Access Assurance – Controls who and what can connect to our network. It handles the authentication side of wireless (and wired) access, verifying devices and users against policies you define before letting them on. For example, Joe Smith is an employee of UTA, and their device is compliant in Microsoft Intune, therefore it is allowed on the employee network. Jane Doe on the other hand is an employee, but their device is not compliant therefore it is placed on the quarantine network.
Certificate Authentication – Instead of a password, each device or user account has a unique digital certificate. Think of it like your driver’s license. When connecting to an SSID that uses certificates for authentication, the device or user presents their ID card, and the wireless network verifies that ID card is legitimate and authorizes that device or user.
One-Time Password (OTP) – A temporary code, usually 6 digits, that expires after a single use or a short time window.
Pre-Shared Key (PSK) or Passphrase – A shared password used to connect to a wireless network. This is the same technology you use to connect your personal wireless devices to your home internet connection.
Unique or Personal Pre-Shared Key (PPSK) – A unique wireless password assigned to one or more devices/users that are used to identify and segment those devices or users. For example, a Pre-Shared Key named “Solstice Pods – OIT” can be created. A key would then be generated and any device using that key would be identified as being a Solstice Pod managed by OIT.
SSID – The name of a Wi-Fi network. Currently this would be UTA WiFi, UTA Guest, etc… for our campus networks.
SSID Pollution – Every SSID broadcasting in an area adds overhead to the wireless spectrum, even ones you don't own. Best practice is to keep your own SSID count low, but you also must account for neighboring networks bleeding into your space since you can't control those.