Security

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

Original Message:
Sent: 7/12/2022 9:15:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

Got it.  When you say "We do not want to use a portal per management" Do you mean for guest users/endpoints?  Or for creating the actual MPSK credentials? The hardest part about MPSK is always the management overhead of the solution.
Original Message:
Sent: Jul 12, 2022 09:34 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Greetings,

We have been mandated to mirror the setup of another vendor that we have onsite. The other vendor allows the creation of PPSKs manually and we provide that list of PPSKs to locations to hand out/track to users. Management has set the requirement to not use the portal. 

We will not be using OWE.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 9:15:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

Original Message:
Sent: 7/12/2022 10:44:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Got it.  When you say "We do not want to use a portal per management" Do you mean for guest users/endpoints?  Or for creating the actual MPSK credentials? The hardest part about MPSK is always the management overhead of the solution.
Original Message:
Sent: Jul 12, 2022 09:34 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Greetings,

We have been mandated to mirror the setup of another vendor that we have onsite. The other vendor allows the creation of PPSKs manually and we provide that list of PPSKs to locations to hand out/track to users. Management has set the requirement to not use the portal. 

We will not be using OWE.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 9:15:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

You must discuss with your management because MPSK is OK for IoT but if you want to use it with Smartphones or Tablets (both Android or iOS)

they now implement MAC Randomization by default and MPSK is based on the MAC of the device

Original Message:
Sent: Jul 12, 2022 11:06 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

The guidelines provided, by management, says no captive portal for end users. They want 100% of the MPSKs created by the network team and provided to locations via a spreadsheet.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 10:44:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Got it.  When you say "We do not want to use a portal per management" Do you mean for guest users/endpoints?  Or for creating the actual MPSK credentials? The hardest part about MPSK is always the management overhead of the solution.
Original Message:
Sent: Jul 12, 2022 09:34 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Greetings,

We have been mandated to mirror the setup of another vendor that we have onsite. The other vendor allows the creation of PPSKs manually and we provide that list of PPSKs to locations to hand out/track to users. Management has set the requirement to not use the portal. 

We will not be using OWE.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 9:15:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks

This is a fantastic point^  I would also push your management on the amount of time this will take the network team to manage.
Original Message:
Sent: Jul 12, 2022 11:15 AM
From: Christian Chautems
Subject: MPSK - CPPM Simple setup for using MPSK

You must discuss with your management because MPSK is OK for IoT but if you want to use it with Smartphones or Tablets (both Android or iOS)

they now implement MAC Randomization by default and MPSK is based on the MAC of the device

Original Message:
Sent: Jul 12, 2022 11:06 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

The guidelines provided, by management, says no captive portal for end users. They want 100% of the MPSKs created by the network team and provided to locations via a spreadsheet.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 10:44:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Got it.  When you say "We do not want to use a portal per management" Do you mean for guest users/endpoints?  Or for creating the actual MPSK credentials? The hardest part about MPSK is always the management overhead of the solution.
Original Message:
Sent: Jul 12, 2022 09:34 AM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Greetings,

We have been mandated to mirror the setup of another vendor that we have onsite. The other vendor allows the creation of PPSKs manually and we provide that list of PPSKs to locations to hand out/track to users. Management has set the requirement to not use the portal. 

We will not be using OWE.

Thanks

This message originated from Carteret County Public Schools. This email is for the sole use of the individual or entity to whom it has been addressed.  If you are neither the intended recipient, nor an agent responsible for delivering this email to the intended recipient, any disclosure, re-transmission, copying, or taking action in reliance upon the message contained herein is strictly prohibited.  If you have received this email in error, you should notify the sender immediately. All e-mail correspondence to and from this address is subject to the North Carolina Public Records Law as defined under N.C.G.S. §132.1, which may result in monitoring and disclosure to third parties, including law enforcement and the media.

Original Message:
Sent: 7/12/2022 9:15:00 AM
From: ahollifield
Subject: RE: MPSK - CPPM Simple setup for using MPSK

Portal is the only real way to keep this manageable.  Otherwise its 100% a manual process.  What is your use-case for MPSK for guests?  Any reason not to use "normal" guest portals?  Along with OWE?
Original Message:
Sent: Jul 11, 2022 02:34 PM
From: Eric Hale
Subject: MPSK - CPPM Simple setup for using MPSK

Hello,

     We are currently using Aruba Clearpass and Aruba Central to manage our wireless networks. We are looking for a way to create MPSK codes to hand out as requests to connect to our Guest network come in. We do not want to use a portal per management.

     Does anyone know how to configure CPPM for this type of setup?

Many thanks