Educause Security Discussion mailing list archives

Re: Guest Wireless Access

From: jkaftan () utica edu <jkaftan () UTICA EDU>
Date: Wed, 14 Mar 2012 19:29:13 -0400

We manage this via our NAC.  We can have individuals sponsored by employees or we can do mass imports and spit out 
usernames and passwords per individual and hand them the slip of paper with their account information.

John Kaftan
Infrastructure Manager
Utica College

----- Reply message -----
From: "Ian McDonald" <iam () ST-ANDREWS AC UK>
Date: Wed, Mar 14, 2012 5:43 pm
Subject: [SECURITY] Guest Wireless Access
To: <SECURITY () LISTSERV EDUCAUSE EDU>

We have a coovachili widget setup behind a WPA-PSK, authenticating against a pre-populated directory of accounts, which 
we pre-print the psk key/usernames/passwords/terms etc into what looks like payslip stationery. We have a barcode on 
the outside, so we can track them and record what accounts are given out to which organisers, and our "local 
organisers" are "required" to keep track of who they give them out to. They nominally expire after 2 weeks from first 
use.

--
ian

________________________________
From: The EDUCAUSE Security Constituent Group Listserv [SECURITY () LISTSERV EDUCAUSE EDU] on behalf of Dave Koontz 
[dkoontz () MBC EDU]
Sent: 14 March 2012 21:32
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Guest Wireless Access

I would curious about this as well.  We've had requests for single and multiple day  events in the past which we 
managed.  However, we have several groups with no official Campus affiliation which will be living on campus this 
summer, ranging from a single week, with others groups staying up to two months.

I am also unclear how CALEA might factor into the conversations concerning open SSIDs or single credentialing for 
groups of users.   So if anyone has any insight on this aspect, it would be most appreciated!

On 3/14/2012 4:20 PM, Christopher Jones wrote:
We have a situation where we need to set up temporary wireless access for 140 guests.  This access will be limited to 
Internet only.   If it were just one or two people, we would simply create a network account for them.  For obvious 
reasons, we don’t want to do that for such a large number of temporary users.  Has anyone faced a similar issue and 
come up with a workable solution?  I would appreciate hearing from you.  Thanks.

Regards
Christopher Jones
IT Security Administrator
Information Technology Services
University of the Fraser Valley
33844 King Road
Abbotsford, B.C.  V2S 7M8
604.854.4566
Christopher.Jones () ufv ca<mailto:Christopher.Jones () ufv ca>

[Description:             UFV_Logo-Small]

Current thread:

Guest Wireless Access Christopher Jones (Mar 14)
- Re: Guest Wireless Access Russ Leathe (Mar 14)
- Re: Guest Wireless Access Rob Milman (Mar 14)
- Re: Guest Wireless Access Dave Koontz (Mar 14)
  - Re: Guest Wireless Access Ian McDonald (Mar 14)
- Re: Guest Wireless Access Greg T. Grimes (Mar 14)
- Re: Guest Wireless Access Pete Hickey (Mar 14)
- <Possible follow-ups>
- Re: Guest Wireless Access jkaftan (Mar 14)
- Guest Wireless Access Christopher Jones (Mar 15)
  - Re: Guest Wireless Access Julian Y Koh (Mar 15)