A system and method is disclosed for allowing a Third-Party (TP) User Equipment (UE) to use a base station/access point (BS/AP), such as a 4G eNodeB (eNB) or a 5G gNodeB (gNB) of a private network, such as an enterprise network to access components of a network core, such as an Evolved Packet Core (EPC) in the TP network while also having access to features provided by or through components of an EPC within the private network.

Disclosed is a system and methods for creating and maintaining a virtual subnetwork of telecommunication base stations within a wider telecommunication network. In an LTE-based example, the subnetwork includes a connection aggregator that is coupled between the plurality of eNodeBs internal to the subnetwork and one or more MMEs in the outer network. The connection aggregator intercepts all control plane messages between the MMEs and the internal eNodeBs, remaps eNodeB identifiers, and transmits repackaged messages so that the outer network sees the entire subnetwork as a single “giant” eNodeB. The disclosed system and methods enables the operator of the virtual subnetwork to add and shut down eNodeBs as demand for connectivity fluctuates, and to do so such that all changes are unseen by the outer network.

The present disclosure relates to devices, methods, and systems for subscriber identification module (SIM) management for a private mobile network. The methods and systems may include a private mobile network service on a cloud computing system. Users of the cloud computing system may use the private mobile network service to create a private mobile network. The private mobile network service may facilitate the creation of the private mobile network by providing interfaces for secure communications with the users of the cloud computing system, the SIM service partners, and the packet core partners. The mobile network service may also manage the SIM cards for the private mobile networks by coordinating the transmission of the SIM operation details for the SIM cards.

In some embodiments, a local community may manage its own RAN via a simple, secure, self-service user interface in conjunction with a mobile operator. An exemplary system is disclosed, including: at least two base stations providing wireless access to one or more mobile devices and located in a community; a gateway providing a connection to a core network for the at least two base stations; a management functionality in the core network, in communication with the gateway, for authorizing management activities for the at least two base stations; and a user-facing administration module in communication with the management functionality, the user-facing administration module having: a user interface for providing management control to an administrative user in the community.

A system and method is disclosed for allowing a Third-Party (TP) User Equipment (UE) to use a base station/access point (BS/AP), such as a 4G eNodeB (eNB) or a 5G gNodeB (gNB) of a private network, such as an enterprise network to access components of a network core, such as an Evolved Packet Core (EPC) in the TP network while also having access to features provided by or through components of an EPC within the private network.

Geofencing information for enterprise campus sites is stored in a geofencing database. Having such geofencing information available makes it possible to save power by limiting scans to only regions that are relevant to the User Equipment (UE) doing the scanning. Dynamic credential selection is also made possible. The geofence database is learned and/or provisioned from individual enterprise deployments. As a new enterprise network is deployed, the network accesses a resource that manages the geofencing database and provides information for the newly deployed network.

Aspects of the disclosure relate to a multi-mode wireless access protocol (MMWAP). A redirection router may receive a pre-association request, from a user communication device, and send an acknowledgment of the pre-association request. The user communication device may further transmit authorization keys associated with an application installed in the user communication device. Based on the authorization keys, the redirection router may send an authentication indication to the user communication device. The user communication device may use the redirection router to transmit and receive messages associated with the application to public networks and other private networks. The redirection router may maintain multi-mode connectivity independently with multiple user communication devices.

In accordance with one novel aspect, a method of manual network selection at switch on for UE supporting CAG is proposed. A UE is in manual network selection mode, it supports CAG, and it is registered in an RPLMN. After switching on, the UE found that the registered RPLMN is no longer available. The UE also found that a most preferred home network is available. However, under certain circumstances, the UE determines not to auto change PLMN in manual mode, e.g., does not select or attempt registration on the most preferred home network. Instead, the UE initiates the Manual Network Selection Mode Procedure by presenting or displaying available PLMNs and CAGs (if any) for the user to select.

A method is performed at a server that manages embedded subscriber identity module (eSIM) profiles. The method includes, when a user equipment that belongs to a global enterprise network relocates from a first locale to a second locale in which a first private network and a second private network of the global enterprise network are located, wherein the user equipment includes a locale-specific first eSIM profile that includes a first non-public network identifier of the first private network, receiving, from the user equipment over a network in the second locale, information that indicates the user equipment is in the second locale. The method further includes identifying the second private network based on the information, and generating a locale-specific second eSIM profile that includes a second non-public network identifier for the second private network. The method includes configuring the user equipment with the locale-specific second eSIM profile.

A mechanism of authenticating a communication device onto a radio access network via a private wireless gateway is described. This includes communicating with a communication device via a first wireless interface authentication information, a preferred roaming list (PRL), and an initial access value are obtained from the communication device. A first expected access value is determined based on rolling code data and a secret function. The PRL is authenticated when the first expected access value matches the initial access value. The communication device is proxied onto a radio access network via a second wireless interface. The proxying includes providing the authentication information and the PRL to a cell site attached to the radio access network.