asked on

Secure WiFi for small business

Hi,
We are considering implimenting WiFi at our business. Although we have a small business, there is a lot of sensitive data. Questions. How would you impliment it? We have cisco asa and most of the switches here are unmanaged. Should I create a DMZ or VLAN and then try to put a home grade wireless rourter here? Are there any products out there can incorportate AD security here so only the people who are in the domain can log on? Mac address is just too much of a pain the have to check all of them. Is there a reasonable intelligent wifi hardware that can do the work. We are a windows shop but don't have enough cash or man power to impliment any thing too exensive. Thanks

jpquonce

I don't think there is anything with AD integrality as it wouldn't be able to tell if you AD unless you already logged on which would also mean they are already hooked to the wireless.

I would suggest getting a small wireless router like you were saying and set it up using WPA security. So basically the would see the network but they would need the password that you provide them to connect to it.

That would defiantly be the easiest and most secure way to do it with you setup.

nkuo

ASKER

I'm trying to aviod the single password thing. I would like to track if there are any illegal access.

Roachy1979

You need to set up an IAS server that can read AD user accounts. See http://technet.microsoft.com/en-us/library/cc780214.aspx?ppud=4

and http://technet.microsoft.com/en-us/library/cc776984.aspx

You need to source a Wireless Access Point that supports RADIUS authentication....

Hope this helps...

nkuo

ASKER

ahhhh, was hoping there is a cheaper way. doens't look like it though.

nkuo

ASKER

Anyone knows a good open source solution?

ASKER CERTIFIED SOLUTION

Roachy1979

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial