In this day and age, guest wireless networks are often seen as more of a right than a privilege. Not only are they a nice convenience to visitors and contractors, but they’re also a great safety feature in keeping your day-to-day enterprise WLAN separate from visitor access. By opening your network open to non-employees you need to make sure that you take certain precautions to protect yourself against any possible vulnerabilities. Below, we’ve pulled together some of the best tips for establishing a safe and secure guest wireless network.
What to consider….
Operational Specifications: Guest wireless access offer limited capabilities compared to the full enterprise wireless network. When establishing the guest network, you should carefully consider which network capabilities will be critical for guests. While internet is usually expected in guest access, you may want to consider restricting access to certain sites. You may want to consider changing the Quality of Service level of the network as well. the last you’ll want at your office is for the guest network to take away from the strength of the primary network.
WPA2 Keys: You may want to consider investing in third-party services that automatically assign security keys on a per user basis. In this case, passwords are administered on a single use basis. This approach allows network teams to block certain individuals.
Set Access Time Limits: It’s pretty easy to establish time limits for guest passes. Login credentials for each access period should expire after a defined time period; that could be after a couple hours of non-use or after a workday.
Use Identity Management: Administrators are able to use management software that collects guest credential information. Organizations are able to gather this data to analyze guest user behavior. Identity management also facilitates the creation of multiple classes of guest users and the application of different access permissions.