Secure wired and wireless networks with smart access control

Similar documents
ClearPass Ecosystem. Tomas Muliuolis HPE Aruba Baltics lead

HPE Aruba Focus Areas

Visibility, control and response

Intelligent Edge Protection

ARUBA CLEARPASS POLICY MANAGER

ARUBA CLEARPASS POLICY MANAGER

ARUBA CLEARPASS NETWORK ACCESS CONTROL

ClearPass Design Scenarios

QuickSpecs. Aruba ClearPass Policy Manager Platform. Overview. Aruba ClearPass Policy Manager Platform The most advanced Secure NAC platform available

Identity Based Network Access

ARUBA CLEARPASS NETWORK ACCESS CONTROL

ARUBA CLEARPASS POLICY MANAGER

Introducing. Secure Access. for the Next Generation. Bram De Blander Sales Engineer

A. Post-Onboarding. the device wit be assigned the BYOQ-Provision firewall role in me Aruba Controller.

TECHNICAL NOTE CLEARPASS PROFILING QUICK START GUIDE

CLEARPASS EXCHANGE. Open third party integration for endpoint controls, policy and threat prevention SOLUTION OVERVIEW MAKE BETTER-INFORMED DECISIONS

Provide One Year Free Update!

SOLUTION OVERVIEW THE ARUBA MOBILE FIRST ARCHITECTURE

QuickSpecs. Aruba ClearPass Guest Software. Overview. Aruba ClearPass Guest Software A ClearPass Policy Manager Application.

QuickSpecs. Aruba ClearPass OnGuard Software. Overview. Product overview. Key Features

BYOD: BRING YOUR OWN DEVICE.

Portnox CORE. On-Premise. Technology Introduction AT A GLANCE. Solution Overview

CLEARPASS GUEST. A ClearPass Policy Manager Application DATA SHEET KEY FEATURES THE CLEARPASS ADVANTAGES

Aruba Certified Clearpass Professional 6.5

Cisco ISE Features. Cisco Identity Services Engine Administrator Guide, Release 1.4 1

ForeScout ControlFabric TM Architecture

2012 Cisco and/or its affiliates. All rights reserved. 1

Outnumbered, but not outsmarted A 2-step solution to protect IoT and mobile devices

ClearPass Policy Manager

Pulse Policy Secure X Network Access Control (NAC) White Paper

BEST PRACTICE - NAC AUF ARUBA SWITCHES. Rollenbasierte Konzepte mit Aruba OS Switches in Verbindung mit ClearPass Vorstellung Mobile First Features

Secure Access - Update

ForeScout CounterACT. Continuous Monitoring and Mitigation. Real-time Visibility. Network Access Control. Endpoint Compliance.

ForeScout Agentless Visibility and Control

Changing face of endpoint security

Google on BeyondCorp: Empowering employees with security for the cloud era

Cisco ISE Features Cisco ISE Features

Network Configuration Example

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

Secure IT consumeration (BYOD), users will like you How to make secure access for smart mobile devices

ARUBA 360 SECURE FABRIC

Today s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps

The Context Aware Network A Holistic Approach to BYOD

Enterprise Guest Access

Cisco ISE Ports Reference

Zero Trust with Okta: A Modern Approach to Secure Access from Anywhere. How Okta enables a Zero Trust solution for our customers

Conquering today s bring-your-own-device challenges. A framework for successful BYOD initiatives

Cisco Network Admission Control (NAC) Solution

Cisco ISE Ports Reference

WHY YOUR NAC PROJECTS KEEP FAILING: ADDRESSING PRODUCTS, PEOPLE, PROCESSES

CLEARPASS CONVERSATION GUIDE

ACCP-V6.2Q&As. Aruba Certified Clearpass Professional v6.2. Pass Aruba ACCP-V6.2 Exam with 100% Guarantee

Enterasys Network Access Control

Privilege Security & Next-Generation Technology. Morey J. Haber Chief Technology Officer

Symbols. Numerics I N D E X

Security Readiness Assessment

USP Network Authentication System & MobileIron. Good for mobile security solutions

Cisco Secure Access Control

ONE POLICY. Tengku Shahrizam, CCIE Asia Borderless Network Security 20 th June 2013

DumpsFree. DumpsFree provide high-quality Dumps VCE & dumps demo free download

ClearPass Policy Manager

Cisco Exam Implementing Advanced Cisco Unified Wireless Security v2.0 Version: 9.0 [ Total Questions: 206 ]

HiveManager Local Cloud

Defense-in-Depth Against Malicious Software. Speaker name Title Group Microsoft Corporation

ForeScout CounterACT Pervasive Network Security Platform Network Access Control Mobile Security Endpoint Compliance Threat Management

BEYOND AUTHENTICATION IDENTITY AND ACCESS MANAGEMENT FOR THE MODERN ENTERPRISE

Stop Threats Before They Stop You

Cisco Identity Services Engine (ISE) Mentored Install - Pilot

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications

ForeScout Extended Module for Carbon Black

TITLE GOES HERE RUCKUS CLOUDPATH ENROLLMENT SYSTEM. The only integrated security and policy management platform that delivers: COMPRISED OF:

Reviewer s guide. PureMessage for Windows/Exchange Product tour

Cisco ISE Ports Reference

Simplifying the Branch Network

Your wireless network

Simplifying your 802.1X deployment

ClearPass NAC and Posture Assessment for Campus Networks

LTI Security Services. Intelligent & integrated Approach to Cyber & Digital Security

Centrify Identity Services for AWS

Fencing the Cloud. Roger Casals. Senior Director Product Management. Shared vision for the Identity: Fencing the Cloud 1

TECHNICAL NOTE UWW & CLEARPASS HOW-TO: CONFIGURE UNIFIED WIRELESS WITH CLEARPASS. Version 2

Cisco ISE Ports Reference

Security and Control for all Devices on the Access Network

Access Guardian and BYOD in AOS Release 8.1.1

MAKING THE CLOUD A SECURE EXTENSION OF YOUR DATACENTER

SACM Information Model Based on TNC Standards. Lisa Lorenzin & Steve Venema

SAS and F5 integration at F5 Networks. Updates for Version 11.6

Klaudia Bakšová System Engineer Cisco Systems. Cisco Clean Access

Cisco Exam Questions & Answers

RADIUS Grows Up. Identity Management for Networks Secure IT Sean Convery Identity Engines

Build a Software-Defined Network to Defend your Business

IMC as a Trojan Horse and Roadmap update

How to Control Who Gets Onto Your Network A Large Systemic Bank s Security Case Study

Security and Control for all Devices on the Access Network

Question: 1 The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?

Delivering Integrated Cyber Defense for the Cloud Generation Darren Thomson

Mobility First How Tomorrow Moves for Education

2013 InterWorks, Page 1

802.1X: Port-Based Authentication Standard for Network Access Control (NAC)

For Sales Kathy Hall

Transcription:

Secure wired and wireless networks with smart access control Muhammad AbuGhalioun Senior Presales Consultant Hewlett-Packard Enterprise Aruba Saudi Arabia

Managing risk in today s digital enterprise Increasingly sophisticated cyber attacks More sophisticated More frequent More damaging Cost and complexity of regulatory pressures Compliance Privacy Data protection Rapid transformation of enterprise IT Shift to hybrid Mobile connectivity Big data explosion

User behavior and the shifting perimeter 30% of users lost data on mobile Younger users are less responsible 60% of users share devices Aruba, HPE 2015 Survey of 4300 Enterprises * Aruba 2015 Running the Risk report

Top concerns for IT Mobility Controlling who and what can connect BYOD/Device loss Personal devices, privileges and loss of data Authentication Separate enterprise and guest access policies 4

Time for a new mobility and IoT defense model Static perimeter defense Anti/Virus Firewalls IDS/IPS Web gateways Physical components

Security posture that adapts to context sensitive situations Anti/Virus Firewalls IDS/IPS Web gateways Static perimeter defense Anti/Virus IDS/IPS Physical components Firewalls Physical Components Web gateways Adaptive trust defense Security and policy for each user or group Security and Policy for each user or group 6

ClearPass policy management Automated workflows Enhanced security for BYOD and guests Security rules by user roles and device types Onboard Guest OnGuard Multi-vendor policy enforcement Full RADIUS/TACACS Exchange (comprehensive third-party integration) Expandable applications ClearPass Policy Manager Exchange 7

The Aruba solution for the digital workplace High visibility Built-in discovery, profiling and dashboards Easy deployment Multi-vendor wired, wireless and VPN ClearPass Policy Manager 802.1X and non-aaa enforcement Easy onboarding Support for AD, LDAP, SQL, Internal db, BYOD, third party integration Hardware and Virtual Appliances (500, 5000, 25000) Technolo

The Aruba apps for BYOD, guest and device assessments Onboard Guest OnGuard Enhanced security for BYOD and guests Automated workflows Device health checks

What s inside Base services IT tools User tools Built-in add-ons Policy Engine Policy simulation AirGroup Pool of 25 Lic. RADIUS/CoA TACACS+ Profiling+ +100 RADIUS dictionaries Advanced reporting Access tracking Template-based policy creation LDAP browser Per session logs Bonjour/DLNA Device registration Certificate revocation Basic guest Onboard Guest OnGuard Exchange API Syslog

Identify, enforce, protect Any user/location Any connection Any device

Device identity Built-in profiling NMAP Port-based Scanner On-demand or pre-scheduled scans Granular visibility for like devices DHCP TCP SSH NMAP CDP, LLDP SNMP WMI OnGuard Mac OUI Before After Lighting sensor NMAP Scan Accurate policy decision Temperature sensor Two IoT endpoints

Device identity ClearPass builds and sees up to date database of devices Devices can be flushed from database Context is used within policies Total devices Device types Fingerprint data

User identity, simple workflows for any use case 1. Employee with IT-managed 2. Employee with BYOD 3. Guest access Login Yi Ling Passwd S1ngp0rSL1ng Device database Device certificate Active directory ClearPass

Secure enforcement Authentication before access Aruba ClearPass Existing 802.1X wired/wireless support Multivendor support for all 802.1X ready wired and wireless customers Secure encrypted wireless access Built-in ClearPass profiling IoT, laptops, mobile phones Easy to use policy creation templates Technolo

Non-AAA wired enforcement option Customers want to manage any device that connects Only some support.1x supplicants 50% of IoT may be wired ClearPass supports any customer Infrastructure and need

OnConnect for non-aaa enforcement No 802.1X SNMP Enforcement Aruba ClearPass Printer Vlan Infusion Pump Vlan Existing 802.1X wired/wireless support Built-in device-centric security for all non-aaa ready customers Easy to configure on legacy multivendor switches Leverages ClearPass profiling for wired/wireless IoT, laptops, mobile phones Technolo

ClearPass Exchange Technology Program is growing ClearPass Exchange arubanetworks.com Over 120 different partners

ClearPass Exchange: End to End Controls Support for popular partner solutions and services Infrastructure Security SIEM Device management MFA Services BYOD and corporate owned

ClearPass exchange, 3 rd party integration ClearPass Exchange: End to End Controls for Enterprise Security REST API/Syslog Security monitoring and threat prevention Internet of Things (IoT) Multi-vendor switching Device management and multi-factor auth BYOD and corporate owned Multi-vendor WLANs Aruba ClearPass with Exchange EcoSystem Helpdesk and voice/sms services in the cloud

ClearPass Extensions, 3 rd party integration option Extensions repository Aruba ClearPass Opens doors for new Exchange partnerships Device authorization, MFA, visitor registration, EMM/MDM and more Extends use of existing security, productivity solutions Fast, no heavy lifting integration model

Aruba ClearPass is the best solution for wired and wireless NAC and the most scalable. Chris Kissel, Senior Industry Analyst, Frost & Sullivan 2016 - Network Access Control Global Market Analysis Frost 2016 NAC review recognized ClearPass for Best NAC Best for Guest Best for Health Checks Best for Multivendor 22

More information www.arubanetworks.com ClearPass, exchange, adaptive trust, promotions

Let s hear your voice! Open HPE Events App, and answer the following question to participate What are the 3 steps that you need to follow to protect your network? 24

Thank you Muhammad AbuGhalioun Senior Presales Consultant Hewlett-Packard Enterprise Aruba Saudi Arabia Muhammadabu.abughalioun@hpe.com 25

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback