Wireless Networks Thread, Wireless authentication for non-owned laptops VLAN/network in Technical; Hi gang,
Ive a question regarding what type of wireless authentication i should be using for a purple network of ...
27th January 2009, 06:03 AM #1
28th January 2009, 11:38 AM #2
- Rep Power
We use RADIUS for our internal clients, and it works because we can deploy the settings using GPOs. Looking at the ammount of config involved to manually connect clients to the network, I would definately recommend using PSK for rexternal clients.
If you can, you should have a seperate SSID and VLAN for staff laptops, and restrict them to just the internet.
I would still recommend that you change the keys, every term or 1/2 term, but you could publish them in the staff room, or someware students cannot get to them.
Anyway, thats just my oppinion.
28th January 2009, 07:03 PM #3
I use a pre shared key for external machines in their own SSID. Using some ACLs they are restricted to access our internal proxy only and thats it. Seems to work well enough. This is for our P16 only though. The number of y7s I get walking in asking if they can get on the wireless on their phones makes me chuckle
28th January 2009, 09:03 PM #4
I would get a PacketFence: Home
or similar and setup an extra VLAN, for them to protect your network from their viruses.
You can (apparently, as I don't use it) setup AD based authentication, although it will ask them to confirm every time.
Why don't you get laptops for the staff ?
Currently we allow students access to our student network, but we do this by loading a Radius certificate WPA\TKIP, which we manually install on each machine, this links in with their AD username, so that we can still block access when we want.
29th January 2009, 08:46 AM #5
This is what we are doing to save them the hassle of remembering yet another logon. The wireless network is completely isolated fromt he rest of the network and has ACL in switches (for that vlan) to only allow certain traffic i.e. www, dns, and https.
Originally Posted by User3204
We also configure the laptops by plaing the root certficate of our CA into their laptops and mobile devices and then Radius takes care of authentication and authorisation.
By bishopsgarthstockton in forum Wireless Networks
Last Post: 27th February 2009, 08:53 AM
By byron67 in forum Educational Software
Last Post: 15th January 2008, 09:29 AM
By spc-rocket in forum Wireless Networks
Last Post: 3rd January 2008, 06:15 PM
By Rattler in forum Wireless Networks
Last Post: 30th November 2007, 11:08 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)