Looking for feedback- on or off list- from anyone who is using the
built-in web access portal for guest use on a production scale.
Thanks-
Lee
Lee H. Badman
Wireless/Network Engineer
Information Technology and Services
Syracuse University
315 443-3003
**
Participation and subscrip
Anything specific you are looking to do? We use the web access portal
strictly for guest access, we limit it to http and https only, and we
require user authentication. Sponsored guest accounts can be created by
any staff or faculty through a website (we don't use the lobby
ambassador because it wa
Hi Hector-
How (or where) do you enforce the http/https restriction? Any demand to
allow VPN protocols out? I'm guessing that the admin website for account
creation is on another box- can you describe the integration? And I'm
guessing this is on a guest SSID? Finally- one thing that perplexes me
We're using the webauth functionality for authenticated access with
great success. We swapped out our Bluesocket deployment (about which I
have nothing but good things to say) for it. We're also piloting it for
unauthenticated guest access. There are some quirks to using customized
login screens
Lee,
I think Cisco had a feature, (forgive me, I'm working from memory so I might
mangle the names) called mobility anchor. You could make a SSID live on a
single controller, and all of the other controllers would tunnel clients to
that controller. I believe the feature was designed so that the "
Answers below:
How (or where) do you enforce the http/https restriction?
We created an ACL on the controllers to the guest interface.
Any demand to allow VPN protocols out?
The way we look at guests is that if they want quick access to the web,
our guest SSID should accomplish this. No d
Thanks Hector (and Mike and David). Hector- we see visitors with
locked-down laptops that expect to be able to VPN out over a guest path-
that's where that question originates. Everything else makes sense... is
your FreeRADIUS server the same RADIUS box used for your 802.1x
network(s)?
Wondering
Yes, guest and secure SSIDs authenticate through the same freeRADIUS
server.
Hector
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Lee H Badman
Sent: Tuesday, January 06, 2009 1:20 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.
We tried to use Lobby Ambassador for sponsored guest management. We
configured our RADIUS server to return the necessary attribute to put
all users in the "lobby admin" role. It worked as advertised with one
major issue - all guest accounts were shared between the lobby
ambassador accounts. That
This is intriguing- running it on an iPAQ, and also on an iPod Touch-
"hybrid GPS" using WiFi alone (in my case) or also cellular- the
positioning is pretty good for non-GPS GPS:
http://www.skyhookwireless.com/
A lot of hooks to other related utilities- and the price is right (free,
as best I c
10 matches
Mail list logo
