+ Post New Thread
Results 1 to 8 of 8
Wireless Networks Thread, Wireless keys - students passing it on in Technical; I am in the position where school policy denotes that all KS5 students can bring their own wireless devices into ...
  1. #1

    Join Date
    Nov 2006
    Location
    Derbyshire
    Posts
    101
    Thank Post
    16
    Thanked 5 Times in 4 Posts
    Blog Entries
    1
    Rep Power
    16

    Wireless keys - students passing it on

    I am in the position where school policy denotes that all KS5 students can bring their own wireless devices into school and connect to the internet (as part of their studies is very much debatable!)

    What i have tried to do, to ensure that only KS5 students were on the system was to get them to come down to ICT Support get the key put in and the details of the device noted on a spreadsheet eg. user / mac address etc

    Have reached a point where i feel its all futile - Windows 7 allows you to see what the key is by simply ticking a box; sites like Nirsoft allow you to download software to a laptop and pick out the keys from the registry. Whichever way, having given the key to only 9 students this term, you look at the DHCP and theres 35 devices!! Its fairly obvious whats going on!

    Whats the solution here - shall i just admit defeat?

  2. #2

    powdarrmonkey's Avatar
    Join Date
    Feb 2008
    Location
    Alcester, Warwickshire
    Posts
    4,859
    Thank Post
    412
    Thanked 777 Times in 650 Posts
    Rep Power
    182
    The only sensible solutions are:

    - withdraw access
    - enforce MAC filtering on your access points, but this is trivial to bypass
    - implement a proper RADIUS setup, but students sharing their account details pose the same problem

  3. #3

    Join Date
    Aug 2005
    Location
    London
    Posts
    3,154
    Thank Post
    114
    Thanked 527 Times in 450 Posts
    Blog Entries
    2
    Rep Power
    123
    Quote Originally Posted by powdarrmonkey View Post
    The only sensible solutions are:

    - implement a proper RADIUS setup, but students sharing their account details pose the same problem
    but if something bad happens you can trace it to a user and say "you did this" If they then say "no, but person X knows my password" then you can still get the culprit (and deal with the original user for passing on their details)

  4. #4


    Join Date
    Jul 2007
    Location
    Rural heck
    Posts
    2,662
    Thank Post
    120
    Thanked 434 Times in 353 Posts
    Rep Power
    126
    I'd point out to management that you can demonstrate wide spread abuse is taking place and that you'd like to withdraw wireless access for students.

    It probably won't work, but it's worth a shot. Maybe point out there's a safeguarding issue since you can't monitor the internet usage of younger students.

    How do you have the wireless setup, is there a separate vLan and SSID for students?

  5. #5
    browolf's Avatar
    Join Date
    Jun 2005
    Location
    Mars
    Posts
    1,524
    Thank Post
    106
    Thanked 88 Times in 74 Posts
    Blog Entries
    46
    Rep Power
    40
    yeah just let them all on but don't give out the key freely.

  6. #6
    buzzard's Avatar
    Join Date
    May 2006
    Location
    North West
    Posts
    299
    Thank Post
    103
    Thanked 27 Times in 23 Posts
    Rep Power
    24
    I'd go with the above, stick it in their own VLAN and SSID then route through a more stringent filter, well at least pass these logs on the 6th form head

  7. #7
    p858snake's Avatar
    Join Date
    Dec 2008
    Location
    Queensland
    Posts
    1,490
    Thank Post
    37
    Thanked 175 Times in 151 Posts
    Blog Entries
    2
    Rep Power
    51
    * [If your using Server '08] Have a look at Network Access Protection (XP SP3 and up don't need the client to be installed on the end client!) and have it check for system health (virus/update status) and block them off if not
    * Then do some MAC filtering (Easily bypassed but some security
    * RADIUS based network auth (which is linked to their AD accounts) compared to your current PSK (Pre shared key)
    * Seperate VLAN or Subnet setup that only gives them access to the web (a separate more filtered box) and possibly printing services

  8. #8

    Join Date
    Jun 2010
    Posts
    384
    Thank Post
    35
    Thanked 56 Times in 53 Posts
    Rep Power
    32
    We use the Radius authentication method against their AD account.

    Each user when joining school abides by the User Access Policy - this states that if you share out your details, in this case it would be their user name and password, in order for another student can gain access to the WIFI both students will be disciplined.

    This has worked well.

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 4
    Last Post: 15th November 2013, 08:05 PM
  2. Setting up an open access wireless network for students
    By Bruce123 in forum Wireless Networks
    Replies: 2
    Last Post: 3rd October 2010, 07:15 PM
  3. VB Delete registry keys with sub keys
    By cookie_monster in forum Scripts
    Replies: 1
    Last Post: 6th November 2009, 08:57 AM
  4. Wireless connection for students
    By NickDay85 in forum How do you do....it?
    Replies: 3
    Last Post: 14th October 2009, 10:29 PM
  5. Wireless keys saving when ghosting laptops
    By farquea in forum Windows
    Replies: 1
    Last Post: 15th July 2009, 02:24 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •