It is great to hear what everyone is doing, it's a great confirmation of what we too are doing.
We have a website that allows anyone to create an account. It works by sending the user a website to visit after filling out some preliminary information and has at least a little verification in that the e-mail address is at least checked. In conjunction with this we have a sponsored account. We try to use this the most. It allows a department to create accounts for their guests and or allows the guest to make their own accounts on behalf of the department they are working for. All of these accounts are in our LDAP and RADIUS servers. Cheers, -----Original Message----- From: Jonn Martell [mailto:[EMAIL PROTECTED] Sent: Monday, February 26, 2007 2:23 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] <SPAM> Re: [WIRELESS-LAN] wireless guest access What we did at UBC, was to allow any faculty and staff to "sponsor" guests. Much like a faculty member can grant a visiting faculty member the use of their office, meeting room etc. we felt it sense to allow them to do this for network access. The Faculty/Staff is effectively responsible to properly identify the user by providing all the details and ultimately, the sponsors are responsible since they granted them access. Since I left IT last year, I won't comment on things that aren't public. For non-affiliated commercial users, the two options available was to create a commercial/hotspot service to validate users based on billing information or just partner with a commercial Hotspot provider. Last summer, the decision was made to partner with a private sector operator for a one year pilot/trial. So UBC students, staff and faculty have free roaming to Fatport locations in exchange for Fatport selling commercial services on campus via a dedicated SSID/BSSID which they are responsible for on the AUP side of things. Not a bad approach if you have the size to attract the commercial provider(s). I can't provide any information except what is in the public domain; please refer to the URLs below for more specific info and contact information. http://www.it.ubc.ca/internet/wireless/fatport.html http://fatport.com/aboutus/press_releases/press58.php It should be interesting to see if the trial agreement turns into a long term one. ............................................................. Jonn Martell, PMP, CWNE, CWNT Martell Consulting, www.martell.ca [EMAIL PROTECTED] Tech instructor - UBC [EMAIL PROTECTED] On 2/26/07, Landau, Gary <[EMAIL PROTECTED]> wrote: > > At LMU we have a guest/visitor account that a faculty/staff member can > request the password to and we change the password periodically. This is > akin to what Ken Connell indicated they're doing at Ryerson Univ. > > Our library also provides paid admittance to the Library for people in the > community and they give out the password when that is done. This was > initially a concern, but we learned that libraries are exempt from CALEA. > > -Gary > > Gary Landau, CISSP, CCNP > Director | Network Services > ----------------------------------------- > Loyola Marymount University > Information Technology > One LMU Drive | Los Angeles, CA 90045 > p.310.338.4434 f.310.338.2326 > [EMAIL PROTECTED] | http://its.lmu.edu > ----------------------------------------- > LMU|LA IT: We Deliver! > > > ________________________________ > From: Scholz, Greg [mailto:[EMAIL PROTECTED] > Sent: Monday, February 26, 2007 10:16 AM > > To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU > Subject: Re: [WIRELESS-LAN] wireless guest access > > > > > Very timely. I am about to launch a project called "public port security and > guest access" that will attempt to define exactly this. I would like to hear > all other responses as well. (I suggest if you are considering Wireless > guests, you should be considering wired as well) > > * Currently we have NO guest access on wireless. > > * We recently changed all our "public lab" computers to use AD > authentication (e.g. no more public/guest access) > > * We use CCA in reshalls and enable the guest button JUST FOR THE > SUMMER (for all the conferences/camps we have during that time) so > effectively no guest access except for summer > > * The ONLY real guest access we have right now is any network port in > a publicly accessible location can be used by anyone without any type of > check. (These are the "public ports" referred to in my project title above). > INCLUDING if someone unplugs a lab/office/kiosk computer and plugs in their > own. > > * We will attempt to balance the tremendous desire for wireless & > wired guest access, CALEA, security and manageability. > > > > I am thinking we may wind up with a 1x solution to determine appropriate > port settings (security/vlan/etc) based on recognition of user, computer, or > both and then computer health for non-campus managed computers. > > > > > > _________________________ > > Thank you, > > Gregory R. Scholz > > Director of Telecommunications > > Information Technology Group > > Keene State College > > (603)358-2070 > > > > --Lead, follow, or get out of the way. > > (author unknown) > > > > > > -----Original Message----- > From: Lee Badman [mailto:[EMAIL PROTECTED] > Sent: Monday, February 26, 2007 1:04 PM > To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU > Subject: Re: [WIRELESS-LAN] wireless guest access > > Would like to expand out Kevin's question- what of wireless access for > > guests, and for the non-affiliated folks (anonymous) that might end up > > on campus? > > Anybody rethinking any of their sponsored guest/open access policies > > because of CALEA concerns? > > Regards- > > > > Lee Badman > > Network/Wireless Engineer > > Syracuse University > > 315 443-3003 > > >>> Kevin Lanning <[EMAIL PROTECTED]> 2/26/2007 12:46:48 PM >>> > > Wondering what academic institutions are doing these days regarding > > wireless access for guests? > > -- > > -- > > Kevin Lanning > > lanning at unc.edu > > ********** > > Participation and subscription information for this EDUCAUSE > > Constituent Group discussion list can be found at > > http://www.educause.edu/groups/. > > ********** > > Participation and subscription information for this EDUCAUSE Constituent > Group discussion list can be found at > http://www.educause.edu/groups/.********** Participation and subscription > information for this EDUCAUSE Constituent Group discussion list can be found > at http://www.educause.edu/groups/.********** Participation and subscription > information for this EDUCAUSE Constituent Group discussion list can be found > at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
