Current Issue
March/April 2013
EDUCAUSE Review
Annual Conference
October 15–18, 2013
Save the date!
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
EDUCAUSE Institute
Leadership/Management Programs
Explore More
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
This EDUCAUSE constituent group addresses all forms of wireless local area networking in the unlicensed spectrum, focusing on issues pertaining to 802.11x as well as emerging broadband and high–speed technologies. Topics of interest include authentication, authorization, roaming, IEEE standards, vendor interoperability and bugs, scalability, RF site surveys, and RF congestion and interference in the ISM/U–NII band. This group meets at the EDUCAUSE annual conference and uses the electronic discussion list to discuss issues throughout the year.
All participants must follow the Participation Guidelines.
If you have questions or concerns about this listserv, please e-mail cg@educause.edu.
Bruce,
Are the clients matching different policies on the ACS server depending on what wireless system they are connected to? If so each policy may be using a different certificate and freaking out the Apple clients when they cross systems.
Jason
Jason Todd
Network Security Officer
Western University of Health Sciences
We have a mix of different APs – 422s, 522s, 82s, and 532s. We’re running MSS 8.0.1 (which has issues with the 82s, but that’s another issue). I haven’t opened a case with Juniper yet, as I’m still gathering the information about the problem.
We’re using PacketFence (which wraps FreeRADUS).
Thomas Carter
Network and Operations Manager
Austin College
903-813-2564
From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Daniel Westacott
Sent: Monday, April 22, 2013 2:50 PM
To: ...
Our wireless network consists of a two Cisco wireless controller, 240 APs and we use Cisco ACS 5.2 as our RADIUS server. One of our wireless networks is configured to use WPA/WPA2 with 802.1x and PEAP w/ MSCHAP v2. After updating the server certificate on the ACS, our wireless users were asked to verify or validate the server certificate before gaining access to the wireless network. This requirement generates numerous helpdesk tickets and many more questions as to why the users must do this, when they don’t have to do it on any other wireless network. I have asked Cisco for assistance but they informed me that what we are seeing is the normal behavior for the wireless supplicants and that the user must manually verify the authentication server certificate when a wireless profile is created for the first time or after the server certificate is changed on the ACS.
...
I was wondering if anyone was doing an on-campus streaming portal and how it impacted the wireless network. Right now we are doing 100MB out to the APs and I am concerned that if the university decided to offer this service we would need to upgrade to 1GB to the APs. I was wondering what the experience has been for someone who has already implemented something like this (we are looking at Resident Select).
Any feedback would be greatly appreciated.
Thanks,
Don Sullivan
Network Administrator | Office: 205.726.2111 | email: dsullivan@samford.edu
I was reviewing a presentation on high density deployments from Sept of last year and thought everyone might like to have it. It is playable via Cisco WebEx. It was a Cisco sponsored event and Cisco equipment used, but there is good info from engineers out in the field rather than just a sales pitch.
David Rutledge
Network Engineer
University of Kentucky
Has anyone seen any issues with a Nook HD connecting to a WPA2-enterprise ssid? Specifically it will let me put in username and password but as soon as I click connect it starts a reboot cycle on the device. The Nook HD can connect to an open ssid as well as a PSK. I can get other models of Nook (Color) on the same ssid no problem. I have seen this same issue on 3 Nook HD’s on my campus.
Model # BNTV400
Software version: 2.0.6
Thanks
Trent
Trenton Hurt, CWNA, CWSP, CCNP(W), CCNA(W), CCNA(V), CCNA(R/S)
Wireless Network Administrator
...We have the same issue, especially with HP printers as previously noted. It is a time wasting process to hunt them down and shut down the wireless. Our issue is students not even realizing that their printer has wireless or is interfering with the wireless signal. All the communication in the world won’t help if students don’t realize their printer is impacting the signal for others.
I suspect a number of us are hoping someone has a better solution.
Thomas Carter
Network and Operations Manager
Austin College
903-813-2564
I would like to improve our ability to accurately locate rogue wireless access points or clients. With non-directional methods, we can narrow it down to a general area; for example, maybe one of 4 rooms in a residential hall. However I would like to be able to narrow it down with much more certainty.
What methods are others using for this? The Fluke AirCheck with directional antenna seems to do the job well, but with the usual Fluke price tag. Is anyone using anything cheaper or homegrown? Any experience with USB adapters with directional antennas?
Thanks,
Thomas Carter
Network and Operations Manager
Austin College
903-813-2564
Hello,
In a wireless campus network, it happens that stolen devices reappear.
This subject has been already addressed on Educause in 2008:
http://listserv.educause.edu/cgi-bin/wa.exe?A2=ind0812&L=WIRELESS-LAN&T=0&F=&S=&P=37407
and in 2010:
http://seclists.org/educause/2010/q3/176
I am wondering if progress was made on this topic in the last years.
In particular...
I'm a little fuzzy on the specifics things to request from Apple, but here is a first pass):
Whereas, we the undersigned academic and research institutions are receiving numerous requests from our faculty, staff, and students for the ability to utilize Airplay technology in classrooms, conference rooms, and other locations, hereby solemnly request that Apple provide support for Airplay technology in enterprise wireless networks.
Specifically, we request the following (in order of priority):
Hello,
I am looking for anyone who has moved to wireless only dorms. We have fast track dorm construction project that is starting and our CIO would like to make it wireless only. I am wondering if anyone has done this and if so what kind of advice or comments can you share. We will be using Cisco waps. Also I am wondering what kind of ratio you based your access points on, how many devises per person.
Best Regards,
Sara
Sara M. Laird
Network Administrator
Mount Saint Mary's University
301.447.5014
Faith t Discovery t Leadership t Community
I’m curious if anyone has gotten Windows 8 devices configured for 1x, using Xpressconnect. I realize there are lots of issues with
Windows 8 drivers that make this complicated, so I’m just wondering how it is working when the drivers are capable.
Thanks,
Pete Morrissey
We are a small(ish) boarding school (K-12) with around 100 boarders. We are located in a residential neighborhood with a lot of homes very close to the school. Management wants an SSID for guests which does not require a password. My corporate reaction is “that is crazy”. My secondary/new to academia reaction is “why not”.
If the guests network is completely separated from the internal network, severely limited in bandwidth, web filtered, protocol/applications blocked etc. Who cares? The only potential issue I could see is web filtering can’t stop everything.
Then there is the whole question of how to handle “personal devices” for staff and students. Any thought on that would be appreciated as well. Thinking of hidden SSID (simply to make it...
A question for folks with relatively large 802.1x (greater than 15,000 unique clients) wi-fi deployment (EAP-TTLS) with a FreeRADIUS infrastructure using Kerberos as the backend authentication …..
- how many FreeRADIUS servers do you deploy?, and
- have you changed any of the default eap.con/radius.conf performance parameters/values?
The good news is that we've started the year with a lot more folks finally using the 802.1x network than the last academic year.
The bad news is that we're getting long delays in connecting/authenticating -- not just a wireless issue as we're also getting lots of "RADIUS server FAILED" traps from our VPN concentrators throughout the day since the semester started (using the same RADIUS servers as the 1x wireless deployment)
...Folks,
Those interested seem to agree that we’d discuss specific pain points regarding “those other” Apple devices like AppleTv and any AirPlay/Bonjour-dependent gadgets until Friday, at which point we’d firm up the petition and find a place to host it. Then would come signatures, and ultimately presenting it to Apple, possibly via each of our Apple reps.
Neil Johnson has started the companion Facebook group, and has drafted the early version of what everyone appears to want from Apple development in petition form at https://www.facebook.com/groups/enterpriseairplay with 72 members joining thus far. (Thanks, Neil)
We have at least one CIO interested, and interested in...
Hi,
I’m forwarding this from a colleague in the UK which looks rather serious.
I’ve not yet read it through but found it so urgent that I’ll forward it right away.
Cheers
Anders Nilsson
Umeå university
SUNET Sweden
From: "Paul Hill (phill)" <phill@CISCO.COM>
Subject: Advance notice: Microsoft Windows 8 and Cisco centralised wireless incompatibility.
Date: August 29, 2012 21:22:20 GMT+02:00
To: ...
I would like to know if anyone is having an issue with a lot of disconnection for Mac computers with OS versions 10.5 and up. We are an Aruba deployment (M3 controllers and AP-105s/125s). For the past 3 weeks we have seen a high amount of disconnections where about 90% have been tracked Apple notebooks with the latest OS versions. I’d be grateful to hear if anyone one is having, of has had the same issue recently, and any possible recommendations to address the issues.
HERNAN LONDONO
Associate CIO
Barry University
Current Issue
March/April 2013
EDUCAUSE Review
Annual Conference
October 15–18, 2013
Save the date!
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
EDUCAUSE Institute
Leadership/Management Programs
Explore More
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
