Manualshelf

Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
21222324252627282930
28 | W-ClearPass Guest Overview Dell Networking W-ClearPass Guest 6.6 | User Guide
Security Policy Considerations
To ensure that your network remains secure, decisions have to be made regarding guest access:
l Do you wish to segregate guest access? Do you want a different VLAN, or different physical network
infrastructure to be used by your guests?
l What resources are you going to make available to guests (for example, type of network access; permitted
times of day; bandwidth allocation)?
l Will guest access be separated into different roles? If so, what roles are needed?
l How will you prioritize traffic on the network to differentiate quality of service for guest accounts and non-
guest accounts?
l What will be the password format for guest accounts? Will you be changing this format on a regular basis?
l What requirements will you place on the shared secret, between NAS and the RADIUS server to ensure
network security is not compromised?
l What IP address ranges will operators be using to access the server?
l Should HTTPS be required in order to access the visitor management server?
AirGroup Deployment Process
AirGroup allows users to register their personal mobile devices on the local network and define a group of
friends or associates who are allowed to share them. You use W-ClearPass Guest to define AirGroup
administrators and operators. AirGroup administrators can then use W-ClearPass Guest to register and
manage an organization’s shared devices and configure access according to username, role, location, or time.
AirGroup operators (end users) can use W-ClearPass Guest to register their personal devices and define the
group who can share them.
Table 6 summarizes the steps for configuring AirGroup functionality in W-ClearPass Guest. Details for these
steps are provided in the relevant sections of this Guide. This table does not include the configuration steps
performed in W-ClearPass Policy Manager or the W-Series controller. For complete AirGroup deployment
information, refer to the AirGroup sections in the Dell Networking W-Series ArubaOS User Guide and the
W-ClearPass Policy Manager documentation.
Step Section in this Guide
Create AirGroup administrators "Creating a New Operator" on page 680
Create AirGroup operators
Configure an operator’s device limit "Configuring AirGroup Operator Device Limit" on page 679
Configure an AirGroup controller "AirGroup Controllers" on page 537
Enable support for dynamic notifications "Configuring AirGroup Services" on page 638
To authenticate AirGroup users via LDAP:
Define the LDAP server
Define appropriate translation rules
"External Operator Authentication" on page 681
"LDAP Translation Rules" on page 691
Table 6: Summary of AirGroup Configuration Steps in W-ClearPass Guest