Re: Public Access Library Ports (was Re: Open access to student labs

["Irene Sandler (iyao)" <iyao () CISCO COM>]

With all due respect, Cisco is not discontinuing Cisco Clean Access --
it's merely been renamed to Cisco NAC Appliance.  In fact, we released
version 4.0.4 yesterday.  Feel free to visit MU Ohio's listserv at
http://listserv.muohio.edu/archives/cleanaccess.html.
 
With best wishes for a happy new year,
 
IRENE  Y SANDLER
Cisco (formerly Perfigo)
(408) 527-9646
<mailto:isandler () cisco com>  
 
 
 -----Original Message-----
 
 From: Samuel Young [mailto:syoung () LASIERRA EDU] 
Sent: Thursday, December 21, 2006 11:40 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Public Access Library Ports (was Re: [SECURITY]
Open access to student labs

 

CALEA is the answer.  You either comply with the CALEA rules or you make

your network "private".  We have decided to make our network private as
the

other option is too expensive for us.

 

We actually allowed the Library two options to make their portion of the

network "private".

 

Option 1:  Provide all the "research oriented" URL that we will allow
the

users to go to without authentication.  We will then limit the user to
only

those URLs.

 

Option 2:  We authenticate everyone on to the network.

 

Initially, they decided on option 1.  But they soon discovered that
there

were too many websites.  So they opted of option 2.

 

If a community patron wishes to use our library computers, we will
require

them to provide some type of identification, such as driver's license,
plus

they will be required to sign our Network Usage Agreement.  After that,
we

will provide them with a temporary logon.  This logon will expire after
a

period of time.

 

Currently we have Cisco Clean Access for our authentication, but Cisco
seems

to be de-supporting the product.  So we are looking at Safe Connect,
Mirage

or Bradford Networks as an alternative.

 

God bless,

Sam Young

CIO

La Sierra University

 

-----Original Message-----

From: Valdis Kletnieks [mailto:Valdis.Kletnieks () VT EDU] 

Sent: Wednesday, December 20, 2006 9:16 PM

To: SECURITY () LISTSERV EDUCAUSE EDU

Subject: [SECURITY] Public Access Library Ports (was Re: [SECURITY] Open

access to student labs

 

On Wed, 20 Dec 2006 14:21:05 PST, Samuel Young said:

> We require our students and visitors to logon to our network
everywhere.

> There are a few computers in the library that allow public access, but
we

> are about to close that loop as well.

 

Often, librarians have cows and kittens when the network people threaten

to close that loophole (for reasons that are totally justified in their

world view).  What methods and/or reasoning did sites use to win the

political

battle (or equally interesting, did the library win)?