Networking

08:34 AM
Lee Badman
Lee Badman
Commentary
Connect Directly
Twitter
LinkedIn
RSS
E-Mail
50%
50%
Repost This

Aruba Networks Swings Big At BYOD And More With ClearPass

Gone are the days of simply providing good signal in the WLAN environment. Guest requirements, the new reality of the BYOD--or bring your own device--model and increasing reliance on the wireless network as a critical resource combine to make life complicated for us in the business of enterprise wireless networking. Aruba Networks is ready to answer the back-end challenges of contemporary wireless with its new ClearPass framework, and the impressive array of features is not limited to use by Aru

Gone are the days of simply providing good signal in the WLAN environment. Guest requirements, the new reality of the BYOD--or bring your own device--model and increasing reliance on the wireless network as a critical resource combine to make life complicated for us in the business of enterprise wireless networking. Aruba Networks is ready to answer the back-end challenges of contemporary wireless with its new ClearPass framework, and the impressive array of features is not limited to use by Aruba customers.

Sitting firmly at the No. 2 spot in the WLAN market behind Cisco, Aruba Networks has moved away somewhat from its beginnings as a pure-play wireless vendor. And like Cisco, Aruba is becoming adept at buying other companies to gain new offerings for its customers. As a result of recent purchases of Avenda (authorization and authentication) and Amigopod (guest services), we well as tight integration with its existing wireless controllers, Aruba has brewed what calls a total solution for wireless environment management. ClearPass addresses a number of wireless client management challenges, but its genesis is in the BYOD paradigm and all of the worries that come with it.

Existing Aruba customers and those shopping for a total WLAN solution will find ClearPass interesting, but so might other WLAN admins with no desire to move away from their current WLAN infrastructure. Though ClearPass comes from Aruba's developers, it was designed to be an easy add to any business-class wireless network, without requiring a lot of boxes or a mishmash of management windows.

Let's talk about what ClearPass does, which is impressive in scope. It's a RADIUS environment. It competes with the revered CloudPath Xpress Connect for 802.1x supplicant config. It horns in on the MDM market with mobile device management capabilities. It does network access control. And ClearPass provides guest access and management. Perhaps a better question would be, "What doesn't ClearPass do?"

Sized in what amounts to small, medium or large versions, ClearPass is available in appliance or virtualized form factors. Customers wanting all the functionality available can order a bundle, or can go a la carte with licensed modules for each major service. Where appropriate, ClearPass automatically turns knobs and manipulates settings in Aruba's controller-based firewall to deliver many of the security features. Non-Aruba wireless environments benefit from RADIUS-based VLAN steering in the wireless controllers to work the access control magic.

Given that my own large wireless environment is fairly typical and that we rely on four different vendors' solutions to achieve most of the same functionality that ClearPass promises, Aruba is likely on to something. The fact that taming BYOD was among the lead design criteria makes ClearPass that much more interesting. Mobile devices are easily onboarded to the network, classified for role and privilege, and assigned a policy that is enforced throughout the client session. Since many mobile devices are apt to be personally owned by both guests and employees, ClearPass provides a robust options set along with an effective, holistic approach.

Good stuff, ClearPass. But with its announcement, Aruba also has a message for those managing complex wireless environments today: What you think you know about supporting mobile devices in the WLAN world may not be enough. To fix that, a new training course that is claimed to be largely vendor neutral is also being introduced. The Aruba Certified Solutions Professional (ACSP) course is a multimodule, month-long training program that covers timely topics including RF challenges, design options, and how devices like iStuff and Android platforms of all sizes are changing the nature of the WLAN world. I'm not sure yet where this fits in with the likes of a Certified Wireless Network Expert (CWNE), but if Aruba's approach to training is as well-thought-out as its approach to WLAN solutions, it should have value.

Lee Badman has no relationship with Aruba Networks.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
LeeBadman
50%
50%
LeeBadman,
User Rank: Apprentice
3/1/2012 | 2:46:04 AM
re: Aruba Networks Swings Big At BYOD And More With ClearPass
Thanks for the feedback. My wife is an RN, and I have had to take care of HIPAA concerns in our own small medical center. I agree, the BYOD thing is worrisome. To me, IT managers that don't see the issue for what it is and a tidal wave of marketing hype from a burgeoning MDM industry certainly don't help. I don't envy those who have big HIPAA and PCI worries added to what's already a wierd situation. At the same time, those who paint BYOD as "you gotta let everybody bring whatever they want to your network and you gotta make it work for them no matter how poor a fit the device is for the enterprise" also steam me a bit. It's actually OK to draw lines- like if an employee owned device can't do secure wireless, then it can't play. And if a guest stays more than a week, they are no longer a guest and need some other account. Users might bring devices, but you don't have to surrender sensible policy and network operations to BYOD.
telemedik8
50%
50%
telemedik8,
User Rank: Apprentice
2/23/2012 | 7:58:44 PM
re: Aruba Networks Swings Big At BYOD And More With ClearPass
This was a really good article, and I thought the rundown on Aruba ClearPass access management system was very helpful.

We are dealing with the bring your own device ( byod ) from an HIPAA stand point, and how it applied to hospitals who are dealing with doctors and nurses who are texting patient information and files.

While the large enterprise solutions like Aruba ClearPass have a deeply integrates system where the IT department takes control of devices, in a hospital setting I think the doctors will have a large issue with this.

We solved the HIPAA issues related with BYOD texting by using Tigertext ( www.tigertext.com ), which while not as integrated as the large enterprise solutions, offers some interesting benefits of a closed network, low cost ($10 per user), HIPAA compliance for text messaging and it works on most smartphones.

Anyways, I think that this is going to be a major security issue of the next few years, and IT managers are going to have to look at all the alternatives.

Some other resources:

http://byod.us/

http://www.hhs.gov/ocr/privacy...
More Blogs from Commentary
SDN: Waiting For The Trickle-Down Effect
Like server virtualization and 10 Gigabit Ethernet, SDN will eventually become a technology that small and midsized enterprises can use. But it's going to require some new packaging.
IT Certification Exam Success In 4 Steps
There are no shortcuts to obtaining passing scores, but focusing on key fundamentals of proper study and preparation will help you master the art of certification.
VMware's VSAN Benchmarks: Under The Hood
VMware touted flashy numbers in recently published performance benchmarks, but a closer examination of its VSAN testing shows why customers shouldn't expect the same results with their real-world applications.
Building an Information Security Policy Part 4: Addresses and Identifiers
Proper traffic identification through techniques such as IP addressing and VLANs are the foundation of a secure network.
SDN Strategies Part 4: Big Switch, Avaya, IBM,VMware
This series on SDN products concludes with a look at Big Switch's updated SDN strategy, VMware NSX, IBM's hybrid approach, and Avaya's focus on virtual network services.
Hot Topics
3
Converged Infrastructure: 3 Considerations
Bill Kleyman, National Director of Strategy & Innovation, MTM Technologies,  4/16/2014
2
Heartbleed's Network Effect
Kelly Jackson Higgins, Senior Editor, Dark Reading,  4/16/2014
White Papers
Register for Network Computing Newsletters
Cartoon
Current Issue
Video
Slideshows
Twitter Feed