Aruba ClearPass Access Management System ... - Mayflex

More documents

Recommendations

Info

AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONS45. Is there a limit on the number of devices the ClearPass Policy server can support?There is a range that is designated by the physical characteristics of the ClearPass baselineappliance. To support a greater number of devices, customers can purchase additionalappliances to create a cluster that can support very large numbers of devices. Foradditional details and proper sizing of a ClearPass server, check the latest Aruba pricelist.46. Can the ClearPass solution support policies where non-802.1X capable switches exist?Yes. The use of OnGuard agents, or captive-portal registration, allow organizations thatare migrating to more secure 802.1X-capable devices to deploy policy management in aphased manner.Device Profiling/Provisioning Support47. Can ClearPass configure iOS, Windows, Android and Mac OS X devices for 802.1X?Yes. Aruba ClearPass is the only complete configuration, provisioning and onboardingsolution in the industry.48. Once a device has been onboarded is there any software left on the device?No, the ClearPass Onboard executable is purely a configurator, it doesn't actuallyauthenticate you and will still need you to have a valid cert and/or user account which canboth be deleted/revoked if an employee leaves a company49. What happens if someone loses a device, like a phone, that has been configured toaccess the secure enterprise network?ClearPass identifies each unique device associated with a user and access can be revokedfor that individual device without having to manipulate the user’s AD or LDAP credentials.50. How does ClearPass uniquely identify and manage devices?ClearPass issues certificates for IOS and OS X Lion devices and unique credentials for eachWindows and Android device associated with a user so that it can take unique action onthat device. This certificate or credential acts as a unique machine ID.Beyond this we inventory devices and embed data about the device that was enrolledwithin the client certificate/credential such as MAC address, UUID, serial number etc.These unique machine IDs are stored securely within the certificate store.51. Is there an option for users to self-register BYOD devices like smartphones or gamingdevices?ARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 24
AP-120 SERIES CONFIGURATIONCLEARPASS ACCESS MANAGEMENT SYSTEM – FREQUENTLY ASKED QUESTIONSYes. A self-registration option allows users to enter information about their devices thatcan then be used during authentication and authorization of devices to create a moregranular and secure policy.52. What type of device attributes are displayed within the ClearPass Policy Managerthrough self-registration or profiling?ClearPass Policy Manager provides the following client device attributes:Device type (i.e. iPhone, iPad, iPod)Device OSDevice OS detailManufacturerModelSerial numberNetwork interface vendorClearPass Appliances Information53. Is ClearPass available as a turnkey appliance?Yes, ClearPass Policy Manager is available as turnkey hardware/software applianceoptimized for running ClearPass software. There are three appliance versions (HW &VMware) currently available;1.) CP-HW-500/CP-VA-500 capable of scaling up to 500 total devices2.) CP-HW-5K/CP-VA-5K capable of scaling up to 5000 total devices3.) CP-HW-25K/CP-VA-25K capable of scaling to 25,000 total devices.Ordering information is available in the Aruba price list.54. Can my customer install ClearPass Policy Manager on an existing server, and/or supplytheir own hardware?Yes, ClearPass Policy Manager can be purchased in a VMware format for ESXinfrastructure and installed on customer supplied servers/hardware platforms. A sizingguide for customer supplied hardware is available on Arubapedia .ARUBA NETWORKS CHANNEL PARTNER CONFIDENTIAL – DO NOT DISTRIBUTE PAGE 25
Page 1 and 2: Aruba ClearPass AccessManagement Sy
Page 3: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 6 and 7: AP-120 SERIES CONFIGURATIONCLEARPAS
Page 28: AP-120 SERIES CONFIGURATIONCLEARPAS

Aruba ClearPass Access Management System ... - Mayflex

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?