We are using Trapeze Networks for our hardware and we have three SSIDs 1) unencrypted - uses the captive portal built in to the Trapeze unit. 2) encrypted with 802.1x authentication - WPA/WPA2 (AES, TKIP, PEAP, EAP, EAP-TTLS, etc.) 3) encrypted with 802.1x for Macs - WPA/WPA2, Only does TKIP, TTLS. Macs and most PDAs seem to get confused with all the above "options" so we made a "dumbed down" secure
The backend is a radius server that is nearly real time. If a student withdrawals, their wireless access is "withdrawn" within 5 minutes. No unauthenticated users are allowed. We do have guest access that certain people locally can "sponsor." They use a web application that creates the guest ID/PWD and it automatically feeds in to the radius server. -drl -- Dan Lunceford Manager of Networking Services New Mexico Tech [EMAIL PROTECTED], 505-835-5961 Outside of dog, a book is Man's best friend. Inside a dog, it's too dark to read. -- Groucho Marx -----Original Message----- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[EMAIL PROTECTED] On Behalf Of Daniel Bennett Sent: Wednesday, March 26, 2008 5:44 AM To: [email protected] Subject: [WIRELESS-LAN] Open Wireless in Higher Ed We are looking at technologies such as Radius, Cisco Clean Access, etc. to require our wireless client to authenticate to our network. Currently we have an open, unsecured wireless network. What are you Higher Ed institutions implementing to make sure that only valid users are using your wireless networks? If your policy is to do nothing then please indicate that as well. Thanks Daniel R. Bennett CompTIA Security+ Information Technology Security Analyst Pennsylvania College of Technology One College Ave Williamsport, PA 17701 (P) 570.329.4989 ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
