Aruba ClearPass Onboard Aruba Data Sheet CLEARPASS ONBOARD A ClearPass Policy Manager Application ClearPass Onboard automatically provisions and configures personally-owned mobile devices – Windows, Mac OS X, iOS and Android 2.2 and above – enabling them to securely connect to the network in support of BYOD initiatives. With ClearPass Onboard, it’s easy for employees, contractors and partners to self-configure their own mobile devices. The ClearPass registration portal automatically detects a device’s operating system and presents the user with the appropriate configuration package. ClearPass Onboard provides an incredibly simple way to configure wireless, wired and VPN settings, apply unique device credentials, and ensure that users securely connect their devices to 802.1X-enabled networks with minimal IT involvement. The result is a streamlined workflow that allows IT helpdesk personnel to automate and secure multiple processes that are required to successfully carry out BYOD initiatives while improving the user experience. ClearPass Onboard also significantly increases the amount of actionable information that is captured for troubleshooting, user- and device-based policies, and compliance and reporting requirements. THE CLEARPASS ADVANTAGE With the industry’s most advanced auto-provisioning features for BYOD, onboarding thousands of devices is amazingly simple through a customizable portal, integrated policy management, and built-in certificate authority. Automated mobile device provisioning and configuration for secure BYOD ClearPass Onboard lets users securely and automatically provision and configure their own smartphones, tablets and laptops. ClearPass Policy Manager™ ClearPass Onboard Portal INTRANET VLAN ACCESS METHODS Applications INTERNET VPN Customized provisioning A centrally-managed onboarding portal guides users through the auto-configuration of certificate and trust details, network access, VPN, health check settings, and security protocols for wireless and wired. ClearPass Onboard also enables IT organizations to set limits on the maximum allowable number of onboarded devices per user and determine how long their certificates will remain valid. Policy management With ClearPass, IT can use profiling information and data collected during onboarding to enforce device categorization and role-based network access policies. Centrally-defined policies also limit the types of devices that can be onboarded and which users can onboard them. KEY FEATURES • Enables users to self-register and securely onboard multiple devices • Supports Windows, Mac OS X, iOS and Android operating systems • Automates the configuration of network settings for wired and wireless endpoints • Unique provisioning and revocation of device-specific credentials • Contains built-in certificate authority • Uses profiling to identify device type, manufacturer and model • Provides BYOD visibility and centralized policy management capabilities
3
Embed
A ClearPass Policy Manager Application · 2013. 9. 2. · Aruba ClearPass Onboard Aruba Data Sheet ClearPass OnbOard A ClearPass Policy Manager Application ClearPass Onboard automatically
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Aruba ClearPass Onboard Aruba Data Sheet
ClearPass OnbOard A ClearPass Policy Manager Application
ClearPass Onboard automatically provisions and configures personally-owned mobile devices – Windows, Mac OS X, iOS and Android 2.2 and above – enabling them to securely connect to the network in support of BYOD initiatives.
With ClearPass Onboard, it’s easy for employees, contractors and partners to self-configure their own mobile devices. The ClearPass registration portal automatically detects a device’s operating system and presents the user with the appropriate configuration package.
ClearPass Onboard provides an incredibly simple way to configure wireless, wired and VPN settings, apply unique device credentials, and ensure that users securely connect their devices to 802.1X-enabled networks with minimal IT involvement.
The result is a streamlined workflow that allows IT helpdesk personnel to automate and secure multiple processes that are required to successfully carry out BYOD initiatives while improving the user experience.
ClearPass Onboard also significantly increases the amount of actionable information that is captured for troubleshooting, user- and device-based policies, and compliance and reporting requirements.
The ClearPass advanTage
With the industry’s most advanced auto-provisioning features for BYOD, onboarding thousands of devices is amazingly simple through a customizable portal, integrated policy management, and built-in certificate authority.
automated mobile device provisioning and configuration for secure bYOd
ClearPass Onboard lets users securely and automatically provision and configure their own smartphones, tablets and laptops.
ClearPassPolicy Manager™
ClearPass Onboard Portal
xxxxxxxx
xxxx
xxxxxxxx
ClearPass Policy Manager
INTRANET VLAN
ACCESS METHODS
Applications
INTERNET
VPN
Customized provisioning
A centrally-managed onboarding portal guides users through the auto-configuration of certificate and trust details, network access, VPN, health check settings, and security protocols for wireless and wired.
ClearPass Onboard also enables IT organizations to set limits on the maximum allowable number of onboarded devices per user and determine how long their certificates will remain valid.
Policy management
With ClearPass, IT can use profiling information and data collected during onboarding to enforce device categorization and role-based network access policies. Centrally-defined policies also limit the types of devices that can be onboarded and which users can onboard them.
Key features
• Enables users to self-register and securely onboard multiple devices
• Supports Windows, Mac OS X, iOS and Android operating systems
• Automates the configuration of network settings for wired and wireless endpoints
• Unique provisioning and revocation of device-specific credentials
and model• Provides BYOD visibility and centralized policy
management capabilities
Aruba ClearPass Onboard Aruba Data Sheet
As a result, an IT organization can standardize on Apple Mac OS X and iOS devices to kick off a corporate BYOD initiative or define specific groups of employees or departments that can onboard any category of device.
advanCed OnbOardIng CaPabIlITIes
Managing unique device credentials
The distribution of published device credentials through ClearPass Onboard protects organizations that want to adopt BYOD initiatives without implementing an external certificate authority.
ClearPass Onboard leverages the certificate authority within the ClearPass Policy Manager platform to publish unique credentials that include certificate information as well as user and device data.
Revocation of unique credentials
Easy-to-use search and menu-driven capabilities ensure the rapid revocation and deletion of certificates for specific mobile devices if a user leaves an organization or the mobile device is lost or stolen.
Supported EAP methods*
• PEAP – EAP-MSCHAPv2• EAP-TLS
ClearPass Onboard features customizable settings for secure network access.
Details of unique credentials for onboarded BYOD endpoints.
Aruba ClearPass Onboard Aruba Data Sheet
OrderIng gUIdanCe
ClearPass Onboard can be ordered via dedicated Onboard-only subscription that includes ArubaCare support or perpetual licenses. Available Enterprise options provide the ability for organizations to flexibly use the licenses for ClearPass Onboard, Guest or OnGuard.
Ordering ClearPass Onboard involves the following three steps:
1. Determine the number of unique BYOD endpoint that users will provision within your environment.
2. Choose the appropriate ClearPass Policy Manager hardware or virtual appliance to accommodate the total number from above.
3. Select the capacity to accommodate the total number of provisioned devices from the ClearPass Onboard options. Anything over the capacity of a base appliance will require the purchase of a second ClearPass Policy Manager appliance.
* Subscription and enterprise licenses can be purchased in 1-, 3- or 5-year increments for 100, 500, 1,000, 2,500, 5,000, 10,000, 25,000, 50,000, and 100,000 endpoints.
** Extended with support contract
Example: To support the provisioning of 2,000 devices, make sure that ClearPass Policy Manager is sized to accommodate 2,000 devices and that users will authenticate via 802.1X or MAC auth.
Purchase the following:
• ClearPass Hardware Appliance - CP-HA-5K
• ClearPass Onboard - 2 X LIC-CP-OB-1K
Additional ClearPass Onboard capacity can be purchased at any time to meet growth demands.