I am a server administrator of a company that offers wired and wireless network/Internet services to various guests...
of a hotel. I can detect connected laptops, but wireless handheld devices and tablets are not displayed. How can I detect mobile devices on the network, or is there a better way?
It sounds like you’re trying to run your wireless guest network like it’s a typical enterprise network. It’s important to understand that it’s not. Guest networks are a completely different animal from corporate networks, and have different security concerns. In an enterprise, your security efforts are focused on protecting all of the devices connected to your network from each other and the sensitive information stored on your network from those users. You have to balance your security controls with the need for systems to communicate with each other directly. However, this is mitigated by the fact that all of the users on your network are trusted, at least to some extent.
In the case of a guest network, you have a different challenge: isolating guests from each other so they cannot cause each other damage. There is probably no reason to allow guests to communicate with each other directly. There’s also no sensitive information on the network that your company needs to protect. (This is true, right? Your guest network should be completely segregated from your corporate network; if it's not, then that's an entirely different problem).
So, instead of trying to apply enterprise management tools to your guest network for detecting mobile devices, consider using one of the many products designed expressly for this purpose. You’ve certainly seen the popular captive Web portals used on many public networks. These systems route users who connect to the guest network to a registration page that requires consent to the terms of service, registration and payment of a fee (if applicable). Only after passing through this portal do users gain the Internet access they desire. At the same time, the portal collects information about the devices on your network that you can analyze to gain insight into their characteristics. This sounds like the right answer to your problem.
Dig Deeper on Wireless network security
Related Q&A from Mike Chapple
It's not possible to eradicate the risk of DoS attacks, but there are steps infosec pros can take to reduce their impact. Mike Chapple shares ...continue reading
The HHS OCR ruled that healthcare ransomware attacks are HIPAA violations, so these covered entities need to react according to the HHS's guidance. ...continue reading
HIPAA regulations incorporate NIST guidelines and standards, so do healthcare organizations need to be compliant with both? Expert Mike Chapple ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.