Differences

This shows you the differences between two versions of the page.

--- technical:ppsk-overview [2022/10/20 21:21]
admin [Advantages]
+++ technical:ppsk-overview [2022/10/21 13:37] (current)
admin
@@ Line 17: / Line 17: @@
   * This allows clients to securely authenticate and join the network using a **specific device and PSK combination**.
   * This enhances security and deployment flexibility for headless IoT devices.
-  * RADIUSdesk is used to manage the device and PSK matching.
+  * Optional dynamic VLAN assignment further enhances the security and manageability.
-  * A PSK on the device owner's profile is the most generig solution.
+  * RADIUSdesk is used to centrally manage device and PSK matching.
+  * A PSK on the device owner's profile is the most generic solution.
   * A more granular option will be a PSK on the device owner.
   * Finally there is an option for a PSK on the device itself.
-  * The same SSID supports all these features.
+  * Other features included with RADIUSdesk are available also to use:
-  * Using a single SSID improves bandwidth utilization and provides a simplified user experience.
+        * Future date activation.
+        * Expiry date.
+        * Time slots when the network can be used by the device.
+  * One SSID can support all these features.
+  * Using one SSID improves bandwidth utilization and provides a simplified user experience.
+  * The easy to use on-boarding Captive Portal minimize support calls.
@@ Line 30: / Line 36: @@
 ==== Small deployments ====
+{{:technical:psk:privatepsk.png?nolink|}}
   * In a small deployment you need a minimum of one Access Point.
+  * Private PSK is also supported in the mesh networks managed by MESHdesk.
   * You don't need any VLAN aware equipment, the VLAN assignment will be internal.
   * You will typically have:
@@ Line 40: / Line 48: @@
   * Includes small offices or home deployments
-==== Large deployments ====
+==== Large deployments  (MDU - Multi-dwelling building, Apartments, Hotels. etc) ====
-  * With large deployments you can potentially have hundreds of Access Points all centrally managed using MESHdesk and APdesk.
+{{:technical:psk:privatepsk_large.png?nolink|}}
+  * With large deployments you can potentially have thousands of Access Points all centrally managed using MESHdesk and APdesk.
   * These deployments will include working together with other components to provide an integrated solution.
   * You will typically have
@@ Line 50: / Line 59: @@
   * Includes Multiple Dwelling Units (MDU), Schools, hotels and conference facilities and WiFi networks with IOT devices.
-==== Why not 802.1x? ====
+<WRAP center round info 100%>
+  * You might have noticed that the Access Points in the picture are the Aruba AP105.
+  * RADIUSdesk provides a solution for networking and does not sell hardware.
+  * The Aruba AP105 along with many other older and current hardware are supported by OpenWrt and can thus be used in your deployment.
+  * No vendor lock-in :-)
+</WRAP>
+===== Why not 802.1x? =====
   * WPA2 Enterprise are definitely more secure but there are two issues which usually turn people off from implementing it.
   * Certificate management. The Certificate Authority (CA)'s certificate needs to be installed on the client connecting.
@@ Line 56: / Line 73: @@
         * Many IOT devices do not support WPA2-Enterprise
         * Many printers and WiFi cameras do not support WPA2-Enterprise.
+  * RADIUSdesk along with MESHdesk and APdesk however also offer WPA2 Enterprise support should you wish to rather implement it instead of Private PSK.

RADIUSdesk

Page Tools

Site Tools

User Tools

Differences