Overview
Service Overview
Cloud LAN-Campus is a service that provides a user‑authentication‑based wired and wireless integrated network environment within the customer’s premises. By offering simple user/device authentication, it delivers a wired and wireless integrated network access environment for various purposes that can be freely used regardless of location within the premises, based on SDN (Software Defined Network). It minimizes the need for physical network equipment and uses the cloud to easily connect multiple geographically distributed locations. This allows enterprises to reduce the complexity of infrastructure deployment and operation, and to build a flexible and scalable network environment. Additionally, with network and firewall design/configuration optimized for the customer’s environment, professional operating systems, and enhanced security management, the site network can be operated more reliably and efficiently.
Provided features
Cloud LAN-Campus provides the following features.
- Campus Network: Providing wired and wireless network usage environment and integrated authentication services for the site
- NW Access: Infrastructure (AP, NW Switch, etc.) and SDN system services for site network usage
- NW Authentication: User/device authentication-based network segmentation, integrated management of authentication and security policies across multiple sites, support for various authentication methods (AD, certificates, etc.) and policy operation/management through the service portal (user/administrator)
- Campus Firewall: Enterprise firewall design and integrated configuration, operation, and management service provision
Features
- Rapid Business Site Network Work Environment: Provides a unified wired/wireless network usage environment through a user authentication-based SDN (Software Defined Network) solution. IP Mobility and separated networks based on device purpose are applied instantly, and users can easily perform network topology changes via the service portal.
- Network Security Enhancement: By applying logical network segmentation and an authentication-based unified wired/wireless security management system, consistent security policies can be enforced for users and devices. Even when users access the headquarters and multiple sites, the same network access environment and security policies can be applied, and authentication information is securely managed under the Samsung Cloud Platform security framework.
- Multi-Vendor Acceptance and Total Network Service Provision: Performing multi-vendor network integration certification makes the site’s SDN equipment configuration flexible. Additionally, by providing an integrated service framework instead of the customer designing/building/operating/managing the network infrastructure themselves, operational and management efficiency improves. We provide optimized network designs per site and fast, reliable network services through a dedicated team.
- Service-Type Integrated Billing System: The billing system can reduce initial investment costs, and when needed, network infrastructure can be expanded and capacity increased. It provides usage-based authentication services, and no separate operational staff or maintenance contracts are required.
- Various authentication methods and scalability: We provide the optimal authentication solution for customers using various authentication methods. Additionally, we enable functional expansion through integration with client systems (groupware, security systems, etc.) and allow differentiated policy management based on security levels per site.
Component
Cloud LAN-Campus provides services across the entire on‑premises network. The components are listed below, and related services can be created.
| Category | Detailed description |
|---|---|
| Network authentication |
|
| Service portal | Provision of unified wired/wireless authentication service portal
|
| wired/wireless network | Design and integrated configuration/operation/management of SDN-based wired/wireless networks |
| WIPS | Wireless Intrusion Prevention System Configuration/Operation/Management |
| Network solution | Configuration, operation, and management of network solutions such as DHCP and NMS |
| Firewall | Enterprise firewall design and integrated configuration/operation/management |
Constraints
When using the Cloud LAN-Campus service, there are the following limitations.
- To use CLAN authentication, network communication/connection between the customer’s premises and the Samsung Cloud Platform region is required.
- Use Cloud Last Mile, dedicated lines, VPN, etc.
- If the use of a specific vendor’s network or firewall equipment is required, prior consultation is necessary.
- After creating the service to configure equipment within the site, the service’s start and end times are finalized after consulting with the responsible AM.
- When using AD integration for authentication, the authentication-related policy rules must be properly deployed to the user’s PC in advance.
- AD functional issues require oversight by the client’s AD administrator.
- The network segmentation certificate method is supported for the designated OS type (currently limited to Windows), and additional costs apply beyond the certification fee.
Provision status by region
Cloud LAN-Campus can be provided in the environments below.
| Region | Availability |
|---|---|
| Korea West (kr-west1) | Provided |
| South Korea South 1 (kr-south1) | Not provided |
| South Korea South 2 (kr-south2) | Not provided |
| South Korea 3 (kr-south3) | Not provided |
Preceding Service
Cloud LAN-Campus has no prerequisite services.