multicast enabled on your wireless network?

Hello everyone, Just checking if you guys have multicast enabled on your wireless network and if you have come across any performance issues arising after enabling it? Is multicast widely used in your network? I am working on a POC which has requirements that can be fulfilled by either

re: EAP-TLS

Hi, This is in no way a sales pitch, just want to share a few thoughts from Kevin Koster, Chief Architect and Founder of Cloudpath, who is still at Ruckus, and LB said this would be OK. Thank you, Rich Nedwich Dir of Product Marketing, Education Ruckus Kevin K. = "To address the

RE: EAP-TLS

Lee, If you do that here with our PEAP-MSCHAPv2, you break when the server certificate is updated. If you onboard properly you only trust the certificate chain and keep on working. EAP-TLS has the advantage of stopping people from trying to work around the system and then complaining when

RE: EAP-TLS

Thanks. That is basically machine authentication only. We need to differ access based on who is logged in the Login profile can do that but if you typo your password it continues to try your old one while prompting for a correct one. This locks the user account.   Bruce Osborne Senior

Re: [WIRELESS-LAN] EAP-TLS

These risks have proven easier to swallow for us. When we have trouble, we blacklist the username. So far, that has been effective. On Tue, Aug 15, 2017 at 12:59 Jeffrey D. Sessler wrote: > “Our campus isn't comfortable with an open ESSID without verifying the >

Re: [WIRELESS-LAN] EAP-TLS

“Our campus isn't comfortable with an open ESSID without verifying the identity of the user, so that's the value of eduroam - identity.” How exactly have you verified the identity of the user? Is it blind trust that other EDUs verify and manage identity in the same fashion that your campus

RE: EAP-TLS

Cloudpath has asked me to share their information for anybody with additional questions about CloudPath Wizard EOL. Trish Rilling Cloudpath Sales Program Manager Desk: 303.872.7127 Mobile: 303.518.0686 Email: patricia.rill...@brocade.com   Bruce Osborne Senior Network Engineer Network

RE: EAP-TLS

Sapna, CloudPath Wizard has been deprecated and you cam migrate to CloudPath ES (now known as just CloudPath). Your sales rep will be able to give you incredible pricing. They also have great pricing for you if you wish to use their full RADIUS server / CA functionality. Currently, there are

RE: [WIRELESS-LAN] EAP-TLS

I know we use it as well... Lee Badman | Network Architect Certified Wireless Network Expert (#200) Information Technology Services 206 Machinery Hall 120 Smith Drive Syracuse, New York 13244 t 315.443.3003   f 315.443.4325   e lhbad...@syr.edu w its.syr.edu SYRACUSE UNIVERSITY syr.edu

RE: [WIRELESS-LAN] EAP-TLS

Hi Bruce, I am curious about your statement "We have been a CloudPath Wizard customer for years. Since this product has been deprecated, we are evaluating onboarding vendors." Is Ruckus not going to support it anymore? Best, Sapna Misra | Senior Network Engineer | Information Technology |

Re: [WIRELESS-LAN] EAP-TLS

I just realized that I gave a +1 for EAP-TLS (and yes, it give a +1 for Open Networks ;-) That contaminated laptop might force the remote IDP to block the user acoount! With PEAP, that will also block that user from using a smart phone as a backup plan. With EAP-TLS, the remote IDP could just

Re: [WIRELESS-LAN] EAP-TLS

Ian, Definitely black list the MAC first, then contact either us (eduroam.us ) or the local campus (abuse@realm) or you could even contact the user directly since the majority of users have their email as an outer identity. (assuming that the malware is not preventing the

Re: [WIRELESS-LAN] EAP-TLS

> On Aug 15, 2017, at 10:47 AM, Jeffrey D. Sessler > wrote: > > Couple of comments: > > eduroam – using your point of “…most users can access what they want > off-campus…”, what long-term value is there to eduroam? IMHO – not at lot. > Back in the day, this would

Re: [WIRELESS-LAN] EAP-TLS

Blacklist MAC, Notify Eduroam to inform home institution, inform local Help Desk in case they get a call. Works for DMCA letters too. On 8/15/17 10:57 AM, Ian Lyons wrote: What is the process if X user (EduRoam) has a lot of malware and is sharing it on your network. But home institution

RE: [WIRELESS-LAN] EAP-TLS

What is the process if X user (EduRoam) has a lot of malware and is sharing it on your network. But home institution is 2000 miles away… Black list MAC and call it a day? Notify eduroam? Home institution? Geiger-Counter person and tell them? My guest account requires active phone number

Re: [WIRELESS-LAN] EAP-TLS

Our campus isn't comfortable with an open ESSID without verifying the identity of the user, so that's the value of eduroam - identity. On Tue, Aug 15, 2017 at 10:47 Jeffrey D. Sessler wrote: > Couple of comments: > > > >- eduroam – using your point of “…most users

Re: [WIRELESS-LAN] EAP-TLS

Couple of comments: * eduroam – using your point of “…most users can access what they want off-campus…”, what long-term value is there to eduroam? IMHO – not at lot. Back in the day, this would facilitate quick access for a visiting educator who may be collaborating with someone locally

Re: [WIRELESS-LAN] EDUROAM PROBLEM RE: [WIRELESS-LAN] Any Stetson University Network Folks on the List? Live problem in progress

Lee, To clarify, no eduroam connector is being interrupted due to lack of eduroam agreement signature yet. I did see some hickups with Stetson’s RADIUS servers connectivity to TLRS1 and TLRS2 in the last few days which might explain the connectivity issues with their users! Philippe

Re: [WIRELESS-LAN] EDUROAM PROBLEM RE: [WIRELESS-LAN] Any Stetson University Network Folks on the List? Live problem in progress

To close the loop- This was a case of Stetson needing to re-up their eduroam agreement. Lee Lee Badman (mobile) On Aug 14, 2017, at 12:18 PM, Lee H Badman > wrote: Thanks, Darren. I just went through our eduroam logs, and this seems to be multiple