Special Purpose Access Points

Version 3

 

The following are the minimal guidelines that govern the implementation of isolated or EDU-based access points.  Added security may be required, based upon the nature of the connection.

 

  1. All wireless access points must be registered with the campus ETU and Central Networking and Telecommunications.  Individual departments may not install access points whether these are connected to the college network or not.  Departments wishing to setup a wireless capability within labs or class spaces should work with their campus ETU.

 

    1. Registration of access points requires an identification of the name, position, office, telephone and username of the person responsible for the device, along with the manufacturer, model and serial number of the device itself.  In addition:

                                    i.      The responsible party also needs to register the user and MAC address of the wireless devices connecting to the access point.

                                    ii.      Or, for Anonymous Groups, register the MAC address of the wireless devices connecting to the access port and keep a list of users of the devices on an ad-hoc basis.   

 

  1. All access points that connect to the college’s network must meet the College Wireless Equipment Specifications.  The college supports three standards of wireless networks: 802.11a, 802.11b, and Symbol Technologies 2Mb proprietary protocol.

 

    1. Additional security and management features (for example, encryption) may be required based upon the protocol in use by the access point.
    2. The configuration of the Access Point must be reviewed by Central Networking and Telecommunications to insure co-habitation within the EDU Data Network and within the RF channel allocations for the space.

 

  1. Access points must be behind a department router (ex. LinkSys or equivalent) for DHCP/NAT and use MAC access lists for device verification. 

 

    1. Access point security must be in place to limit access to devices registered for that location.
    2. Routing for devices will be restricted to specific servers for access points that do not support user name/password authentication.
    3. The server is required to log access point connections including date/timestamp, user, traffic transmitted/received and protocols used.
    4. Servers that do not meet the requirements in 2.c will not be permitted to forward traffic from the wireless network to the College EDU network.
    5. A 10Mbps EDU Data Network connection per router will be provided by Central Networking and Telecommunications. However, the actual throughput/bandwidth allocated to the segment may be further limited based on the demands by traffic within the College network.