Joseph Karam wrote: > Hi Folks, > > We implemented a secure wireless network this summer with WPA security > and PEAP authentication. Now many of our folks with older handhelds > cannot use the wireless network because their devices do not support WPA > and PEAP. Some folks want to open back up portions of the wireless > network for these people to use handhelds and I think this is a bad > idea. How have other places handled support for devices which do not > work in their secure wireless environments?
What do people want to use these handhelds for? It would be possible, at least in a Cisco environment (since that's what I'm familiar with), to set up an "insecure" SSID that maps traffic to another VLAN set up for Internet access only. That would satisfy most users, who seem to just want email and web access wherever they go. If people want to use their handhelds to access "secure" services, on the other hand, stick to your guns and tell them to use a more secure client. There's no reason to compromise security for convenience, no matter how many dancing pigs they promise. --Matt -- Matt Gracie (716) 888-2403 Information Security Administrator [EMAIL PROTECTED] Canisius College ITS 425531N / 0785109W http://www2.canisius.edu/~graciem/graciem_public_key.gpg ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
