hardware device information of the terminal device 110 above. Each domain account is pre-assigned a certain number of activation codes, which are recyclable and shareable. Each terminal device 110 will consume an activation code when connected to the batch activation server 131, and the consumed activation code is in use , when the terminal device 110 exits from the batch activation server 131, the activation code is recycled. The remaining activation quantity of the domain account refers to the number of activation codes that are not in use for the domain account. If the remaining activation quantity of the domain account is greater than 0, it means that an available activation code can be assigned to the device in the domain logged in with the domain account. The creation script task notification includes the activation code assigned to the currently logged-in terminal device 110, the IP address of the batch activation server 131, the password, and the ID of the terminal device.

接收到批量激活服务端131推送的创建脚本任务通知后,域控平台服务端121根据创建脚本任务通知创建脚本,并将创建的脚本推送至与脚本相对应的域管客户端111。脚本的功能是将终端设备110的激活地址指向KMS服务,从而触发激活申请,自动完成激活。After receiving the script creation task notification pushed by the batch activation server 131, the domain control platform server 121 creates a script according to the script creation task notification, and pushes the created script to the domain management client 111 corresponding to the script. The function of the script is to point the activation address of the terminal device 110 to the KMS service, thereby triggering an activation application and automatically completing the activation.

接收到域控平台服务端121推送的脚本后,域管客户端111执行脚本,脚本执行完成后,终端设备110的批量激活客户端112连接至批量激活服务端131并完成激活,至此完成终端设备110的激活。After receiving the script pushed by the domain control platform server 121, the domain management client 111 executes the script. After the script is executed, the batch activation client 112 of the terminal device 110 connects to the batch activation server 131 and completes the activation. 110 activations.

方法400和方法500在传统的KMS批量激活的基础上增加了入域校验,即,校验当前登录的终端设备110是否已经加入域内,即使批量激活服务端131的IP端口和口令泄漏,若批量激活客户端112所在设备未加入域内也无法完成激活,增强了KMS服务的安全性,同时也实现了对终端设备激活更细粒度的管控。此外,方法400和方法500还简化了激活流程,用户无需关注批量激活服务端131的IP地址及口令,只需要输入域账号和密码即可自动完成与批量激活服务端的连接并实现自动激活,批量激活服务端131IP地址及口令的变更不影响用户对终端设备110的正常使用。Method 400 and method 500 add domain entry verification on the basis of traditional KMS batch activation, that is, verify whether the currently logged-in terminal device 110 has joined the domain, even if the IP port and password of the batch activation server 131 are leaked, if The device where the batch activation client 112 is located cannot complete the activation without joining the domain, which enhances the security of the KMS service and also realizes finer-grained control over the activation of terminal devices. In addition, method 400 and method 500 also simplify the activation process. Users do not need to pay attention to the IP address and password of the batch activation server 131. They only need to enter the domain account number and password to automatically complete the connection with the batch activation server and realize automatic activation. The change of the IP address and password of the activation server 131 does not affect the normal use of the terminal device 110 by the user.

对于已经激活的终端设备110,如果批量激活服务端131的IP地址发生变化(例如第二服务器130由一台设备迁移至另一台设备),或者口令发生变化,现有的KMS批量激活方案需要由用户在终端设备110上手动修改IP地址和口令,重新发起激活请求,不仅操作繁琐,而且IP地址和口令存在泄露风险。本申请实施例则采用自动发起激活请求的方式避免用户手动操作,同时也避免了IP地址和口令被泄露。For the activated terminal device 110, if the IP address of the batch activation server 131 changes (for example, the second server 130 is migrated from one device to another device), or the password changes, the existing KMS batch activation scheme needs to The user manually modifies the IP address and password on the terminal device 110 and re-initiates the activation request. Not only is the operation cumbersome, but there is also a risk of leakage of the IP address and password. The embodiment of the present application adopts the method of automatically initiating an activation request to avoid manual operation by the user, and also prevents the IP address and password from being leaked.

在一个实施例中,自动发起激活请求的方法包括如下过程:批量激活服务端131的IP地址和/或口令发生变更后,批量激活服务端131将变更后的批量激活服务端地址IP和/或口令推送至域管客户端111,域管客户端111按照新的IP地址和口令向批量激活服务端131发起激活请求;如图7所示,激活请求以连接口令的形式发送给批量激活服务端131,批量激活服务端131对连接口令中的IP地址和口令进行校验;校验通过后,批量激活客户端112向批量激活服务端131发送终端设备110的硬件设备信息;批量激活服务端131为该终端设备110分配一个空闲的序列号信息,将该序列号与该终端设备110的硬件设备信息进行绑定,并将序列号信息反馈给批量激活客户端112,需要说明的是,终端设备110虽然接收到了序列号信息,并且序列号信息与序列号是一一对应的,序列号信息是不能直接使用的,因此不存在被复制泄露的风险;接下来,终端设备110的操作系统对该序列号进行校验,并向批量激活服务端131发送验证状态,如果验证状态为校验成功,则批量激活服务端131向批量激活客户端112发送确认激活信息,此后,批量激活客户端112定时向批量激活服务端131发起心跳包,如果批量激活服务端131长时间未接收到某终端设备110发来的心跳包,则认为该终端设备110与批量激活服务端131的连接断开,当批量激活服务端131主动停用该序列号或者监测到批量激活客户端112与批量激活服务端131的连接断开时,解除该序列号与该终端设备110的绑定关系,回收该序列号。批量激活服务端131主动停用该序列号时,批量激活客户端112被迫与批量激活服务端131断开连接,此后,批量激活客户端112按照固定的时间间隔向批量激活服务端131发起激活请求。In one embodiment, the method for automatically initiating an activation request includes the following process: after the IP address and/or password of the batch activation server 131 are changed, the batch activation server 131 sends the changed batch activation server address IP and/or The password is pushed to the domain management client 111, and the domain management client 111 initiates an activation request to the batch activation server 131 according to the new IP address and password; as shown in Figure 7, the activation request is sent to the batch activation server in the form of a connection password 131, the batch activation server 131 checks the IP address and password in the connection password; after the verification is passed, the batch activation client 112 sends the hardware device information of the terminal device 110 to the batch activation server 131; the batch activation server 131 Allocate an idle serial number information for the terminal device 110, bind the serial number with the hardware device information of the terminal device 110, and feed back the serial number information to the batch activation client 112. It should be noted that the terminal device 110 received the serial number information, and the serial number information corresponds to the serial number one by one, the serial number information cannot be used directly, so there is no risk of being copied and leaked; next, the operating system of the terminal device 110 The serial number is verified, and the verification status is sent to the batch activation server 131. If the verification status is that the verification is successful, the batch activation server 131 sends a confirmation activation message to the batch activation client 112. After that, the batch activation client 112 regularly Send a heartbeat packet to the batch activation server 131. If the batch activation server 131 has not received a heartbeat packet from a certain terminal device 110 for a long time, it is considered that the connection between the terminal device 110 and the batch activation server 131 is disconnected. When the activation server 131 actively deactivates the serial number or detects that the batch activation client 112 is disconnected from the batch activation server 131, it releases the binding relationship between the serial number and the terminal device 110, and reclaims the serial number. When the volume activation server 131 actively deactivates the serial number, the volume activation client 112 is forced to disconnect from the volume activation server 131, after that, the volume activation client 112 initiates activation to the volume activation server 131 at a fixed time interval ask.

在一个实施例中,方法400和方法500还支持管理员对指定的终端设备110进行激活。管理员在嵌入在批量激活服务端131中的域管模块的界面上选择终端设备110并发起激活操作,批量激活服务端131将针对选定的终端设备110向域控平台服务端121推送创建脚本任务通知。In one embodiment, the method 400 and the method 500 also support the administrator to activate the designated terminal device 110 . The administrator selects a terminal device 110 on the interface of the domain management module embedded in the batch activation server 131 and initiates an activation operation, and the batch activation server 131 will push the creation script to the domain control platform server 121 for the selected terminal device 110 Task notification.

这里描述的各种技术可结合硬件或软件,或者它们的组合一起实现。从而,本发明的方法和设备,或者本发明的方法和设备的某些方面或部分可采取嵌入有形媒介,例如可移动硬盘、U盘、软盘、CD-ROM或者其它任意机器可读的存储介质中的程序代码(即指令)的形式,其中当程序被载入诸如计算机之类的机器,并被所述机器执行时,所述机器变成实践本发明的设备。The various techniques described herein can be implemented in conjunction with hardware or software, or a combination thereof. Thus, the method and device of the present invention, or certain aspects or parts of the method and device of the present invention may be embedded in a tangible medium, such as a removable hard disk, USB flash drive, floppy disk, CD-ROM or any other machine-readable storage medium In the form of program code (ie, instructions) in a machine such as a computer, when the program is loaded into a machine such as a computer and executed by the machine, the machine becomes an apparatus for practicing the invention.

在程序代码在可编程计算机上执行的情况下,计算设备一般包括处理器、处理器可读的存储介质(包括易失性和非易失性存储器和/或存储元件),至少一个输入装置,和至少一个输出装置。其中,存储器被配置用于存储程序代码;处理器被配置用于根据该存储器中存储的所述程序代码中的指令,执行本发明的基于域控的设备激活方法。In the case of program code execution on a programmable computer, the computing device generally includes a processor, a storage medium readable by the processor (including volatile and non-volatile memory and/or storage elements), at least one input device, and at least one output device. Wherein, the memory is configured to store program codes; the processor is configured to execute the domain control-based device activation method of the present invention according to instructions in the program codes stored in the memory.

以示例而非限制的方式,可读介质包括可读存储介质和通信介质。可读存储介质存储诸如计算机可读指令、数据结构、程序模块或其它数据等信息。通信介质一般以诸如载波或其它传输机制等已调制数据信号来体现计算机可读指令、数据结构、程序模块或其它数据,并且包括任何信息传递介质。以上的任一种的组合也包括在可读介质的范围之内。Readable media include, by way of example and not limitation, readable storage media and communication media. Readable storage media store information such as computer readable instructions, data structures, program modules or other data. Communication media typically embodies computer readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media. Combinations of any of the above are also included within the scope of readable media.

在此处所提供的说明书中,算法和显示不与任何特定计算机、虚拟系统或者其它设备固有相关。各种通用系统也可以与本发明的示例一起使用。根据上面的描述,构造这类系统所要求的结构是显而易见的。此外,本发明也不针对任何特定编程语言。应当明白,可以利用各种编程语言实现在此描述的本发明的内容,并且上面对特定语言所做的描述是为了披露本发明的优选实施方式。In the description provided herein, the algorithms and displays are not inherently related to any particular computer, virtual system, or other device. Various general-purpose systems can also be used with examples of the invention. The structure required to construct such a system is apparent from the above description. Furthermore, the present invention is not specific to any particular programming language. It should be understood that various programming languages can be used to implement the content of the present invention described herein, and the above description of specific languages is for disclosing preferred embodiments of the present invention.

在此处所提供的说明书中,说明了大量具体细节。然而,能够理解,本发明的实施例可以在没有这些具体细节的情况下被实践。在一些实例中,并未详细示出公知的方法、结构和技术,以便不模糊对本说明书的理解。In the description provided herein, numerous specific details are set forth. However, it is understood that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure the understanding of this description.

类似地,应当理解,为了精简本公开并帮助理解各个发明方面中的一个或多个,在上面对本发明的示例性实施例的描述中,本发明的各个特征有时被一起分组到单个实施例、图、或者对其的描述中。然而,并不应将该公开的方法解释成反映如下意图:即所要求保护的本发明要求比在每个权利要求中所明确记载的特征更多特征。本领域那些技术人员应当理解在本文所公开的示例中的设备的模块或单元或组件可以布置在如该实施例中所描述的设备中,或者可替换地可以定位在与该示例中的设备不同的一个或多个设备中。前述示例中的模块可以组合为一个模块或者此外可以分成多个子模块。Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, in order to streamline this disclosure and to facilitate an understanding of one or more of the various inventive aspects, various features of the invention are sometimes grouped together in a single embodiment, figure, or its description. This method of disclosure, however, is not to be interpreted as reflecting an intention that the claimed invention requires more features than are expressly recited in each claim. Those skilled in the art will understand that the modules or units or components of the devices in the examples disclosed herein may be arranged in the device as described in this embodiment, or alternatively may be located in a different location than the device in this example. in one or more devices. The modules in the preceding examples may be combined into one module or furthermore may be divided into a plurality of sub-modules.

本领域那些技术人员可以理解,可以对实施例中的设备中的模块进行自适应性地改变并且把它们设置在与该实施例不同的一个或多个设备中。可以把实施例中的模块或单元或组件组合成一个模块或单元或组件,以及此外可以把它们分成多个子模块或子单元或子组件。除了这样的特征和/或过程或者单元中的至少一些是相互排斥之外,可以采用任何组合对本说明书(包括伴随的权利要求、摘要和附图)中公开的所有特征以及如此公开的任何方法或者设备的所有过程或单元进行组合。除非另外明确陈述,本说明书(包括伴随的权利要求、摘要和附图)中公开的每个特征可以由提供相同、等同或相似目的的替代特征来代替。Those skilled in the art can understand that the modules in the device in the embodiment can be adaptively changed and arranged in one or more devices different from the embodiment. Modules or units or components in the embodiments may be combined into one module or unit or component, and furthermore may be divided into a plurality of sub-modules or sub-units or sub-assemblies. All features disclosed in this specification (including accompanying claims, abstract and drawings) and any method or method so disclosed may be used in any combination, except that at least some of such features and/or processes or units are mutually exclusive. All processes or units of equipment are combined. Each feature disclosed in this specification (including accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.

此外,本领域的技术人员能够理解,尽管在此所述的一些实施例包括其它实施例中所包括的某些特征而不是其它特征,但是不同实施例的特征的组合意味着处于本发明的范围之内并且形成不同的实施例。此外,所述实施例中的一些在此被描述成可以由计算机系统的处理器或者由执行所述功能的其它装置实施的方法或方法元素的组合。因此,具有用于实施所述方法或方法元素的必要指令的处理器形成用于实施该方法或方法元素的装置。此外,装置实施例的在此所述的元素是如下装置的例子:该装置用于实施由为了实施该发明的目的的元素所执行的功能。Furthermore, those skilled in the art will understand that although some embodiments described herein include some features included in other embodiments but not others, combinations of features from different embodiments are meant to be within the scope of the invention. and form different embodiments. Furthermore, some of the described embodiments are described herein as a method or combination of method elements that may be implemented by a processor of a computer system or by other means for performing the described function. Thus, a processor with the necessary instructions for carrying out the described method or element of a method forms a means for carrying out the method or element of a method. Furthermore, elements described herein of an apparatus embodiment are examples of means for carrying out the function performed by the element for the purpose of carrying out the invention.

如在此所使用的那样,除非另行规定,使用序数词“第一”、“第二”、“第三”等等来描述普通对象仅仅表示涉及类似对象的不同实例,并且并不意图暗示这样被描述的对象必须具有时间上、空间上、排序方面或者以任意其它方式的给定顺序。As used herein, unless otherwise specified, the use of ordinal numbers "first," "second," "third," etc. to describe generic objects merely means referring to different instances of similar objects and is not intended to imply such The described objects must have a given order temporally, spatially, sequentially or in any other way.

尽管根据有限数量的实施例描述了本发明,但是受益于上面的描述,本技术领域内的技术人员明白,在由此描述的本发明的范围内,可以设想其它实施例。此外,应当注意,本说明书中使用的语言主要是为了可读性和教导的目的而选择的,而不是为了解释或者限定本发明的主题而选择的。While the invention has been described in terms of a limited number of embodiments, it will be apparent to a person skilled in the art having the benefit of the above description that other embodiments are conceivable within the scope of the invention thus described. In addition, it should be noted that the language used in the specification has been chosen primarily for the purpose of readability and instruction rather than to explain or define the inventive subject matter.

Claims (10)

1.一种基于域控的设备激活方法,适用于域控平台服务端,包括:1. A domain control-based device activation method, suitable for domain control platform servers, including: 响应于接收到域管客户端推送的登录请求,对所述登录请求携带的域账号和密码令进行校验,并在校验成功后向批量激活服务端推送域账号登录通知,以使所述批量激活服务端对所述域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后、且域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知;以及In response to receiving the login request pushed by the domain management client, verify the domain account number and password token carried in the login request, and push a domain account login notification to the batch activation server after the verification is successful, so that the The batch activation server verifies the batch activation server address and password carried in the domain account login notification, and after the verification is successful and the number of domain account activations has a remaining quota, pushes the creation server to the domain control platform server. Script task notifications; and 响应于接收到所述批量激活服务端推送的创建脚本任务通知,根据所述创建脚本任务通知创建脚本,并将创建的脚本推送至与所述脚本相对应的域管客户端,所述域管客户端布置于终端设备上,以使所述域管客户端执行所述脚本,完成所述终端设备的激活。In response to receiving the script creation task notification pushed by the batch activation server, create a script according to the script creation task notification, and push the created script to the domain management client corresponding to the script, the domain management The client is arranged on the terminal device, so that the domain management client executes the script to complete the activation of the terminal device. 2.如权利要求1所述的基于域控的设备激活方法,还包括:2. The domain control-based device activation method according to claim 1, further comprising: 响应于接收到所述域管客户端推送的入域请求,向所述批量激活服务端推送入域事件通知,以使所述批量激活服务端在数据库中新增终端设备硬件信息记录。In response to receiving the domain entry request pushed by the domain management client, push a domain entry event notification to the batch activation server, so that the batch activation server adds a terminal device hardware information record in the database. 3.如权利要求1或2所述的基于域控的设备激活方法,其中,所述根据所述创建脚本任务通知创建脚本包括:3. The domain control-based device activation method according to claim 1 or 2, wherein the creating script task notification according to the creating script comprises: 根据所述创建脚本任务通知携带的所述批量激活服务端地址、所述口令以及所述终端设备的域内身份标识码创建激活脚本。An activation script is created according to the batch activation server address, the password, and the intra-domain identity code of the terminal device carried in the script creation task notification. 4.一种基于域控的设备激活方法,适用于批量激活服务端,包括:4. A domain controller-based device activation method, suitable for batch activation of servers, including: 响应于接收到域控平台服务端推送的域账号登录通知,对所述域账号登录通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备与域账号的关联关系;以及In response to receiving the domain account login notification pushed by the domain control platform server, verify the batch activation server address and password carried in the domain account login notification, and update the association between the terminal device and the domain account after the verification is successful relationship; and 在所述域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知,以使所述域控平台服务端创建脚本、并将所述脚本推送至与所述脚本相对应的域管客户端,所述域管客户端布置于所述终端设备上,使得所述域管客户端执行所述脚本,完成所述终端设备的激活。When the activation quantity of the domain account has a remaining amount, push the creation script task notification to the domain control platform server, so that the domain control platform server creates a script, and pushes the script to a location corresponding to the script A domain management client, the domain management client is arranged on the terminal device, so that the domain management client executes the script to complete the activation of the terminal device. 5.如权利要求4所述的基于域控的设备激活方法,还包括:5. The domain control-based device activation method according to claim 4, further comprising: 响应于所述批量激活服务端地址和/或口令发生变更,将变更后的批量激活服务端地址和/或口令推送至所述域管客户端。In response to the change of the batch activation server address and/or password, the changed batch activation server address and/or password are pushed to the domain management client. 6.如权利要求4或5所述的基于域控的设备激活方法,还包括:6. The domain control-based device activation method according to claim 4 or 5, further comprising: 响应于接收到所述域管客户端推送的激活请求,对所述激活请求携带的批量激活服务端地址和口令进行校验;以及In response to receiving the activation request pushed by the domain management client, verifying the batch activation server address and password carried in the activation request; and 在校验成功后向所述域管客户端返回序列号,并将所述序列号与所述终端设备的硬件信息进行绑定。After the verification is successful, return the serial number to the domain management client, and bind the serial number with the hardware information of the terminal device. 7.如权利要求4至6中任一项所述的基于域控的设备激活方法,还包括:7. The domain control-based device activation method according to any one of claims 4 to 6, further comprising: 响应于接收到所述域控平台服务端推送的入域事件通知,在数据库中新增终端设备硬件信息记录。In response to receiving the domain entry event notification pushed by the domain control platform server, a new terminal device hardware information record is added in the database. 8.如权利要求4至7中任一项所述的基于域控的设备激活方法,还包括:8. The domain control-based device activation method according to any one of claims 4 to 7, further comprising: 响应于管理员对指定设备进行激活的操作,向所述域控平台服务端推送创建脚本任务通知,以使所述域控平台服务端根据所述创建脚本任务通知创建脚本,并将创建的脚本推送至所述指定设备的域管客户端,使得所述域管客户端执行所述脚本,完成所述指定设备的激活。Responding to the administrator's operation of activating the specified device, push the creation script task notification to the domain control platform server, so that the domain control platform server notifies the creation script according to the creation script task, and sends the created script The script is pushed to the domain management client of the designated device, so that the domain management client executes the script to complete the activation of the designated device. 9.一种基于域控的设备激活系统,包括布置于终端设备的域管客户端和批量激活客户端、布置于第一服务器的域控平台服务端以及布置于第二服务器的批量激活服务端;9. A device activation system based on domain control, including a domain management client and a batch activation client arranged on terminal devices, a domain control platform server arranged on the first server, and a batch activation server arranged on the second server ; 所述域管客户端适于向所述域控平台服务端发送登录请求以及执行所述域控平台服务端发来的脚本,使得与所述域管客户端布置在同一终端设备的批量激活客户端连接至批量激活服务端并完成激活;The domain management client is adapted to send a login request to the domain control platform server and execute the script sent by the domain control platform server, so that the batch activation client arranged on the same terminal device as the domain management client connect to the batch activation server and complete the activation; 所述域控平台服务端适于对所述域管客户端发来的域账号登录信息的合法性进行验证、向所述批量激活服务端推送域账号登录事件通知、以及根据所述批量激活服务端发来的创建脚本任务通知创建脚本、以及将创建的脚本下发至对应的域管客户端;The domain control platform server is adapted to verify the legitimacy of the domain account login information sent by the domain management client, push a domain account login event notification to the batch activation server, and according to the batch activation service The script creation task sent by the terminal notifies the creation script, and sends the created script to the corresponding domain management client; 所述批量激活服务端适于对所述域账号登录事件通知携带的批量激活服务端地址以及口令进行校验,并在校验成功后更新终端设备与域账号的关联关系,以及在所述域账号激活数量有剩余额度时向所述域控平台服务端推送创建脚本任务通知。The batch activation server is adapted to verify the batch activation server address and password carried in the domain account login event notification, and update the association relationship between the terminal device and the domain account after the verification is successful, and When the number of account activations has a remaining quota, a notification of creating a script task is pushed to the server side of the domain control platform. 10.一种存储有程序指令的可读存储介质,当所述程序指令被计算设备读取并执行时,使得所述计算设备执行如权利要求1-3中任一项所述的基于域控的设备激活方法或权利要求4-8中任一项所述的基于域控的设备激活方法。10. A readable storage medium storing program instructions. When the program instructions are read and executed by a computing device, the computing device executes the domain-based control system according to any one of claims 1-3. The device activation method or the domain control-based device activation method described in any one of claims 4-8.
CN202310274474.4A 2023-03-20 2023-03-20 A device activation method, system and readable storage medium based on domain control Pending CN116340902A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310274474.4A CN116340902A (en) 2023-03-20 2023-03-20 A device activation method, system and readable storage medium based on domain control

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310274474.4A CN116340902A (en) 2023-03-20 2023-03-20 A device activation method, system and readable storage medium based on domain control

Publications (1)

Publication Number Publication Date
CN116340902A true CN116340902A (en) 2023-06-27

Family

ID=86892445

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310274474.4A Pending CN116340902A (en) 2023-03-20 2023-03-20 A device activation method, system and readable storage medium based on domain control

Country Status (1)

Country Link
CN (1) CN116340902A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116781761A (en) * 2023-08-24 2023-09-19 北京建筑大学 Application program calling method and device
CN120091274A (en) * 2025-03-03 2025-06-03 上海凯勇信息技术有限公司 Method, device, equipment and storage medium for realizing unified management of terminal equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101156166A (en) * 2005-03-24 2008-04-02 微软公司 System and method for using machine attributes to deter software piracy in an enterprise environment
CN110413374A (en) * 2019-06-28 2019-11-05 苏州浪潮智能科技有限公司 A kind of method and apparatus of the activation based on cloud platform
US20210135935A1 (en) * 2019-10-31 2021-05-06 Juniper Networks, Inc. Bulk discovery of devices behind a network address translation device
CN115514503A (en) * 2021-06-03 2022-12-23 中移动信息技术有限公司 A method and device for remotely logging in to batch server devices
CN115550076A (en) * 2022-12-02 2022-12-30 北京安博通科技股份有限公司 Method and system for authentication by using domain log

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101156166A (en) * 2005-03-24 2008-04-02 微软公司 System and method for using machine attributes to deter software piracy in an enterprise environment
CN110413374A (en) * 2019-06-28 2019-11-05 苏州浪潮智能科技有限公司 A kind of method and apparatus of the activation based on cloud platform
US20210135935A1 (en) * 2019-10-31 2021-05-06 Juniper Networks, Inc. Bulk discovery of devices behind a network address translation device
CN115514503A (en) * 2021-06-03 2022-12-23 中移动信息技术有限公司 A method and device for remotely logging in to batch server devices
CN115550076A (en) * 2022-12-02 2022-12-30 北京安博通科技股份有限公司 Method and system for authentication by using domain log

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116781761A (en) * 2023-08-24 2023-09-19 北京建筑大学 Application program calling method and device
CN116781761B (en) * 2023-08-24 2023-10-27 北京建筑大学 An application calling method and device
CN120091274A (en) * 2025-03-03 2025-06-03 上海凯勇信息技术有限公司 Method, device, equipment and storage medium for realizing unified management of terminal equipment

Similar Documents

Publication Publication Date Title
JP6013594B2 (en) Locally assisted cloud-based storage
US20230229804A1 (en) Consent-driven privacy disclosure control processing
US20170041504A1 (en) Service providing system, information processing apparatus, program, and method for generating service usage information
US9721106B2 (en) Method and system for scanning a computer system for sensitive content
WO2021164459A1 (en) Identity verification method and apparatus, computer device, and readable storage medium
US9052861B1 (en) Secure connections between a proxy server and a base station device
CN101753313A (en) Password management method, password management system and password management server
US20180341666A1 (en) Data protection method and associated apparatus
CN116340902A (en) A device activation method, system and readable storage medium based on domain control
CN111181975A (en) Account management method, device, equipment and storage medium
CN106534351A (en) Cloud desktop system and method for supporting shared storage
WO2023215581A1 (en) Automatically managing access policies for archived objects
CN108289074B (en) User account login method and device
CN107566329A (en) A kind of access control method and device
CN113610520B (en) Data processing method, system, device, computer equipment and storage medium
US11055079B2 (en) Systems and methods for just-in-time application implementation
CN114650183B (en) Resource management method, device, server and storage medium
CN114640505A (en) FTP user authentication method and system and construction method thereof
US12430139B2 (en) Systems and methods for just-in-time application implementation
CN114070856A (en) Data processing method, device and system, operation and maintenance auditing equipment and storage medium
CN114662084A (en) Method and device for monitoring full life cycle of user account
CN115150191B (en) Cross-region cloud management platform information interaction method and related components
CN111385358A (en) Synchronization method, device and server for session control object
US20250193002A1 (en) Management of web3 assets using web2 technology
CN117688534A (en) Third party application access system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination