ID Manager Bulk Create/Register a Group

  • 1
  • Question
  • Updated 3 years ago
  • Answered
As part of a new deployment project, I have been tasked with creating a network policy that utilises ID Manager to distribute Private PSK's between groups of residential students that are valid for 1 year and can be used concurrently on 5 devices. As part of the account creation process I would like the key to be emailed to the user automatically to eliminate the need for manual distribution.

However, from the testing I have carried out I cannot see an easy way of doing this, individual guest creation includes the function to be able to email the user directly, but this is time consuming. The other option would be to "bulk" import the users into ID Manager, although this seems to have a fundamental flaw by the way of key distribution. It would seem that the keys are sent to a single nominated mailbox and then have to be distributed manually (incredibly time consuming) to each user.

Is there any scope for this feature to be added to ID-Manager? or worst case scenario, is there a way around this problem?
Photo of Luke Harris

Luke Harris

  • 265 Posts
  • 18 Reply Likes
  • indifferent

Posted 3 years ago

  • 1
Photo of John Hanay

John Hanay

  • 38 Posts
  • 8 Reply Likes
ID Manager uses a self-service model for credentials. Therefore, you should allow the students to get the credentials themselves. Basically, treat the students as guests.

If you are using ID Manager's Employee Sponsorship feature, then you can have them authenticate using AD/Radius credentials to identify themselves to the system and present the Guest Types they are allowed to use. You will need to mark the Guest Type for employee sponsorship.

We also recently released a new feature for universities where the students can connect to an Open SSID and authenticate using AD to the CWP and receive a PPSK. In a forthcoming release, we will allow the expired PPSK to authenticate and the student can renew the PPSK at the CWP.
Photo of Luke Harris

Luke Harris

  • 265 Posts
  • 18 Reply Likes
John, the current mindset is that by automating the process for initial authentication (process only takes place once per academic year) will lessen the risk of students using false credentials in order to get their PPSK's, which from experience is highly likely given the issues they've presented us with already!
(Edited)