As knowledge employees remotely continue steadily to work, home based has rapidly escalated in one of many remote function options to “the remote function option”. For System Administrators, this implies enabling workers with the fundamentals – laptops and corporate system connectivity, and optimizing program delivery despite unpredictable system performance because of bandwidth contention and latency. This may also bring about increased tech support phone calls from the end-consumer complaining concerning the VPN connectivity and bad network performance.

Cisco’s OfficeExtend Access Stage (OEAP) allows the Network Administrator to increase the secure, scalable, and manageable corporate WLAN over the internet to the Teleworker’s (employee’s) house. This enables the Teleworker to safely connect back again to the private system from their house simply utilizing their regular wireless user profile while not having to create a VPN or additional type of remote entry. Remote users can connect, get access to corporate assets, and “feel” exactly like they are linked to the wireless system at the organization office.

The ease of home based for employees shouldn’t come at a price of increased administrative load and pre-configuration of access points for network admins. To handle this, Cisco’s Workplace Extend feature can make the remote function option seamless for workers in addition to for network administrators making use of zero-touch deployment.

The easy architecture of OfficeExtend includes the remote site and business office components. The remote control site may be the home system of the Teleworker and includes a house router and Cisco’s OfficeExtend Gain access to Point. The working office component includes Cisco PnP cloud and Catalyst 9800 Wireless LAN Controller.

How does it function?

Cisco’s Teleworker Alternative using OfficeExtend AP targets zero-contact deployment and significantly reduces the excess efforts of employee-specific accessibility point configuration. The system administrator doesn’t have to preconfigure the gain access to points and it could be straight delivered to the Teleworker’s house with no configuration. Teleworker may just need to switch on the Cisco AP and connect it at the rear of the real home router. The AP will shoe, connect to the organization Cellular LAN Controller (WLC), and can start broadcasting the organization wireless system at the Teleworker’s house.

Admins may use Cisco’s System Plug and Have fun with (PnP) to provision the AP’s. On the PnP cloud, admins shall possess the profiles defined for AP’s in line with the AP serial number. The controller profile has information regarding the secondary and primary Ip of the organization WLC. The admin can merely import the AP serial numbers utilizing a CSV assign and file them a controller profile.

explore the workflow at length

Let’s. After initial shoe up, the AP are certain to get the Ip from the real home router and hook up to the PnP cloud at software.cisco.com. Once the PnP cloud receives redirection requests from the AP, it shall look for the serial number, assign controller user profile, and send the facts of corporate cellular controller’s Ip to the AP. The AP will use this Ip to form a protected CAPWAP tunnel with the organization WLC.

After the Control and Provisioning of Wireless Entry Factors (CAPWAP) tunnel is formed, the AP shall download the most recent available software and all of the advanced configurations from the organization WLC. Following the AP joins the controller as OEAP it’ll start broadcasting the organization wireless system at the Teleworker’s house. The teleworker can hook up to this wireless system using secure business authentication now, and access the organization resources and the web. To make certain that unauthorized AP’s ought never to join the organization WLC, the admin can enable the AP authentication on WLC.

What are the ADDED BENEFITS of OfficeExtend AP more than VPN?

The OfficeExtend establishes a secure Datagram Transport Layer Safety (DTLS) connection between your access point and the controller. With basic onboarding, the end-user doesn’t need to set up any VPN software program and will connect multiple gadgets to the organization network. Having business SSID broadcasted in the home makes it simple for connecting and eliminates the necessity to ever to remain to a VPN.

How will the Teleworker Solution Advantages Network Admin and Teleworker?

Teleworker:

Cisco OfficeExtend AP supplies the highest level of protection and allows the deployments of additional equipment such as for example Cisco IP mobile phones. This successfully creates a little office for the worker providing them with all the access they’ll expect while in the office. In add-on, the solution allows kids and spouses to gain access to the Internet, using custom private SSID, without introducing extra security risks to business policy.

Network Administrators:

Utilizing the same management, functions, and infrastructure because the business WLAN, the OfficeExtend remedy simplifies the procedure of extending real-period, high-performance network providers to remote locations. System admins have significantly more control and presence which assists in troubleshooting any connectivity problems from the Teleworker aspect and gives them the opportunity to differentiate problems between ISP versus business. Admins don’t need to define new safety policies and the prevailing Cisco TrustSec policies could be extended to get a more secure network.

Recommended Items for Teleworker Solution in IOS XE Software 17.3.1 release:

Find out more about Cisco Catalyst 9800 Wireless Controllers and the OEAP Configuration.

Subscribe to the Networking blog

The post Teleworker Solution Using OEAP on Catalyst 9800 WLC appeared very first on Cisco Blogs.