Long story short, I just took over as the network admin for a district, where they currently have the following:
Main district network - 802.1x (although currently any user, including students can authenticate)
Special Ed network - PSK (legacy network that was never retired because it was easier to deploy machines with PSK)
Student network - 802.1x (segregated, but currently pointless since students can/are using the main district network)
Guest network - PSK (segregated but the password is posted in the office)
They're using Aerohive's cloud platform, so I don't have much flexibility without the ability to tunnel traffic to an on-prem controller. I'd like to have 2-3 networks, an 802.1x network for only staff and district devices, a segregated 802.1x network for students, and a segregated and more restrictive PSK/open guest network.
What do you run in your school? What have you found to be the easiest way to deploy staff Windows laptops, iPads, Chromebooks, Android tablets, etc. to an 802.1x enviornment?