Aruba ClearPass Access Management System ... - Mayflex

More documents

Recommendations

Info

AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONSThe April software release of Amigopod will include additional operating system support(Windows, OS X, Android) for MDPS and other incremental updates and bug fixes. This willeffectively provide ClearPass Onboard to Amigopod customersIn the August timeframe Aruba is planning to release a common ClearPass platform thatwill be capable of supporting both Policy Manager (+ OnGuard & Profile) and Amigopod(+Guest & Onboard).At that time, Amigopod customers can upgrade to ClearPass Policy Manager withOnboard if required.The following table looks at the upgrade path for both Avenda and Amigopod customersto ClearPass.AvendaAmigopodAAA No change Add CPPMNACGuestProfileOnboardNo changeUpgrade licenseto GuestAdd ProfilelicenseAdd OnBoardlicenseAdd CPPM +OnGuardUpgrade to CPPM+ Guest licenseAdd CPPM+ProfileUpgrade to CPPM+ Onboard9. How will Amigopod customers upgrade to ClearPass Policy Manager?This will not be a point and click upgrade for Amigopod customers and will most likelyrequire a second appliance (hw or vm) to build and restore that configuration backup inparallel to the existing environment. Details on this upgrade procedure are still to bedetermined as the development is not complete.10. Has Amigopod been removed from the pricelist and/or discontinued with theintroduction of ClearPass?No, the Amigopod product has not been removed or discontinued from the Arubaportfolio of products. Instead, Amigopod will be absorbed into the ClearPass family andrebranded as ClearPass Guest.At its core, Amigopod delivers enterprise-grade guest access using personally-owneddevices into a corporate network, so it is a natural fit to include these capabilities underthe ClearPass umbrella of network security services.ARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 10
AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONS11. I already have a RADIUS server. Why would I need to buy ClearPass Policy Manager?ClearPass Policy Manager is required to run the Profile, Guest, Onboard and OnGuardsoftware licenses. Although there may be some overlap in functionality, the PolicyManager provides policy management functionality not provided by standard RADIUSservers. The Policy Manager can co-exist with existing AAA infrastructure by acting as aproxy if needed. Customers can continue to run the two systems in parallel or canmigrate to ClearPass as the primary RADIUS server.12. Why is ClearPass Policy Manager better than my existing RADIUS server?Many existing AAA that include RADIUS and TACACS+ servers are legacy platforms wheremany releases have reached their end of life. Examples are Cisco’s ACS and Juniper’s SteelBelted RADIUS. In each case, customers are required to migrate to a new platform ormaintain two separate products. If you have experienced problems or if you areconcerned about continuing support of the existing platform, you should investigateAruba ClearPass. In addition, the requirements for AAA and NAC have changeddramatically with the emergence of new demands on access security driven by BYODinitiatives. Legacy platforms are not equipped to deal with this new paradigm. Here aresome of the differences between Aruba ClearPass and other AAA offeringsCisco ACS Many Releases Discontinued and EOL’d by Cisco No integrated NAC (Posture/health based enforcement) Performance issues when scaling for large deployments Weak multi-vendor network device support Poor reporting functionality Inflexible policy model – trouble supporting multiple auth sources & types Difficult to configure, manage, and deploy No integrated guest management functionJuniper UAC Difficult to install and manage (Customer feedback) Most expensive solution on the market Works best with Juniper devices. Many features are not available in a multi-vendornetwork infrastructure Very basic guest management functionality No built-in endpoint device audit capabilities Must use the UAC Client (former Odyssey client) for advanced health capabilities Limited clustering for single management and scalability No utility for self-provisioning and configuration for user endpointsARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 11
Page 1 and 2: Aruba ClearPass AccessManagement Sy
Page 3: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 6 and 7: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 28: AP-120 SERIES CONFIGURATIONCLEARPAS

Aruba ClearPass Access Management System ... - Mayflex

Create successful ePaper yourself

Delete template?

Save as template?