Using Wireless
- Login Instructions
- Setup Guides
- Guest Access
- Securing Your Data
- Wireless Cards & Drivers
- Troubleshooting
The Office of Information Technology (OIT) is standardizing on a single wireless platform in order to offer seamless wireless service across the Twin Cities and Rochester campuses, as well as Extension Services and Research Outreach Center sites across the state. Although the 802.11 protocol is unlicensed and must tolerate interfering broadcasts (such as Bluetooth devices and microwave ovens), OIT is managing and in control of the airwaves in the new system. Any Access Points (APs) deployed and managed by private LAN administrators (PLAs) are being replaced with OIT-controlled APs. Rogue APs are tracked and disabled as needed. The definition of a rogue AP is any AP connected to the University network not under the control of OIT.
OIT is currently using next-generation 802.11N APs, which are designed to increase wireless network speeds. Initial data rates could be in the 70-100 Mbps range, with data rates climbing over time to the 150-300 Mbps range. These numbers are peak speed rates. An end user’s experience varies in more populated areas because wireless is a shared medium.
New system APs provide backward compatibility and support for legacy 802.11 a/b/g clients.
The wireless network supports devices such as laptops, PDAs, cellular phones, and other specialized wireless devices. Some cases may require higher density AP deployment in order to work properly. An example of this is wireless voice over IP (VOIP).
OIT uses system-wide SSIDs across campus. The first SSID, "UofM," replicates the legacy "U of M Wireless" SSID by providing authenticated but unencrypted access. A second SSID called "UofM Secure" offers WPA2 encryption. The third, called "UofM Guest," which provides unencrypted access, is available to guests of the University. The fourth SSID called "UofM Simple" is an unadvertised service which offers MAC address authentication for devices which are unable to authenticate to the wireless network.
The wireless system enables OIT to define localized or non-broadcast SSIDs in order to support site-specific or single-purpose wireless applications that require segmentation from the general-purpose end-user SSIDs. In extremely rare cases, OIT grants requests to deploy new SSIDs. There must be a business case and complete review by OIT for any special SSIDs due to their limited number. OIT does not consider requests which would replicate an existing service.
Access to the wireless network for students and staff requires central authentication based on Internet ID (X500). In addition, encrypted access to the wireless network using 802.1X technology is available for added security. The system also supports VPN pass through.
Authorized network administrators are able to define guest user accounts for wireless network access in Service Gateway. Visitors to campus may also use the "UofM Guest" SSID.
Un-authenticated and severely limited network access is possible through the use of a "walled garden" approach where needed. For example, wireless network access to library catalogs could be open to any user while at the same time locking down and restricting any other wireless access to un-authenticated users.
Where there is a temporary need for network access, point-to-point wireless service can be deployed on a case-by-case basis. Also, in cases where there is no wired access and end users do not require high bandwidth network applications, it is possible to set up wireless-only network access.
The wireless network is capable of supporting limited voice. Wide-ranging support for voice applications requires high-density AP deployment.
Power over Ethernet (POE) or inline power injectors are used to power APs. Power injectors are placed in closets to provide power for the APs in user areas.
The wireless network is not a life-critical network. It is not appropriate for any life-critical applications to rely solely on the wireless network. Any life-critical applications must have appropriate alternate means of support such as when wireless service is not available.
The wireless network is designed to run 24/7, but not all elements of the system trigger immediate support if there is an overnight or weekend hardware or system failure. High impact failures at the core node level require and receive immediate attention. However, the failure of a single AP outside of normal business hours does not necessarily require immediate service. If an AP fails during the evening or weekend and it is not accessible or does not impact service for a large number of people, it is not repaired until normal business hours resume.
Outside locations are added as needed on a case-by-case basis.
The nature of the 802.11 standard and basic laws of physics place limits on wireless networks. Physical impediments such as thick walls, metal structures, and trees all interfere with radio wave propagation and thus cut down the range of system APs. There are some areas where coverage is spotty or difficult. OIT makes every reasonable effort to augment and tune wireless coverage as needed. However, in some cases it may be more feasible to use wired etherjack service instead of wireless.