In the past few years, the University of Cincinnati has implemented an enterprise class wireless network consisting of nearly 700 access points with over 5,000 registered wireless users. As this network grows, it will include more on-campus coverage as well as the campus edge included with the implementation of the Uptown wireless mesh network.

From the original implementation of 802.11b technology which provided wireless speeds of 2mb, to the new standard of 802.11n technology, which provides speeds up to 300mb, UCIT has been consistent in advancing wireless technologies in the network as these technologies have become universally available. 

Initially, the wireless network security relied on a Service Set Identifier (SSID) and a wired equivalent privacy (WEP) key, along with mac address filtering. The SSID makes it easy for users to see the network and associate to an access point. The mac address is the wireless card’s hard-coded identifier. The WEP key is an encryption key that encrypts the data sent over the air. Initially, the WEP key was a 40-bit key, the standard at that time. The standard evolved to a 104-bit key, providing a higher level of security. 

The Institute of Electrical and Electronics Engineers developed new standards to enhance wireless security. This new level of security, known as 802.11i or WPA2, breaks away from  using SSID’s and WEP keys to authenticate onto a network and relies on the wireless client’s ability to authenticate onto a network with a username and password and then encrypts the data with a higher Advanced Encryption Standard (AES). 

UCIT enabled the new WPA2 wireless security standard on all access points as of January, 2008. WPA2 users do not need to register their wireless mac address as they did for the legacy wireless network, but simply need to user their Central Login Credentials to gain access to the wireless network. It is recommended that all new wireless devices support the WPA2 enterprise standard. UCIT will monitor the legacy wireless network to determine the number of users still connected and the feasibility of maintaining dual networks. The legacy network will stay in place until data supports shutting it off.

Users wishing to implement WPA2 must have a supplicant on their wireless device that supports 802.1x.  Windows XP and Vista natively support 802.1x authentication, as well as MAC OS X 10.3 and above.  Versions of 802.1x are readily available for download for Linux devices.  Users will need to follow the detailed directions posted on the UCIT web page to configure their 802.1x supplicant for access to the wireless network.

Instructions for new WPA2 can be found here.

The current wireless LAN environment at UC is 802.11N compliant. The 802.11N standard allows for data transmission between the client device and wireless access point at speeds up to 300MB. When signal strength diminishes due to distance or interference between the workstation and access point, lower transmission speeds are supported. The 802.11N standard is backwards compatible with client devices that only support 802.11g or 802.11a and will support these devices at the lower transmission rate. The 802.11N access point connects to the UC network via 1 Gb Ethernet connection. 

Complete a request through GetIT for a wireless installation cost estimate, UCIT will perform a site survey to determine the number and placement of wireless access points, antenna types, etc. In order to provide an accurate cost estimate and provide optimum performance for your area, UCIT will need to know the exact area(s) that is/are desired to be covered as well as the estimated number of simultaneous users within each area(s). For example, a "normal" installation in a classroom with one Access Point would cost approximately $1,200. This includes UCIT site survey, access point, antenna, "normal" data jack installation and access point configuration and "normal" installation. Building construction may have an impact on the installation costs, and can only be accurately estimated after the site survey. Any external installation requiring conduit runs will need to have a cost estimate for the conduit installation from the UC electricians. There is an additional $75 per month ongoing charge for the switch port to which the access point is connected.

It should be noted that a standard has been set for wireless installations on campus as well as channel assignments for the wireless access points. In order to avoid interference between access points and possible incompatibilities, UCIT must coordinate all wireless installations. UCIT is only capable of supporting and troubleshooting wireless hardware that is listed in the Telecommunications Standards document. All future access point installations will be of the 802.11N type. See sections 8.1.6 and 13.9.1 for more details on supported hardware.

University of Cincinnati Information Technologies (UCIT) has been given primary responsibility for the design, installation, and operation of the wireless network environment on the UC Campus. This system will allow campus users to access all campus information technology resources from mobile or portable computers. However, in order to achieve a robust and stable wireless infrastructure and prevent unintended interference to FCC licensed services, UCIT must maintain administrative control of the radio frequency spectrum that wireless devices utilize as their base transport mechanism.

802.11b/g/a/n wireless local area networking uses the FCC unlicensed 2.4 GHz and 5GHz bands. Certain other "wireless" devices exist in the market place that also employ the same frequency bands and can cause interference to users of the wireless service. These devices include, but are not limited to other wireless LAN devices, cordless telephones, cameras, microwaves, and audio speakers.

In order to assure the highest level of service to the users of wireless network, UCIT needs help from all members of the campus community in minimizing the potential interference from those devices. UCIT requests that use of all other 2.4 GHz and 5GHz devices be discontinued in university-owned buildings. In cases where the device is being used for a specific teaching or research application, UCIT requests that the college, department, researcher or faculty member work with UCIT to determine the priority and whether there are circumstances under which use of the device may still be accommodated without causing interference to the installed wireless community. Through channel frequency coordination with UCIT, it is possible that most devices operating in the same frequency ranges can be accommodated on campus in fixed locations. Where interference issues cannot be resolved working with UCIT, the college and Provost Offices will determine the priority. UCIT's role is to assist those involved by providing the options available for resolution of the interference issues in such cases.

UCIT will approach the shared use of the 2.4 GHz and 5GHz radio frequencies in the same way that it manages the shared use of the wired network. While it will not actively monitor use of the airspace for potential interfering devices, we will seek out the user of a specific device should we find it causing harmful interference to the campus network or other FCC licensed service. In these cases, UCIT reserves the right to restrict the use of all FCC licensed Part 15 ISM and U-NII devices in university-owned buildings and all outdoor spaces on the UC Main Campus. See the UC General Policy on the Use of Information Technology for information on the campus computing policies, including those related to responsible use of shared resources, such as the campus airspace in this case.

If you think you have an existing system that may use 2.4 GHz or 5GHz radios for transmission or you are planning to purchase a wireless system and you are uncertain if it employs 2.4 or 5 GHz radios, please contact the UCIT Help Desk at 556-3785 or send mail to noc@uc.edu. The Help Desk can assist in determining if such devices will cause interference to the wireless network.

All new external, internal and USB wireless cards must have WPA2 Enterprise certification. It is also recommended that all new wireless cards support a/b/g/N. 

UCIT recommends that you download the latest version of the software for your wireless card, so that you have the latest drivers and bug fixes.

UCIT supports the technology required for wireless installations. However, users should note that this technology is not as mature or fault tolerant as the equipment used with the wired network. Users are advised to take this into consideration when determining which solution is best to meet their business needs.

UCIT is evaluating wireless network management tools to improve the level of support to the wireless infrastructure. The potential benefits of these emerging tools are as follows:

• Reduces deployment and operating expense.

• Simplifies daily operation and management of medium and large scale wireless LANs.

• Enhances security by detecting, locating and mitigating rogue access points, by ensuring consistent application of security policies, and by monitoring 802.1X performance.

• Improves WLAN performance and availability by detecting RF interference and by monitoring faults.

• Saves time and resources by automating and centralizing repetitive, time-consuming management tasks.

To request UC wireless access for summer program students, please submit a GetIT request and attach a list of the students' names and their associated 6+2 usernames. Once received, the NOC will manually enter usernames for the summer students for wireless WPA2 access. 

If a summer program student’s laptop doesn’t support WPA2 connectivity, please contact the UCIT Help Desk at 556-4357 so we can manually enter the laptop's wireless MAC address for access to the NoWireUC network.