The page has been translated by Gen AI.

Overview

Service Overview

Cloud LAN-Campus is a service that provides a user authentication‑based integrated wired and wireless network environment within the customer’s premises. It offers a versatile integrated network access environment, based on SDN (Software Defined Network), that can be freely used regardless of location within the site through simple user/device authentication. By minimizing physical network equipment and leveraging the cloud, multiple geographically distributed locations can be easily connected. This allows enterprises to reduce the complexity of infrastructure deployment and operation, and to build a flexible, scalable network environment. Additionally, with network design/configuration optimized for the customer’s environment, professional operational systems, and enhanced security management, the site network can be operated more reliably and efficiently.

Provided features

Cloud LAN-Campus provides the following features.

  • Campus Network: Providing wired and wireless network usage environment and integrated authentication services for the site
    • NW Access: Infrastructure (AP, NW Switch, etc.) and SDN system services for site network usage
    • NW Authentication: User/device authentication-based network segmentation, integrated management of authentication/security policies across multiple sites, support for various authentication methods (AD, certificates, etc.) and policy operation/management through the service portal (user/administrator)
Diagram
Figure. Cloud LAN-Campus Diagram

Features

  • Rapid Business Site Network Work Environment: Provides a unified wired/wireless network usage environment through a user-authentication-based SDN (Software Defined Network) solution. IP Mobility and device-purpose-based separated networks are applied instantly, and users can easily perform network topology changes via the service portal.
  • Network Security Enhancement: By applying logical network segmentation and an authentication-based unified wired/wireless security management system, consistent security policies can be enforced for users and devices. Even when users access the headquarters and multiple sites, the same network access environment and security policies can be applied, and authentication information is securely managed under the Samsung Cloud Platform security framework.
  • Multi-Vendor Acceptance and Total Network Service Provision: Performing multi-vendor network integration certification makes the SDN equipment configuration at each site flexible. Additionally, by providing an integrated service framework instead of customers designing/building/operating/managing the network infrastructure themselves, operational and management efficiency improves. We deliver fast and reliable network services with site-optimized network designs and dedicated teams.
  • Service-based Integrated Billing System: The billing system can reduce initial investment costs, and when needed, network infrastructure can be expanded and capacity increased. It provides usage-based authentication services, and no separate operational staff or maintenance contracts are required.
  • Various authentication methods and scalability: We provide the optimal authentication solution for customers using various authentication methods. Additionally, we enable functional expansion through integration with client systems (groupware, security systems, etc.) and allow differentiated policy management based on security levels per site.

Component

Cloud LAN-Campus provides services across the entire network within the site. The components are as follows, and related services can be created.

CategoryDetailed description
Network authentication
  • Network access authentication and network segmentation, security policy management
  • Multi-vendor network unified authentication management
  • Apply unified policies between headquarters and branches, support roaming
  • Provide various authentication methods (certificate, AD, account/MAC, etc.) and scalability
Service portalProvision of unified wired/wireless authentication service portal
  • User portal: create/modify/manage user policies
  • Administrator portal: manage authentication policies and monitoring
wired/wireless networkDesign and integrated configuration, operation, and management of SDN-based wired and wireless networks
WIPSWireless Intrusion Prevention System Configuration/Operation/Management
Network solutionConfiguration/operation/management of network solutions such as DHCP, NMS
Table. Cloud LAN-Campus components

Constraints

When using the Cloud LAN-Campus service, there are the following limitations.

  • Network communication/connection between the customer’s site and the Samsung Cloud Platform region is required to use CLAN authentication.
    • Use Cloud Last Mile, dedicated lines, VPN, etc.
  • If you need to use network equipment from a specific vendor, prior consultation is required.
  • After creating the service to configure equipment within the site, the start and end times of the service are finalized after consultation with the responsible AM.
  • When using AD integration for authentication, the authentication-related policy rules must be properly deployed to the user’s PC in advance.
    • Issues with AD functionality require management by the client’s AD administrator.
  • The network segmentation certificate method is supported for the designated OS type (currently limited to Windows), and additional costs apply beyond the certification fee.

Provision status by region

Cloud LAN-Campus can be provided in the environments below.

RegionProvision status
Korea West (kr-west1)Provided
South Korea South 1 (kr-south1)Not provided
South Korea South 2 (kr-south2)Not provided
South Korea 3 (kr-south3)Not provided
Table. Cloud LAN-Campus Availability by Region

Preceding Service

Cloud LAN-Campus has no prerequisite services.

Release Note
How-to guides