Do you have any thoughts regarding "thin" versus "fat" WLAN? As I understand it, "thin" APs pass authentication...
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
responsibility back to a central device, where a "fat" AP handles much of the authentication itself.
The terms thin and fat have been applied to WLAN access points (APs) in many different ways.
- Some vendors use thin AP to refer to entry-level/residential-grade products with few advanced features, in comparison to fat APs rich with enterprise network features like VLAN tagging and SNMP-based management.
- Some use thin AP to refer to products that can't be configured or used on their own, but instead are part of a WLAN switching system that governs both setup and operation. In this case, a fat AP is any stand-alone AP, no matter how extensive that AP's feature set.
- Some use thin AP to refer to products that offload selected tasks to an upstream server -- for example, communicating with 802.1X Authentication Servers, generating encryption keys, acting as a VPN gateway, or re-routing traffic for cross-network mobility. In comparison, any of these tasks could be performed directly on a fat AP, without relying on an upstream server.
Obviously, there are many ways to combine and distribute AP features; no matter how you spin it, thin and fat are just labels for opposite ends of a complex spectrum. My advice is to look at the actual features of products that you may be considering, without getting too distracted by the thin and fat labels. For example, do you want to purchase all your APs from a single vendor, or must you use APs from several sources? Does your business really need VLAN tagging or SNMP management or VPN mobility in its WLAN?
When it comes to 802.1X, I agree there are advantages to distributing responsibility. For example, encryption keys that are generated and cached on an upstream server can reduce the handoff delay when stations roam between APs -- this is important for WLANs that support latency-sensitive video or voice applications. It can also be easier to harden and secure communication with one device (a server) than many devices (individual APs), so having the server be your 802.1X Authenticator (RADIUS client) is arguably safer. But, ultimately, you must weigh these benefits against costs to decide what's best for your WLAN.
Dig Deeper on Mobile networking
Lisa Phifer asks:
Which do you prefer: Thin or fat WLAN?
0 ResponsesJoin the Discussion
Related Q&A from Lisa Phifer
Whether you need a basic open source mobile device management tool for your company's Apple or Android devices, or something more customized, you ...continue reading
Advancements in 4G LTE networks improved the security of cellular data transmission, but it still varies wildly from network to network.continue reading
The enterprise mobility management market for wearable devices is in its infancy, but IT can still use existing EMM tools to manage wearables.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.