Background:
Small school - 150 laptops using a fully Cisco AP wireless campus. (backbone
switches are 3com)
Currently Wifi has a SSID that is not broadcasted, but not WEP or WPA or
anything else for that matter. I know this is terrible and should never have
been set up this way but I took over this mess and want to fix it.
We currently push via GPO the SSID.

My question is -
Is there a way to implement some kind of security quickly and without having
to touch every laptop?