Aruba ClearPass Access Management System ... - Mayflex

More documents

Recommendations

Info

AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONSMicrosoft NPS No support for captive portals Only supports AD as an auth source (no SQL, no LDAP, no Token server, etc.) No context-based policies. Access can only be grated on identity - not location,device, time of day, etc. Only VLAN-based enforcement – Limited VSAs and no downloadable ACLs,TACACS+, or web-based enforcement Limited windows-only health checks with NAP NO VM deployment option13. I already have Active Directory to authenticate users, why would I need this?In order to satisfy the many of today’s usage scenarios while increasing the level ofsecurity provided, an identity based policy management system would be the bestapproach. A full featured solution like Aruba’s can provide many more capabilities toimprove overall security and offload your IT staff from having to manage many aspects ofaccess control, guest management and helpdesk activities.14. I already have a NAC solution and want to use ClearPass for provisioning devices. Whatcan I do?For ClearPass Onboard the NAC solution would first scan the device for vulnerabilities andonly pass validated clients to ClearPass Onboard for provisioning.ClearPass QuickConnect can be used to configure devices prior to connecting to 802.1Xnetworks. The existing NAC solution would then perform a basic health check once thedevice authenticates onto the network.15. Will ClearPass work for users that connect to public cellular networks?Yes, for clients that use VPN clients such as Aruba’s VIA client, a mobile device will alwaysredirect enterprise data back to the enterprise network and be subject to policies definedfor that network.In the case of Aruba’s VIA client, the VPN session is setup automatically, without requiringthe user to initiate. This is very important as many devices today that have both Wi-Fi andcellular capabilities will tend to roam between the two networks without alerting theuser.16. Is ClearPass NAC? Is it competitive for NAC opportunities?While the definition for Network Access Control varies, ClearPass can be considered a NACoffering. However, unlike traditional point NAC solutions, ClearPass brings together role-ARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 12
AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONSbased policy management, device onboarding, policy control and reporting into onecohesive, easy to use system.Competitive solutions are either multi-box or just point products, and do not offer theease of use or the multivendor support of ClearPass.Note that Gartner rates ClearPass as the Most Visionary NAC solution on the markettoday!According to Gartner; “The company's ability to support Microsoft NAP-enabledendpoints (Windows 7, Vista and XP SP3) without requiring an agent, its support for non-Microsoft endpoints (via agents), and a strong road map for profiling features has earnedit a high score for Completeness of Vision”17. How does ClearPass fit into Aruba’s Mobile Virtual Enterprise (MOVE) architecture?ClearPass enhances the Aruba MOVE architecture with access management functionality.The ClearPass solution provides three key advantages:Works across every major mobile OS: Extends MOVE device onboarding benefits toinclude not only iOS but now Mac OS X, Windows and Android operating systems todeliver the most dynamic provisioning capable solution in the industry.ARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 13
Page 1 and 2: Aruba ClearPass AccessManagement Sy
Page 3: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 6 and 7: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 28: AP-120 SERIES CONFIGURATIONCLEARPAS

Aruba ClearPass Access Management System ... - Mayflex

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?