Aruba to speed up user authentication

By Peter Judge, |  Mobile & Wireless

Wireless switch maker Aruba Networks has launched a new version of its ArubaOS software, and a plan to move to 802.11n fast Wi-Fi with the help of Ruckus Wireless.

As well as the new OS, designed for faster authentication of large numbers of users, Aruba has announced a partnership with Juniper -- the largest enterprise switch vendor with no wireless LAN solution of its own -- and the Ruckus announcement could put it ahead of others on moves to faster Wi-Fi. The new OS version is a free upgrade to existing customers with a support contract.

"On campuses, the user density is going up dramatically -- and authentication is the next bottleneck," said Keerti Melkote, vice president of marketing at Aruba. "You can run an EAP protocol for a few users, and the performance is OK, but when you have ten thousand users on a campus, the computation overhead is significant."

While some users ease the problem with a bank of proxy authentication servers, Aruba's centralized cryptography allows it to absorb the triple-A (authentication, authorization and accounting) traffic into the wireless controller, said Melkote: "We terminate the EAP protocol in hardware, and get predictable connection time and roaming times." The new version of the product can handle 1000 authentication transactions per second, he said.

The system can also "pool" VLANs, so that users can roam the office without needing to change to a different VLAN. "Standard VLAN practices break down when users are mobile," said Melkote. "Specific locations can get densely populated, or have peak usage. "With a pool, every VLAN is available at every access point."

Aruba's controllers are also able to handle bigger WLANs - a master controller can now handle 700 controllers, instead of 64.

Aruba has given its branch-office controller the ability to cache authentications in the form of cookies, so users can still access local LAN resources when the WAN link goes down without losing authentication on the LAN. The system uses the RFP 3579 standard so user names are not sent in the clear, he added.

Melkote also promised auto-configuration for Aruba's branch-office wireless LAN controller, which can now be shipped and installed without local IT support. This is but perhaps not such a big deal, as rival Trapeze announced this feature some eighteen months ago in its MXR-2 branch product.

For the smallest part of the corporate wireless LAN, Aruba has halved the price of the remote access point it sells for telecommuters, from $250 to $125. "If you buy 256 of them, the price goes down to around $50," said Melkote.

Join us:






Mobile & WirelessWhite Papers & Webcasts

See more White Papers | Webcasts

Answers - Powered by ITworld

ITworld Answers helps you solve problems and share expertise. Ask a question or take a crack at answering the new questions below.

Ask a Question