Bring Your Own Design: Implementing BYOD Without Going Broke or Crazy. Jeanette Lee Sr. Technical Marketing Engineer Ruckus Wireless

Similar documents
Enterprise Mobility with Smarter Wi-Fi

competitive Ruckus vs. Ubiquiti PRODUCT COMPARISON Ruckus Core Values Ubiquiti Core Values

Cisco Meraki Wireless Solution Comparison

What s New in ZoneFlex Software Release 9.4

1.0 Basic RF Characteristics (15%) 1.1 Describe RF signal characteristics Frequency Amplitude Phase 1.1.

SUB-TITLE WLAN Management-as-a-Service

What Is Wireless Setup

The Aruba S3500 Mobility Access Switch

Provide One Year Free Update!

Ruckus ZoneDirector 1106 WLAN Controller (up to 6 ZoneFlex Access Points)

Securing Cisco Wireless Enterprise Networks ( )

How a Unified Wired and Wireless Architecture Addresses BYOD

N300 WiFi Router with External Antennas

Ruckus ZoneDirector 3450 WLAN Controller (up to 500 ZoneFlex Access Points)

The All-in-One, Intelligent WLAN Controller

Prepare Your Network for BYOD. Meraki Webinar Series

RUCKUS CLOUD WI-FI Cloud Managed Wi-Fi

BYOD with Ruckus. Introduction. Strong Security with Dynamic Pre-Shared Key

Datasheet ac Wave 2 Enterprise Wi-Fi Access Point. Model: UAP-AC-HD. Simultaneous Dual-Band 4x4 Multi-User MIMO

NXC Series. Handbook. NXC Controllers NXC 2500/ Default Login Details. Firmware Version 5.00 Edition 19, 5/

+32 (491)

Managed Campus WiFi Networks A Brief Overview. For academic, not-for-profit use only.

AC1200 Smart WiFi Router - Dual Band Gigabit

For a full description of Wi-Fi Cloud features and functionality, see WatchGuard Wi-Fi Cloud Help.

MR Cloud Managed Wireless Access Points

AC1200 Smart WiFi Router

VoWLAN Best Practices

Ubiquiti UniFi AC Dual-Radio Access Point with 1300Mbps / 600ft range / 24V Passive PoE

A connected workforce is a more productive workforce

AXILSPOT 2x2 MIMO Dual-Radio ac Indoor or Access ces ASC120. Uncompromising performance for high density wireless deployments.

AC1600 Smart WiFi Router - Dual Band Gigabit

TITLE GOES HERE RUCKUS CLOUDPATH ENROLLMENT SYSTEM. The only integrated security and policy management platform that delivers: COMPRISED OF:

Cisco Meraki Overview. March 21, 2017

cnmaestro Cloud Beta Guide

OmniAccess Stellar Refresh. Mauro Rizzi

Wireless Survey, Analysis, and Deployment Example

Networking Solutions for Mobile Era. Amit Sanyal Director, Product Management

BYOD: BRING YOUR OWN DEVICE.

Your wireless network

Datasheet. Quad-Radio ac Wave 2 Access Point with Dedicated Security Radio. Model: UAP-XG

AIRPLAY AND AIRPRINT ON CAMPUS NETWORKS AN ARUBA AIRGROUP SOLUTION GUIDE

Cisco Small Business 550/560 Wireless Access Points

Surviving the ipad Crush. Meraki, Inc

OWL630 OUTDOOR ACCESS POINT

Mobility First How Tomorrow Moves for Education

Cisco WAP371 Wireless-AC/N Dual Radio Access Point with Single Point Setup

AC750 Dual Band WiFi Gigabit Router

cnpilot Indoor e400 Gigabit Wi-Fi: ac dual band 2x2 Indoor access point

Case Study: Rio Rancho Public Schools

AC1750 Smart WiFi Router ac Dual Band Gigabit

AC750 Dual Band WiFi Router

Datasheet. Enterprise Wi-Fi System. Models: UAP-IW, UAP, UAP-LR, UAP-PRO, UAP-Outdoor+, UAP-Outdoor5

R6250 Smart WiFi Router - AC Dual Band Gigabit

Cisco WAP351 Wireless-N Dual Radio Access Point with 5-Port Switch

Unleashed & Cloud Wi-Fi Updates

R6250 Smart WiFi Router - AC Dual Band Gigabit

AC1200 WiFi DSL Modem Router ac Dual Band Gigabit

AC1600 WiFi Cable Modem Router

ARUBA INSTANT Combining enterprise-class Wi-Fi with unmatched affordability and configuration simplicity

MR Cloud Managed Wireless Access Points

AC750 WiFi ADSL2+ Modem Router

GWN7600/GWN7600LR Firmware Release Note

Cisco Universal Wi-Fi Solution 7.0

ITCertMaster. Safe, simple and fast. 100% Pass guarantee! IT Certification Guaranteed, The Easy Way!

MR Cloud Managed Wireless Access Points

WMS WLAN Management Solution

Enterprise WiFi System. Datasheet. Models: UAP, UAP-LR, UAP-PRO, UAP-AC, UAP-Outdoor+, UAP-Outdoor5, UAP-AC Outdoor

Systems Manager. Endpoint Management

AC1200 Smart WiFi Router

ZoneFlex 7761-CM DUAL-BAND N SMART WI-FI OUTDOOR AP WITH INTEGRATED DOCSIS 3.0 MODEM

802.11ac 3x3 Dual Band High-Powered Wireless Access Point/Client Bridge

R1: Please see attached file, or visit

N900 WiFi Dual Band Gigabit Router Premium Edition

BYOD the HP Way: Secure, Device-Agnostic Network Access Management Jochen Fischer Solution Architect (MASE) September 2013

ipads in Education: Preparing your Network for the ipads in the Classroom (and other mobile devices)

Meraki vs. Ruckus: The Reality Check

Support Device Access

Datasheet AC Dual-Radio Access Points. Models: UAP-AC-IW, UAP-AC-IW-PRO, UAP-AC-LITE, UAP-AC-LR, UAP-AC-PRO, UAP-AC-EDU

WLAN solutions to manage BYOD

Grandstream Networks, Inc. GWN76xx Wi-Fi Access Points Master/Slave Architecture Guide

Aruba Central. Tech Webinar, October 6 th Christian Dupont, Britto Jagadesh & Barath Srinivasan

A. Post-Onboarding. the device wit be assigned the BYOQ-Provision firewall role in me Aruba Controller.

ARUBA CLEARPASS POLICY MANAGER

HP Cloud-Managed Networking Solution Release Notes

ACCP-V6.2Q&As. Aruba Certified Clearpass Professional v6.2. Pass Aruba ACCP-V6.2 Exam with 100% Guarantee

2012 Cisco and/or its affiliates. All rights reserved. 1

Grandstream Networks, Inc. WP820 Wi-Fi Roaming Application Note

Enterprise WiFi System. Datasheet. Models: UAP, UAP-LR, UAP-PRO, UAP-AC, UAP-Outdoor+, UAP-Outdoor5, UAP-AC Outdoor

D6300 WiFi Modem Router - AC1600 Dual Band Gigabit

Security and Control for all Devices on the Access Network

HiveManager Local Cloud

Exam HP2-Z32 Implementing HP MSM Wireless Networks Version: 7.1 [ Total Questions: 115 ]

Omni Center Predictive Wi-Fi Assessment

Latest IT Exam Questions & Answers

Enterprise WiFi System. Datasheet. Tel: +44 (0) Fax: +44 (0)

GWN7600 Firmware Release Note IMPORTANT UPGRADING NOTE

Junivo WiFi360 Integration with Aruba Networks WiFi Infrastructure. Feb, 2017 Junivo

Technology being employed in educational institutions has fundamentally changed over the past few years and is continuing to evolve.

Cisco Wireless Release 7.6

Methodist University. Wireless Connectivity Guide. Version 1.5.0

Transcription:

Bring Your Own Design: Implementing BYOD Without Going Broke or Crazy Jeanette Lee Sr. Technical Marketing Engineer Ruckus Wireless

Taking the Scary out of BYOD

What Enterprises REALLY Want 1 2 3 4 5 6 Simple onboarding Automated enforcement of user/device policies Visibility of who and what is on the WLAN Extension of wired security to WLAN More capacity to deal with flood of devices Leverage existing infrastructure 3

What s Driving Wireless? #1 Student s Daily Lives are Media Rich Cell phone use (18 34 year olds): 91% take photos vs. 76% all adults 61% play music vs. 33% all adults 57% record a video vs. 34% all adults --- Pew Internet and American Life Project, Generations and their Gadgets, February 3, 2011. 92% of undergrads use Wi-Fi vs. 57% of all adults 59% of undergrads own a desktop PC 88% of undergrads own a laptop 93% of graduate students own a laptop --- Pew Internet and American Life Project, College Students and technology, July 19, 2011. 4

What s Driving Wireless? #2 Collaboration and Social Media Friends on Facebook Follow us on Twitter Watch our YouTube video Blog about college life Digital media libraries Video chat Network Use is Massively Increasing via Wi-Fi 5

What s Driving Wireless? #3 Instructional Enhancement Accommodates learning styles Reinforces classroom work Meets students demand Wish instructor used more often: Web-based videos 19% Video sharing sites 18% Podcasts and webcasts 17% Simulations or educational games 15% --- Grajek, S. The Current State of College Students and Technology, EDUCAUSE, 2011. 6

What s Smart Wi-Fi? Patented technology that combines Smart antenna arrays Best path selection algorithms Advanced quality of service engine Smart mesh RF routing Centralized Wi-Fi management Interference Adapts to real-time changes in environmental conditions Extends signal range (Wi-Fi coverage) 2 to 4 times with fewer APs Delivers predictable performance Radically simplifies deployment and administration 7

What s makes the difference? THEM US Fixed 1:1 relationship between Wi-Fi radios and antennas Dynamic 1:many relationship between Wi-Fi radios and antennas 8

Adaptive Antenna Completely automatic Continually picks best signal path to clients Mitigates interference Up to 10dB Signal gain Dual polarized 9

Dealing With Density Band Steering for High Capacity Environments Dual-band 802.11n Before Band Steering 5GHz 3 (18%) 2.4GHz 14 (82%) After Band Steering 5GHz 14 (82%) 2.4GHz 3 (18%) 2.4 Ghz 5.0 Ghz Steers clients to 5GHz by withholding probe and auth responses on 2.4GHz Doesn t steer clients below RSSI threshold set per WLAN Client table in each AP tracks Client probe requests per band Avg. RSSI per band over last minute Dual band support Table checked before responding to client 10

Reliable Performance Non Line of Sight Ruckus Meraki HP Cisco Aruba Apple 1 client, 100 2.4 GHz No interference 0 20 40 60 80 Downlink Mbps Beating Interference Ruckus Meraki HP Cisco Aruba Apple 1 client, 70 5 GHz Line of sight 0 20 40 60 80 Uplink Mbps 60 Clients, Bi-Directional 60 Clients, Uplink Ruckus HP Aruba Cisco Meraki Apple 0 Failed to Finish Failed to Finish 5 GHz 75% downlink 25% uplink 20 40 60 80 100 Aggregate Bi-Directional Mbps AP models: Ruckus 7363, Cisco 3500, Aruba 125, HP 460, Meraki 24, Apple Extreme. Ruckus HP Aruba Cisco Meraki Apple 0 5 GHz 20 40 60 80 100 Aggregate Uplink Mbps 11

Now what? SIMPLIFYING BYOD WITH RUCKUS

Don t Reinvent the Wheel FIREWALLS CONTENT FILTERS AAA/AD/LDAP SERVERS ACLs / VLANS 13

Defining the SSID Structure DOMAIN SSID School owned / managed devices with access to all resources: printers, applications, files shares Guest Visitor SSID Users who are not in the OUI with access only to the internet Staff and Student BYOD SSID Non-school owned / managed devices needing Internet access and specified school resources, VLAN and content filtering applied Provisioning SSID Hotspot with a walled garden attribute, redirecting all users to an activation page 14

Automating Role-Based Access DOMAIN Administrator automatically placed on VLAN W, no rate limits GUEST Allowed on via a Guest Pass, accepting terms and conditions automatically placed on VLAN Z, rate limited at 1 Mbps STAFF Staff automatically placed on VLAN X, rate limited at 5 Mbps STUDENT Student automatically placed on VLAN Y, rate limited at 1 Mbps STRANGER User does NOT have account and is denied 15

What it Looks Like WHAT HAPPENS WHEN? User Database Student Resources Staff Resources Guest Resources Internet 1. Users connect to a provisioning SSID and are re-directed to an onboarding portal. 2. Users enter domain credentials which are verified against a user database. 3. The user s role assignment and permissions are automatically determined based on authentcaion. Onboarding SSID Student SSID Staff SSID Guest SSID (hotspot) 4. Using Zero-IT, the device is auto-provisioned with a dynamic pre-shared key and dynamically assigned to the requisite WLAN. Student Staff Guest 5. Devices re-connect on a secure WLAN, receiving network permissions according to their role. New BYOD Devices Provisioned BYOD Guest 16

Key Technologies SIMPLIFYING BYOD WITH RUCKUS

Zero IT Automates Onboarding Requirement: automatic, secure authentication and roaming Enabled by SSID and authorization protocol configuration Easy-to-use Ruckus approach to push configuration Invitation Branded Landing Page One-Click Configuration Uses mobile OS autodetect and -authenticate features, not a separate connection manager app Automatic Authentication Enabled 18

D-PSK Automates Security/Config ZD applies role, generates D-PSK pushes dissolvable PROV file to device LDAP sends user security group information to ZD WLAN profile configured device, and on the WLAN based on allowed by role. 19

Client Fingerprinting Hostname: GT s iphone MAC: 50:ea:d6:7c:30:e4 Visibility Who s device is this? Self-registration Automatically registers and maintains client info on WLAN and Wired interfaces Operating System Operating System Hostname Control by device type Permit/allow Assign to VLAN Rate limit (Down/Up) Management WLAN controller or standalone WLAN dashboard Client monitor Client details 20

Device Specific Policy Enforcement Segregates trusted and untrusted devices on single SSID Simplified access rules per device Windows Windows Mobile Mac OS ios Linux Android VoIP Gaming Printers Control network access per device VLAN 20 VLAN 10 Permit/Deny Assign to VLAN Rate Limit (Down/Up) Device Policy Access Control Device Type Access VLAN Rate Limit DL UL Gaming Deny - - Windows, Mac OS, Linux Permit 20 - ios, Windows Mobile, Android Permit 10 4 Mb 1 Mb 21

BYOD How-To Guide & Videos http://www.theruckusroom.net/ Step by Step guide to configuring Ruckus BYOD 22

Questions. info@ruckuswireless.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback