Best Way to Authenticate Employee Mobile Devices

  • 1
  • Question
  • Updated 4 years ago
  • Answered
Authenticating mobile devices
Hi,
We are currently moving to the aerohive solution for our wireless, and are playing around with different configurations. For our corp assets we setup 8021.1x and all is working fine. The problem I am running into is what to do with our employees mobile devices. With the cisco solution we use mac filtering and a PSK, our policy is that only mobile devices can attach to the mobile network not personal laptops. Does anyone have a good solution for this other than replicating what we were doing with the cisco solution?
Photo of cnnr

cnnr

  • 1 Post
  • 0 Reply Likes

Posted 4 years ago

  • 1
Photo of Crowdie

Crowdie, Champ

  • 972 Posts
  • 272 Reply Likes
You can use two Aerohive functions to achieve what you want:

1. Private PSKs
Private PSKs are like the PSK you already use but are unique to each client. So two different clients would connect to the same SSID using different PSKs. You can limit the number of concurrent connections using the same PPSK.

2. Client Classifiers
Once a wireless client authenticates it sends out a DHCP Request and the Aerohive wireless network uses that DHCP Request to identify the wireless client's operating system. You can then set client classifier rules to drop OS X and Windows wireless clients.