Avatar of sunhux
sunhux
 asked on

Policies & Management of students devices in a university Wifi/LAN


In a university/college where students bring their own laptops to the

school, what's the typical set-up for them?


Q1:

Is the college's IT Security policy applicable to the students eg:

they hv to use 2FA with the college's password policies & 

mandated to have NAC (which checks if they're patched up-

to-date with latest AV signatures) before they can connect to 

the Wifi provided by the college?


Q2:

Do we treat the students' laptops & mobiles/tablets as BYOD?

If so does, can the college's MDM be used to managed the

students' mobiles/tablets?


Q3:

In general, is a separate network (Wifi or LAN) set up for the

students (just like we treat external visitors) with a landing

page (to ensure only students & not outsiders use them) that

will send a code to their legit mobile?  I think to merge the

college's enterprise network (for staff) to students is not a

good idea if the college doesn't own the devices & esp if

can't impose the college's policies on the students' devices.


Q4:

In general, how are the more secure universities out there

doing it?  Wud be good to share as I don't have access

to a college/university anymore

Wireless NetworkingSecurityVulnerabilitiesNetwork Security

Avatar of undefined
Last Comment
btan

8/22/2022 - Mon
SOLUTION
btan

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
sunhux

ASKER

In the event a student's PC/device is infected, does AUP has
a clause that the PC/device will be barred from connecting till
the infection (esp if it's has C&C connection out) is cleared?
In our corporate, we have a dedicated Guest Wifi which often
shows guests' devices connecting to C&C but as it's  DHCP
IP, we can't narrow down which devices are those as they
stopped connecting the next hour: with tens of thousands of
students at NUS (& they're on the move), it is going to be
even harder to nail down unless it's installed with an NAC;
in our corporate, we just leave such infected guest devices
alone (but they may potentially cross infect other guests'
devices).

Lastly,  when it's convenient, can have a look at the other
thread at
 Further queries: CSRF inapplicable for system to system calls | Experts Exchange (experts-exchange.com) 
ASKER CERTIFIED SOLUTION
btan

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes