 SAP WiFi Networks
WiFi networking has finally been accepted as a normal component of the enterprise network, bringing huge potential benefits to the business. However, with these benefits come obstacles, with security and wireless coverage being the main challenges. Barcode-IT have worked for many years with large organisations installing and configuring WiFi networks, so can guide the SAP user from design through to full WiFi implementation, avoiding costly installation errors and ensuring the very highest levels of network security.
The warehouse and manufacturing areas are often the first areas of the business to have WiFi networks installed, as SAP already supports WiFi mobile computers and printers through SAP Console and
SAP ITS Mobile (the replacement for SAPConsole and WebSAPConsole). However, from a security point of view it is critically important that a WiFi plan should be adopted as early as possible to cover the future installation of WiFi in ANY area of the business that may eventually have WiFi installed to ensure that no security breaches are allowed to creep in with additional installations at a later date.
Multi-layered Wireless Security
WiFi has seen a very rapid evolution in wireless security and encryption over the last few years, starting with the introduction of WEP (Wired Equivalent Privacy). WEP turned out to be easily broken by simple tools and widely available to intruders. This lead to the development of the latest secure protocols such as WPA2 (WiFi Protected Access 2), which provides network administrators with a higher level of assurance that only authorised users can access the network.
 Based on the ratified IEEE 802.11i standard, WPA2 provides (US) government grade security by implementing the National Institute of Standards and Technology (NIST) FIPS 140-2 compliant AES encryption algorithm. WPA2 can be enabled in two versions - WPA2 - Personal and WPA2 - Enterprise. WPA2 - Enterprise verifies network users through a server, such as a Radius Server.
Using WPA2 Enterprise as the starting point, layers of defenses can be built up to create a totally secure wireless network.
- Create a WLAN security policy
- Secure the WLAN
- Secure the wired (Ethernet) network against wireless threats
- Defend the organisation from external threats
- Enlist employees in safeguarding the network
To protect the wired network from wireless threats, IT must also consider threat control and containment. Wireless threat control and containment are vitally important, especially in an era in which lack of threat control can lead to violations of regulatory controls or legal statutes.
Even a “no WiFi” policy is no guarantee of security against these threats without a comprehensive RF monitoring solution. For example, rogue access points can be brought in by employees and notebook computers with embedded WiFi can connect to neighbouring networks, which can create security holes or (using Windows 7) a laptop with a WiFi card could be used as a rogue access point.
This may seem daunting to the first time user but the tools are all easily available and a knowledgeable WiFi network designer and installer can quickly create a plan that will protect the corporate WiFi and wired network now and in the future. We are here to help you plan and implement a secure WiFi network, so who not give us a call.
For more information on SAP Wireless solutions from Barcode-IT and The Config Team, contact Jim Southern on 01200 441977.
*SAP is a registered trademark of SAP AG. |
