I am working on a new wireless system and would like to hear some suggestions on authentication methods for our situation. For a smallish environment, we have some complications which make it more complex than normal. Example: We have boarding students, some of which need limited hours of access and will devices of different types.
Domain Devices: Windows and OS/X both have computer (and user) accounts in AD. Need both domain and internet access. School owned, non domain devices: Ipad/Ipod (can they be bound to a domain?) Private Devices: Boarders bring in private laptops, devices, etc not bound to the domain. (Internet Only) Guests: Short term devices/laptops for guest usage, Hours of usage: One significant issue is the majority of devices need to be locked out of internet usage after midnight. BUT there is a subset of the above devices/users who get internet access after midnight. Maybe this should be handled at the firewall? We are using a Ruckus ZD3000 as our controller. Seems like Radius would fit the "domain Devices" and handle the hours of usage? Separate SSIDs with MAC authentication? DPSK per device? Etc. Any suggestions would be appreciated, Bob Williamson Network Administrator Annie Wright Schools | 827 N Tacoma Ave, Tacoma, WA 98403 | www.aw.org D: +1.253.284.5465 | F: +1.253.572.3616 | [email protected] Annie Wright's strong community cultivates individual learners to become well-educated, creative, and responsible citizens for a global society. [cid:[email protected]]<http://www.aw.org/> [cid:[email protected]] <http://www.facebook.com/AnneWrighSchool> [cid:[email protected]] <http://twitter.com/#!/AnnieWright1884> ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
<<inline: image002.png>>
<<inline: image003.png>>
<<inline: image004.png>>
