Profile

Jordan Cox

Edit My Profile


My Content

1 to 12 of 12 total
Posted By Jordan Cox 11-18-2022 11:03:43 AM
Found In Egroup: Network Management
\ view thread
What are you using for IP address management (IPAM)? What do you like/dislike about it? We have been using spreadsheet lists for a while and considering changes. We have multiple sites, along with some that are air-gapped without DHCP or methods of scanning them. ------------------------------ Jordan ...
Posted By Jordan Cox 10-20-2022 09:22:12 AM
Found In Egroup: Wireless Local Area Networking
\ view thread
Thanks Jim! Getting those av-pair attributes is great. Do you have this running in production right now? My one remaining question is regarding the P2P blocking action. I'm wondering if there is a way to do that per student account vs. per PSK? The idea is multiple devices registered under one student ...
Posted By Jordan Cox 10-14-2022 02:28:41 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Quick update for those who are interested. I did find this Aruba doc showing iPSK setup in Clearpass. I'm not sure how the client isolation policy is enforced on the WLC side, or if you can dynamically setup PSK's on a per account basis. Aruba SE says it should be possible as long as you can find the ...
Posted By Jordan Cox 10-13-2022 01:13:57 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Got it. So you think we might be able to do the MPSK/IPSK with Cisco/Aruba but not the AirGroups since that is a separate WLC Bonjour service isolation? ------------------------------ Jordan Cox Network Admin II University of Northwestern, St. Paul ------------------------------
Posted By Jordan Cox 10-13-2022 01:12:35 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Hi Jeroen, Thanks for the detailed response. That's encouraging to hear it should just be finding the correct Radius attribute to send. I'm curious how your clients get their individual PSK if you're not using Clearpass/ISE? Is that handed out via Radiator as each student registers through a captive ...
Posted By Jordan Cox 10-12-2022 09:39:00 AM
Found In Egroup: Wireless Local Area Networking
\ view thread
Is anyone using Clearpass with Cisco WLC? We have Cisco WLCs and are looking at Clearpass. I'm curious if anyone has these two features working? Client network isolation based on student account for IOT devices (Clearpass AirGroups) Multi pre-shared key (Aruba term) or Identity pre-shared key ...
Posted By Jordan Cox 09-16-2022 07:53:23 AM
Found In Egroup: Wireless Local Area Networking
\ view thread
Thank you all for your detailed responses and discussion! I've learned a lot, and have a list of things I need to do more research on. This was very helpful for me and my team. The discussion confirmed my gut feelings that we are not able to accomplish our goals with the tools we have and it sparked ...
Posted By Jordan Cox 09-09-2022 03:40:35 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Ah, I see. Thanks for the clarification. SecureW2 does sound pretty slick. I'll have to look into those costs. ------------------------------ Jordan Cox Network Admin II University of Northwestern, St. Paul ------------------------------
Posted By Jordan Cox 09-09-2022 03:31:11 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Thanks for the feedback Max! Just to clarify, you mentioned using the eduroam CAT tool for onboarding (certs included?) or would you recommend using a PKI solution like one of the ones you mentioned? ------------------------------ Jordan Cox Network Admin II University of Northwestern, St. Paul --- ...
Posted By Jordan Cox 09-09-2022 03:24:03 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Thanks for the reply Hunter! I'm curious if a lot of other schools are using Clearpass. I've heard good things. ------------------------------ Jordan Cox Network Admin II University of Northwestern, St. Paul ------------------------------
Posted By Jordan Cox 09-09-2022 03:19:52 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
Hi Ryan, yes, it does look like the "answers inline" doesn't work with this new version of the list. Could you copy paste the answers to a new reply? ------------------------------ Jordan Cox Network Admin II University of Northwestern, St. Paul ------------------------------
Posted By Jordan Cox 09-09-2022 02:28:23 PM
Found In Egroup: Wireless Local Area Networking
\ view thread
We are working towards migrating our campus wireless away from open wireless with MAC auth to encrypted wireless utilizing 802.1x auth. We use a Cisco 9800 WLC with FortiNAC for MAC auth now. We have tried 802.1x through Microsoft NPS with some mixed results on the different device types. This is ...