[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 232
  • Last Modified:

Need wireless solution that askes students for username and password before connecting

I am implementing a wireless solution at a school and want students to be prompted for a username and password to be able to access the wireless network. I don't really want to use WEP becuase I would like to use passwords that are easier than hex. Any ideas?

Thanks!
0
Dopher
Asked:
Dopher
1 Solution
 
herbusCommented:
If your hardware/software's capable, then you could enable WPA and base it on a pass-phrase... this will have the added benefit of being stronger than WEP (and it's asking for trouble having neither WEP nor WPA), but not requiring a lengthy hex key to be entered... at least that's my two cents before I go and collapse from lack of sleep... hope it helps!
0
 
mnb93Commented:
0
 
YingAttCommented:
If enhanced security and user authentication / identification and accessing logging are important, I suggest looking into using WAP with a backend RADIUS server providing authentication services.  Each user then can use their own username/password combination, so you know who his logging in, vice just a challange passphrase.  This can also be leveraged with the VPN option.  If you need more info, ask and we'll provide some more gouge.
Best of luck!
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
iom100ukCommented:
If you're reasonably technical you could also look at nocat (www.nocat.net) which runs on a linux gateway and does authorisation for any network. I've set up a system for my site using this recently.
0
 
divi2323Commented:
I agree with the VPN setup.

What i've done in the past is create a separate set of switches which are attached to your wireless access points.  on those switches, attach VPN servers which provide network address translation (routing) to the network you want to grant/deny access to (i.e. two network cards, one on each network).  then you control access to the other network through the vpn.  using windows server 2003, you do it using RAS policies.  they can all attach themselves to the wireless access points, but only go as far as the gateway servers unless they authenticate.  the gateway servers could also be set up for web servers to provide a help site to get them up and running.

forgive the crappy ascii art here but this is what we did:


CLIENT        CLIENT                      CLIENT
    .                  .                              .
    .                  .                              .
WIRELESS ACCESS POINT         WIRELESS ACCESS POINT
    |                                             |
    |                                             |
SWITCH-------------------------------------------------------->
        |                                     |
        |                                     |
VPN SERVER                    VPN SERVER
        |                                     |
        |                                     |
EXTERNAL NETWORK SWITCHES----------------------------->
         |
         |
THE INTERNET
0
 
DopherAuthor Commented:
Thanks for all your help. I like the VPN ideas, however my boss doesn't want that much configuration, so we are going with the WPA solution. That way, they don't need to install or configure anything on the client.
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now