Rolling back the driver one version fixed it. I believe Surface Pro has a
Marvel chip.
Tom Zeller
Senior Technology Analyst
Indiana University
zel...@indiana.edu
(812) 855-6214
On 4/24/13 5:23 PM, Zeller, Tom S zel...@indiana.edu wrote:
I'm no longer directly involved in the WiFi here
I'm no longer directly involved in the WiFi here, but I was helping
someone with a Microsoft Surface (Intel version) that is perfectly
up-to-date. My Mac Air WiFi worked perfectly with our Aruba AP throughout
the exercise. His would connect, get DHCP, get a lease renewal in five min
(ten min
I saw this on this list the day after my account had been locked, as always
happens upon a pw change (g). (Thanks to however posted it). I suggested we
turn this bit on at Indiana. The ADS people have tested it for a month and
are happy with it. Security OK'd it today. The identity
At Indiana we have had long had separate guest SSID via a generated
account (by any faculty or staff, in bulk by convention center types).
This sorta worked but most people didn't know how to create the accounts
(or that they could) and there are plenty of visitors for whom no one
would generate
1. Here is an Educause forum for discussion of such issues. It has
reorganized the old net@edu working groups under the umbrella of Advanced Core
Technologies Initiative (ACTI: http://www.educause.edu/acti) and one of the
working groups is the Communication, Collaboration, and Mobility
http://www.net.princeton.edu/announcements/ipad-iphoneos32-stops-renewing-le
ase-keeps-using-IP-address.html
iPad gets DHCP lease. If iPad happens to be sleeping during the renewal
time it awakens and uses the IP number forever (until shut down of unit or
WiFi or going out of range)
Tom Zeller
24 institutions, 10,000 devices:
http://www.muniwireless.com/2009/11/10/student-use-of-80211n-twice-general-p
opulation/
Or
http://tinyurl.com/yzt87h4
Tom Zeller
Indiana University
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can
On 5/16/09 6:29 PM, Brooks, Stan stan.bro...@emory.edu wrote:
If the computer loses its security association with the AD domain,
authentication will fail. Once you lose the security association, I believe
you need to rebuild it by connecting through a wired network.
= = = =
I would have
In a recent discussion here we produced at least two issues with decentralized
architecture.
#1. Mobility. One of the main attractions of the controller-based architecture
(CBA) in the first place was to improve the experience for hand-held devices
which don't hibernate between locations.
Indiana moved from 1500 fat AP's to 3000 controller-based AP's over this past
summer. Overall, the conversion went very smoothly for the users, if a bit of
a strain on the engineering staff. In the process we added a new SSID with
802.1x and another for guests. We left the legacy
I'm told that TicketMaster has their own wireless APs on campus, not under our
management. Now that it has been brought to my attention I do recall a
discussion that the locations for TicketMaster were not physically near our own
APs and aren't likely to cause interference in a meaningful way.
There was a question about this recently. Here are links to software that
claim to do this:
http://www.intersectalliance.com/projects/index.html
https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys/
http://edoceo.com/creo/winlogd
http://www.syslog.org/wiki/Main/Evtsys
1. Currently we have users manually register their wireless MAC address, but
from then on they don't see the guest portal, have free access to the internet
(minus port25) but can only do encrypted protocols to campus without VPN. This
was designed to accommodate handheld devices that couldn't
Interesting TechWorld article on an aspect of 802.11n rollout that I hadn't
seen discussed before.
http://tinyurl.com/2ebpd4
Tom Zeller
Indiana University
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at
As to VPN hardware requirements, we have Cisco's new Adapative Security
Appliance (ASA) in production using L2TP/IPSEC for both wireless and
remote users.
We have seen over 1200 users on a single server while CPU usage remains
low.
One ASA costs less than the older, now (or soon) end-of-lifed
At Indiana we require VPN for all non-guest wireless use. We use 3030's
with native clients. It's been serviceable but not perfect. I heard
similar complaints from Mac users, but not the level of this always
happens when I move files.
We never resolved the issue and have now moved to Cisco's
Yes, Microsoft has documented that XP will prefer a broadcast SSID over
a non-broadcast SSID irrespective of their order in the list.
http://www.microsoft.com/technet/itsolutions/network/evaluate/hiddennet.
mspx
However, if you remove the broadcast SSID from the list, there's no
conflict.
The
I had difficulty making 802.1x work reliably against a non-broadcast
SSID. However WPA-PSK seems to work fine.
Using Proxim and HP APs.
Tom Zeller
Indiana University
[EMAIL PROTECTED]
-Original Message-
From: Jim Gogan [mailto:[EMAIL PROTECTED]
Sent: Saturday, July 08, 2006 1:26 PM
I've been doing extensive testing of PEAP with the XP client and with
Mac OS X 10.4. Our access points are mostly Proxim 600s with some HP
420s.
Once connected it works great and will stay connected.
However, getting connected is wildly inconsistent. On the mac I may
have to hit connect one to
I don't agree with this analysis. Students may have the right to use
the spectrum on their personal network. I don't believe they have an
inherent right to broadcast the university's network out into the dorm
parking lot.
[I'm not a lawyer, but I could play one on TV]
Tom Zeller
Indiana
At Indiana University we allow any faculty or staff to authenticate to a
web page to generate a guest account. The accounts are ADS accounts.
They accounts are not actually created by this process. We have a large
pool of accounts that are initially disabled. When a user generates
an account,
Some might be interested that the web-based guest wireless portal we are
about to deploy is a new HP product. It's a blade (access control
module) that goes into an HP 5300 switch. The switch is then configured
to pass particular vlans through the blade.
There is also a central controller
Lee's comments about roaming brings up a difficult area I've been
grappling with. Our architecture is the same as 4 years ago. Dumb APs,
on a single vlan for roaming (actually two now on the largest campus)
with vpn-protection.
Roaming is not currently a huge issue as laptops sleep between
I'd be interested in comments on the following scenario.
I've heard it said that cellular carriers make money selling per-byte
data services and therefore have no incentive to support and subsidize
combo cell/WiFi devices.
What if they are eventually forced into a flat-rate data scheme. This
Indiana University's wireless network is closed. We feel strongly that
we need to associate a user with an IP address for forensic track-back.
IU users create VPN connections to get off the subnet. Any faculty or
staff can create a temporary ID via a web application that can be used
to create a
Title: WIRELESS-LAN Digest - 26 Apr 2005 to 28 Apr 2005 (#2005-52)
Indiana
University is planning to deploy a Vernier (rebranded by HP) for our guest
wireless traffic. IU users will also transit the Vernier during the MAC
address registration process. Once registered, theywill beon a
At Indiana University we
have a web-based self-service mechanism for any faculty or staff to generate
guest credentials. These are ADS accounts that expire after a week.
We recycle the accounts, resetting the password for the next user and
un-expiring them. These ADS accounts are not in the
Title: WIRELESS-LAN Digest - 22 Jun 2004 to 23 Jun 2004 (#2004-64)
VLAN Spanning
This condition is caused in Windows XP whenever
you add a network card (such as a wireless PCI card) and go through the network
wizard. In this case, by default, Microsoft decides to bridge the two
28 matches
Mail list logo
