I am also entertaining the idea of suggesting a PSK/MPSK network campus-wide next year (due to the cluster that was Google Home’s firmware v1.49 update) and also running into more devices that don’t “operate” when connect to Open SSIDs. Just came across a Vizio Tv last night that when selecting an Open SSID (immediately says Error Switching Access Point) and doesn’t truly attempt to connect. Tested on both our standard SSID and my mobile hotspot – once I added a PSK – connected just fine. Also seeing issues with some cheap Roku TVs that can’t get past the Languages/Setup screen to download firmware (we’re not blocking a thing – just refuses to complete setup --> UNLESS students connect to a hotspot – download the update – and then move back to our network – then it works just fine). As expected, attempts to get any useful info from consumer vendors is Zero – ask Vendor 1 why they’re not following RFC Standards for DIAL/SSDP – they’ll tell you “it won’t work – and the reason is because there’s too many IP Addresses”. Ask Vendor 2 to talk to a Project Manager/Developer -> they send you a URL to “How to become a Developer” – that one happened last week. Ask Vendor 3 what they’re escalation process is after a bug/defect has been identified, they’ll tell you they’ll troubleshoot the issue (when means factory resetting/restarting – and then telling you to ‘go away’). It really is a constant moving target. 😃 Love the Wack a mole meme. I must say I miss the days when telling someone “make sure your device has a wired port and it’s own remote control” was safe enough – but that funkiness with the first gen PS3 where the wired port also crashes due to the wireless Aruba ARM Frame being “heard” – and the fact that Vizio Smart Tvs can come with a “basic remote” for volume, power, and input only – and the only way to use any of the streaming apps…requires a smart phone/tablet….Good times! 😊 Christopher Johnson Wireless Network Engineer Office of Technology Solutions | Illinois State University (309) 438-8444
Stay connected with ISU IT news and tips with @ISU IT Help on Facebook<https://www.facebook.com/ISUITHelp/> and Twitter<https://twitter.com/ISUITHelp> From: The EDUCAUSE Wireless Issues Community Group Listserv <[email protected]> On Behalf Of Michael Dickson Sent: Thursday, September 24, 2020 12:12 PM To: [email protected] Subject: Re: [WIRELESS-LAN] Wireless Device Policy Questions [This message came from an external source. If suspicious, report to [email protected]<mailto:[email protected]>] We created a PSK SSID with MAC auth registration for devices. We limit device types to essentially the "consumer grade entertainment devices" genre. We use device fingerprinting to accomplish this. We started from a "deny all then allow" paradigm. Only game consoles during pilot. Then added video streaming devices then AppleTV, Echo, SmartTVs, etc. Easier to add device types then take away. 802.1x capable devices get denied. We also limit number of devices a user can register. All helps to mitigate the flood of industrial IT devices coming in from campus wide vendors, some of which may fall into the life-safety genre. Vendors get stuck and end up asking how they can add "a lot" of sensors (e.g. HVAC) to our wireless. We have a discussion, give it a thumbs up or down, and create rules/policies/networks as needed. Good but not perfect. But starting off closed then letting out the line has helped. Having a PSK network also solves the issue of devices that can't connect to open SSIDs. And if we end up just allowing all on the devices network at least we have a sponsor to tie the devices back to. Mike Dickson Michael Dickson Network Engineer Information Technology University of Massachusetts Amherst 413-545-9639 [email protected]<mailto:[email protected]> PGP: 0x16777D39 On 9/24/20 11:33 AM, Lee H Badman wrote: We created an open SSID for the dorms that has Internet access only. It helps with maybe ¾ of the consumer devices, but there are still some home gadgets that need more- Chromecast is one example. Some speakers as well. Then there are devices that will ONLY join PSK networks (like TP-Link power strip) so the open won’t work there. I have seen one Nanoleaf light controller that will not work in 2.4 if it sees 5 GHz, and it only works in 2.4 despite the ability to sense 5. The unholy and expensive things needed to make these high end enterprise systems work like home Wi-Fi is really fairly astounding. If you go this route, expect to occasionally buy and try consumer gear to verify what works and what doesn’t, and to play whack a mole with students wireless hotspots when whatever you attempt doesn’t immediately work. Or… let them use their own hotspots and be done with it. (If only…) Lee Badman Lee Badman | Network Architect (CWNE#200) Information Technology Services (NDD Group) 206 Machinery Hall 120 Smith Drive Syracuse, New York 13244 t 315.443.3003 e [email protected]<mailto:[email protected]> w its.syr.edu Campus Wireless Policy: https://answers.syr.edu/display/network/Wireless+Network+and+Systems SYRACUSE UNIVERSITY syr.edu From: The EDUCAUSE Wireless Issues Community Group Listserv <[email protected]><mailto:[email protected]> On Behalf Of Gernannt, Bill Sent: Thursday, September 24, 2020 10:54 AM To: [email protected]<mailto:[email protected]> Subject: [WIRELESS-LAN] Wireless Device Policy Questions All – From a residence hall perspective, Young Harris College is a wireless only campus. We are currently seeing a 40% increase in wireless devices over last Fall. This has placed a bit of a strain on our wireless network and, by extension, our tiny IT department. This has prompted several internal discussions as to what expectations our end users should have related to wireless support. Obviously, our core responsibility is to provide the resources necessary to have a successful educational experience. But, we also recognize there is a need for our students to have access to online recreational activities like gaming and streaming media. As we look to strike a balance, we wanted to reach out to other institutions for insight and guidance. Have any institutions implemented a restrictive policy that prohibits specific wireless devices? If so, how did you determine what was acceptable and what was not? How did you get leadership to support the initiative? How do you go about enforcing the policy? Have any institutions developed policies that set expectations for wireless performance? What does the policy consider to be necessary versus desirable? Any examples or ideas would be most welcome. Feel free to reach out to me directly, if preferred. Regards, Bill Gernannt Network Administrator Information Technology Services 1 College Street | Young Harris, Georgia 30582 (706) 379-5206 | [email protected]<mailto:[email protected]> | yhc.edu<http://www.yhc.edu/> [cid:[email protected]] ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
