SlideShare une entreprise Scribd logo

2012 ah emea deploying byod

Aruba, a Hewlett Packard Enterprise company
Aruba, a Hewlett Packard Enterprise company
VoyagesTechnologie
1  sur  19
Télécharger pour lire hors ligne
CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 1 #airheadsconf#airheadsconf DEPLOYING BYOD: ONBOARDING, PROVISIONING, POLICY, REPORTING
2 2 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. The BYOD Challenges Trusted • Company-owned • Fully managed • Fully controlled Corporate Liable Employee Liable Tolerated • Company or Employee owned • Limited visibility • Limited control How do I: • Maintain visibility & control? • Deliver secure, differentiated access? • Simplify device provisioning? Requirement: Securely Onboard Mobile Devices
3 3 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Is your Network ready for BYOD? • The buzz is uncontrollable – Any device, any user, any time • What have we learnt from the originators of BYOD…? • Education has been doing BYOD for years – Lots of diverse devices to manage = lots of helpdesk calls – Securing the network and the application is key – Expand cloud applications or VDI • So from a security perspective – BYOD is driving the need for a more intelligent access control network
4 4 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Join the BYOD Domain • Supplicant Config • Push Trusted Cert • Enable Posture • Set Auth type • Enrolment workflow • Authorize User to provision device • Device credential push • Link User to Device • Complete view device & network • Command & Control • Inventory • Diagnostics • Revoke Device Access • Device Profiling • Role Derivation • Corp vs Employee Liable Device Access Controls Join BYOD Domain Visibility & Reporting Onboard Device 1 2 3 4
CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 5 #airheadsconfcommunity.arubanetworks.com #airheadsconf BYOD Building Blocks
6 6 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Foundation Technologies for BYOD • Device Profiling – Accurately determine device, force enrollment or deny access • Enrollment and Provisioning Workflow – Clean user self managed onboarding process, no IT involvement • Context Aware Policy Definition Point (PDP) – Implement business policy for BYOD access, multi-contextual • Granular Policy Enforcement at the Access Layer – Stateful firewalling, Application Aware, Bandwidth Constraints • BYOD lifecycle management – Device inventory, revoke network access, more to come . . .
7 7 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. ClearPass Profile Session Info Device Visibility Per Classification Real- time tracking
8 8 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. User and Device Policy Example Profile dB Device Classification “Auto Profile” 1 Type Family Category 1. All devices auto profiled 2. Device information mapped to classification for policy and proper access 3. Granular access based on device type and identity Example: Executive level user connects to network with iPad 2, and ClearPass Profile matches device to category, family and type to apply full access policy 2 3 User & Device ClearPass Policy
9 9 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Enrollment & Provisioning Workflow Limited Access Zone Active Directory Device Credential Access Network ClearPass Policy Manager 1. Authorize BYOD enrollment based on AD credentials 2. Register device type & ownership Provision a unique device credential for that user & device 3. + Revoke access for devices that are lost or stolen 4.
10 10 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Onboard Provisioning
11 11 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Integrated Captive Portal 1. Device type is auto detected and user prompted to commence workflow 2. Settings and credentials are auto configured on device 3. User is automatically placed on secure SSID or network segment upon completion of onboarding
12 12 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Context Aware Policy Definition Point Policy VPN
13 13 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Intuitive Policy Definition Service Authentication Authorization Roles Posture Audit Enforcement
14 14 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Granular Policy Enforcement at the Access Layer Policy Enforcement Firewall (PEF) Instant AP Mobility ControllerMobility Access Switch Identify the Connection Classify the Traffic Control Optimize the Air Follow the UserAccess per Packet 1101010001001111100
15 15 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Enforce on any Network! POLICY DECISION ClearPass Policy Manager POLICY ENFORCEMENT: Policy Enforcement Optimized for Mobility Any Network
16 16 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. BYOD lifecycle management Revoke Device Network Access Device Inventory Data Realtime Dashboard of BYOD Access Enforcement of BYOD Access Policies
17 17 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Distributed Architecture ClearPass Policy Manager DNS/DHCP Identity Stores LDAP/AD Main Data Center Mid-size Branch Regional Office DMZ • Centralized/Distributed Administrative Domains • Redundancy/Load Balancing • Cluster wide licenses VM CCPM Node ClearPass Guest/Onboard CPPM Node CPPM Profile
18 18 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. 5 Tips for BYOD • Define your BYOD Access Policy – Limited Access Zone, Which devices, Bandwidth Contracts • Device Aware Access Network – Device Profiling, ability to force enrollment workflow • Granular Policy Definition & Enforcement – Centralized policy creation, role based enforcement • User Managed Onboarding Process – Avoid Help Desk load, install trusted certs, profile device details • Method to Revoke Device Access Critical – Unique device credential, lost device or employee leaves
CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 19 #airheadsconfcommunity.arubanetworks.com #airheadsconf Thank You

Recommandé

2012 ah apj deploying byod
2012 ah apj deploying byod2012 ah apj deploying byod
2012 ah apj deploying byod
Aruba, a Hewlett Packard Enterprise company
 
2012 ah vegas guest access fundamentals
2012 ah vegas guest access fundamentals2012 ah vegas guest access fundamentals
2012 ah vegas guest access fundamentals
Aruba, a Hewlett Packard Enterprise company
 
BYOD with ClearPass
BYOD with ClearPassBYOD with ClearPass
BYOD with ClearPass
Aruba, a Hewlett Packard Enterprise company
 
2012 ah apj wlan design fundamentals
2012 ah apj wlan design fundamentals2012 ah apj wlan design fundamentals
2012 ah apj wlan design fundamentals
Aruba, a Hewlett Packard Enterprise company
 
Airheads vail 2011 pci 2.0 compliance
Airheads vail 2011 pci 2.0 complianceAirheads vail 2011 pci 2.0 compliance
Airheads vail 2011 pci 2.0 compliance
Aruba, a Hewlett Packard Enterprise company
 
Airheads vail 2011 air wave overview
Airheads vail 2011 air wave overviewAirheads vail 2011 air wave overview
Airheads vail 2011 air wave overview
Aruba, a Hewlett Packard Enterprise company
 
Clear passbasics derinmellor
Clear passbasics derinmellorClear passbasics derinmellor
Clear passbasics derinmellor
Aruba, a Hewlett Packard Enterprise company
 
Security advanced rich langston_jon green
Security advanced rich langston_jon greenSecurity advanced rich langston_jon green
Security advanced rich langston_jon green
Aruba, a Hewlett Packard Enterprise company
 

Recommandé

2012 ah apj deploying byod
2012 ah apj deploying byod2012 ah apj deploying byod
2012 ah apj deploying byod
Aruba, a Hewlett Packard Enterprise company
 
2012 ah vegas guest access fundamentals
2012 ah vegas guest access fundamentals2012 ah vegas guest access fundamentals
2012 ah vegas guest access fundamentals
Aruba, a Hewlett Packard Enterprise company
 
BYOD with ClearPass
BYOD with ClearPassBYOD with ClearPass
BYOD with ClearPass
Aruba, a Hewlett Packard Enterprise company
 
2012 ah apj wlan design fundamentals
2012 ah apj wlan design fundamentals2012 ah apj wlan design fundamentals
2012 ah apj wlan design fundamentals
Aruba, a Hewlett Packard Enterprise company
 
Airheads vail 2011 pci 2.0 compliance
Airheads vail 2011 pci 2.0 complianceAirheads vail 2011 pci 2.0 compliance
Airheads vail 2011 pci 2.0 compliance
Aruba, a Hewlett Packard Enterprise company
 
Airheads vail 2011 air wave overview
Airheads vail 2011 air wave overviewAirheads vail 2011 air wave overview
Airheads vail 2011 air wave overview
Aruba, a Hewlett Packard Enterprise company
 
Clear passbasics derinmellor
Clear passbasics derinmellorClear passbasics derinmellor
Clear passbasics derinmellor
Aruba, a Hewlett Packard Enterprise company
 
Security advanced rich langston_jon green
Security advanced rich langston_jon greenSecurity advanced rich langston_jon green
Security advanced rich langston_jon green
Aruba, a Hewlett Packard Enterprise company
 
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Aruba, a Hewlett Packard Enterprise company
 
Building an aruba proof of concept lab javier urtubia
Building an aruba proof of concept lab javier urtubiaBuilding an aruba proof of concept lab javier urtubia
Building an aruba proof of concept lab javier urtubia
Aruba, a Hewlett Packard Enterprise company
 
Aruba wireless and clear pass 6 integration guide v1 1.3
Aruba wireless and clear pass 6 integration guide v1 1.3Aruba wireless and clear pass 6 integration guide v1 1.3
Aruba wireless and clear pass 6 integration guide v1 1.3
Aruba, a Hewlett Packard Enterprise company
 
Do d directives regarding wireless lan
Do d directives regarding wireless lanDo d directives regarding wireless lan
Do d directives regarding wireless lan
Aruba, a Hewlett Packard Enterprise company
 
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Aruba, a Hewlett Packard Enterprise company
 
Airheads barcelona 2010 securing wireless la ns
Airheads barcelona 2010 securing wireless la nsAirheads barcelona 2010 securing wireless la ns
Airheads barcelona 2010 securing wireless la ns
Aruba, a Hewlett Packard Enterprise company
 
Physically securing the wireless installation
Physically securing the wireless installationPhysically securing the wireless installation
Physically securing the wireless installation
Aruba, a Hewlett Packard Enterprise company
 
Remote Wireless LANs
Remote Wireless LANsRemote Wireless LANs
Remote Wireless LANs
Aruba, a Hewlett Packard Enterprise company
 
2012 ah emea advanced mobility design
2012 ah emea advanced mobility design2012 ah emea advanced mobility design
2012 ah emea advanced mobility design
Aruba, a Hewlett Packard Enterprise company
 
Spectralink airheads 2013
Spectralink airheads 2013Spectralink airheads 2013
Spectralink airheads 2013
Aruba, a Hewlett Packard Enterprise company
 
Mobility switch security architecture scott calzia madani adjali
Mobility switch security architecture scott calzia madani adjaliMobility switch security architecture scott calzia madani adjali
Mobility switch security architecture scott calzia madani adjali
Aruba, a Hewlett Packard Enterprise company
 
Airheads dallas 2011 wireless security
Airheads dallas 2011 wireless securityAirheads dallas 2011 wireless security
Airheads dallas 2011 wireless security
Aruba, a Hewlett Packard Enterprise company
 
Encryption authentication access_control_jon green
Encryption authentication access_control_jon greenEncryption authentication access_control_jon green
Encryption authentication access_control_jon green
Aruba, a Hewlett Packard Enterprise company
 
Access Management with Aruba ClearPass #AirheadsConf Italy
Access Management with Aruba ClearPass #AirheadsConf ItalyAccess Management with Aruba ClearPass #AirheadsConf Italy
Access Management with Aruba ClearPass #AirheadsConf Italy
Aruba, a Hewlett Packard Enterprise company
 
Airheads vail 2011 amigopod overview
Airheads vail 2011 amigopod overviewAirheads vail 2011 amigopod overview
Airheads vail 2011 amigopod overview
Aruba, a Hewlett Packard Enterprise company
 
2012 ah vegas wlan design for high density
2012 ah vegas wlan design for high density2012 ah vegas wlan design for high density
2012 ah vegas wlan design for high density
Aruba, a Hewlett Packard Enterprise company
 
2012 ah vegas wlan design fundamentals
2012 ah vegas wlan design fundamentals2012 ah vegas wlan design fundamentals
2012 ah vegas wlan design fundamentals
Aruba, a Hewlett Packard Enterprise company
 
2012 ah apj mobile device fundamentals
2012 ah apj mobile device fundamentals2012 ah apj mobile device fundamentals
2012 ah apj mobile device fundamentals
Aruba, a Hewlett Packard Enterprise company
 
2 top10 tips from aruba tac rizwan shaikh
2 top10 tips from aruba tac rizwan shaikh2 top10 tips from aruba tac rizwan shaikh
2 top10 tips from aruba tac rizwan shaikh
Aruba, a Hewlett Packard Enterprise company
 
Top 10 tips_aruba_tac_madison lee
Top 10 tips_aruba_tac_madison leeTop 10 tips_aruba_tac_madison lee
Top 10 tips_aruba_tac_madison lee
Aruba, a Hewlett Packard Enterprise company
 
2012 ah vegas deploying byod
2012 ah vegas deploying byod2012 ah vegas deploying byod
2012 ah vegas deploying byod
Aruba, a Hewlett Packard Enterprise company
 
Aruba webinar dorm wi fi design v4
Aruba webinar dorm wi fi design v4Aruba webinar dorm wi fi design v4
Aruba webinar dorm wi fi design v4
Aruba, a Hewlett Packard Enterprise company
 

Contenu connexe

Tendances

Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Aruba, a Hewlett Packard Enterprise company
 
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Aruba, a Hewlett Packard Enterprise company
 

Tendances (20)

Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
Case study migrating 1800 a ps to 7240 mobility controllers_douglas burke_ste...
 
Building an aruba proof of concept lab javier urtubia
Building an aruba proof of concept lab javier urtubiaBuilding an aruba proof of concept lab javier urtubia
Building an aruba proof of concept lab javier urtubia
 
Aruba wireless and clear pass 6 integration guide v1 1.3
Aruba wireless and clear pass 6 integration guide v1 1.3Aruba wireless and clear pass 6 integration guide v1 1.3
Aruba wireless and clear pass 6 integration guide v1 1.3
 
Do d directives regarding wireless lan
Do d directives regarding wireless lanDo d directives regarding wireless lan
Do d directives regarding wireless lan
 
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
Byod and guest access workshop enabling byod carlos gomez gallego_network ser...
 
Airheads barcelona 2010 securing wireless la ns
Airheads barcelona 2010 securing wireless la nsAirheads barcelona 2010 securing wireless la ns
Airheads barcelona 2010 securing wireless la ns
 
Physically securing the wireless installation
Physically securing the wireless installationPhysically securing the wireless installation
Physically securing the wireless installation
 
Remote Wireless LANs
Remote Wireless LANsRemote Wireless LANs
Remote Wireless LANs
 
2012 ah emea advanced mobility design
2012 ah emea advanced mobility design2012 ah emea advanced mobility design
2012 ah emea advanced mobility design
 
Spectralink airheads 2013
Spectralink airheads 2013Spectralink airheads 2013
Spectralink airheads 2013
 
Mobility switch security architecture scott calzia madani adjali
Mobility switch security architecture scott calzia madani adjaliMobility switch security architecture scott calzia madani adjali
Mobility switch security architecture scott calzia madani adjali
 
Airheads dallas 2011 wireless security
Airheads dallas 2011 wireless securityAirheads dallas 2011 wireless security
Airheads dallas 2011 wireless security
 
Encryption authentication access_control_jon green
Encryption authentication access_control_jon greenEncryption authentication access_control_jon green
Encryption authentication access_control_jon green
 
Access Management with Aruba ClearPass #AirheadsConf Italy
Access Management with Aruba ClearPass #AirheadsConf ItalyAccess Management with Aruba ClearPass #AirheadsConf Italy
Access Management with Aruba ClearPass #AirheadsConf Italy
 
Airheads vail 2011 amigopod overview
Airheads vail 2011 amigopod overviewAirheads vail 2011 amigopod overview
Airheads vail 2011 amigopod overview
 
2012 ah vegas wlan design for high density
2012 ah vegas wlan design for high density2012 ah vegas wlan design for high density
2012 ah vegas wlan design for high density
 
2012 ah vegas wlan design fundamentals
2012 ah vegas wlan design fundamentals2012 ah vegas wlan design fundamentals
2012 ah vegas wlan design fundamentals
 
2012 ah apj mobile device fundamentals
2012 ah apj mobile device fundamentals2012 ah apj mobile device fundamentals
2012 ah apj mobile device fundamentals
 
2 top10 tips from aruba tac rizwan shaikh
2 top10 tips from aruba tac rizwan shaikh2 top10 tips from aruba tac rizwan shaikh
2 top10 tips from aruba tac rizwan shaikh
 
Top 10 tips_aruba_tac_madison lee
Top 10 tips_aruba_tac_madison leeTop 10 tips_aruba_tac_madison lee
Top 10 tips_aruba_tac_madison lee
 

En vedette

8 software defined networking and traffic engineering partha narasimhan_ash c...
8 software defined networking and traffic engineering partha narasimhan_ash c...8 software defined networking and traffic engineering partha narasimhan_ash c...
8 software defined networking and traffic engineering partha narasimhan_ash c...
Aruba, a Hewlett Packard Enterprise company
 

En vedette (20)

2012 ah vegas deploying byod
2012 ah vegas deploying byod2012 ah vegas deploying byod
2012 ah vegas deploying byod
 
Aruba webinar dorm wi fi design v4
Aruba webinar dorm wi fi design v4Aruba webinar dorm wi fi design v4
Aruba webinar dorm wi fi design v4
 
2012 ah vegas top10 tips from aruba tac
2012 ah vegas top10 tips from aruba tac2012 ah vegas top10 tips from aruba tac
2012 ah vegas top10 tips from aruba tac
 
2012 ah apj guest access fundamentals
2012 ah apj guest access fundamentals2012 ah apj guest access fundamentals
2012 ah apj guest access fundamentals
 
2012 ah vegas unified access fundamentals
2012 ah vegas unified access fundamentals2012 ah vegas unified access fundamentals
2012 ah vegas unified access fundamentals
 
Security intermediate practical cryptography_certs_and 802.1_x_rich langston...
Security intermediate practical cryptography_certs_and 802.1_x_rich langston...Security intermediate practical cryptography_certs_and 802.1_x_rich langston...
Security intermediate practical cryptography_certs_and 802.1_x_rich langston...
 
Aruba instant the easy button for wireless gokul rajagopalan
Aruba instant the easy button for wireless gokul rajagopalanAruba instant the easy button for wireless gokul rajagopalan
Aruba instant the easy button for wireless gokul rajagopalan
 
Gigabit wifi 802.11 ac in depth_peter thornycroft
Gigabit wifi 802.11 ac in depth_peter thornycroftGigabit wifi 802.11 ac in depth_peter thornycroft
Gigabit wifi 802.11 ac in depth_peter thornycroft
 
Guest wlan via gu iv3
Guest wlan via gu iv3Guest wlan via gu iv3
Guest wlan via gu iv3
 
Mac authentication amigopod radius
Mac authentication amigopod radiusMac authentication amigopod radius
Mac authentication amigopod radius
 
Creating an 802 1 xv3
Creating an 802 1 xv3Creating an 802 1 xv3
Creating an 802 1 xv3
 
Hello instant 0612_1a
Hello instant 0612_1aHello instant 0612_1a
Hello instant 0612_1a
 
2012 ah vegas remote networking fundamentals
2012 ah vegas remote networking fundamentals2012 ah vegas remote networking fundamentals
2012 ah vegas remote networking fundamentals
 
Aruba networks webinar_wi-fi_without_interruption_sep20_2012
Aruba networks webinar_wi-fi_without_interruption_sep20_2012Aruba networks webinar_wi-fi_without_interruption_sep20_2012
Aruba networks webinar_wi-fi_without_interruption_sep20_2012
 
8 software defined networking and traffic engineering partha narasimhan_ash c...
8 software defined networking and traffic engineering partha narasimhan_ash c...8 software defined networking and traffic engineering partha narasimhan_ash c...
8 software defined networking and traffic engineering partha narasimhan_ash c...
 
Clear pass access management basics zach jennings
Clear pass access management basics zach jenningsClear pass access management basics zach jennings
Clear pass access management basics zach jennings
 
Industry breakout government military forum_jon green_stuart schulte
Industry breakout government military forum_jon green_stuart schulteIndustry breakout government military forum_jon green_stuart schulte
Industry breakout government military forum_jon green_stuart schulte
 
Creating an 802 1 xv3
Creating an 802 1 xv3Creating an 802 1 xv3
Creating an 802 1 xv3
 
Advanced rf troubleshooting_peter lane
Advanced rf troubleshooting_peter laneAdvanced rf troubleshooting_peter lane
Advanced rf troubleshooting_peter lane
 
Mac address authentication
Mac address authenticationMac address authentication
Mac address authentication
 

Similaire à 2012 ah emea deploying byod

Secure Enterprise Mobility
Secure Enterprise MobilitySecure Enterprise Mobility
Secure Enterprise Mobility
Aruba, a Hewlett Packard Enterprise company
 
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
Sergiy Pitel
 
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Ivanti
 
Securing Internal Applications with Cloudflare Access - April 2018
Securing Internal Applications with Cloudflare Access - April 2018Securing Internal Applications with Cloudflare Access - April 2018
Securing Internal Applications with Cloudflare Access - April 2018
Meghan Weinreich
 
Ebc collab portfolio_master
Ebc collab portfolio_masterEbc collab portfolio_master
Ebc collab portfolio_master
dakins090174
 
Securing Internal Applications with Cloudflare Access
Securing Internal Applications with Cloudflare AccessSecuring Internal Applications with Cloudflare Access
Securing Internal Applications with Cloudflare Access
Cloudflare
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
Gen-i
 

Similaire à 2012 ah emea deploying byod (20)

Adaptive Trust Security
Adaptive Trust SecurityAdaptive Trust Security
Adaptive Trust Security
 
Secure Enterprise Mobility
Secure Enterprise MobilitySecure Enterprise Mobility
Secure Enterprise Mobility
 
2012 ah apj keynote - technology update
2012 ah apj keynote - technology update2012 ah apj keynote - technology update
2012 ah apj keynote - technology update
 
Cisco Meraki Overview | Voyager Networks
Cisco Meraki Overview | Voyager NetworksCisco Meraki Overview | Voyager Networks
Cisco Meraki Overview | Voyager Networks
 
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
cisco-20meraki-20overview-20-285-29-140501114803-phpapp01
 
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
Cybersecurity Insiders Webinar - Zero Trust: Best Practices for Securing the...
 
Shanghai Breakout: Access Management with Aruba ClearPass
Shanghai Breakout: Access Management with Aruba ClearPassShanghai Breakout: Access Management with Aruba ClearPass
Shanghai Breakout: Access Management with Aruba ClearPass
 
Enable your networks to support enterprise mobility
Enable your networks to support enterprise mobilityEnable your networks to support enterprise mobility
Enable your networks to support enterprise mobility
 
Implementing Secure Access & Mobile Identity
Implementing Secure Access & Mobile IdentityImplementing Secure Access & Mobile Identity
Implementing Secure Access & Mobile Identity
 
Securing Internal Applications with Cloudflare Access - April 2018
Securing Internal Applications with Cloudflare Access - April 2018Securing Internal Applications with Cloudflare Access - April 2018
Securing Internal Applications with Cloudflare Access - April 2018
 
BYOD without Compromise
BYOD without CompromiseBYOD without Compromise
BYOD without Compromise
 
Adaptive Trust for Strong Network Security
Adaptive Trust for Strong Network SecurityAdaptive Trust for Strong Network Security
Adaptive Trust for Strong Network Security
 
Ebc collab portfolio_master
Ebc collab portfolio_masterEbc collab portfolio_master
Ebc collab portfolio_master
 
Cloudflare Access
Cloudflare AccessCloudflare Access
Cloudflare Access
 
ClearPass Overview
ClearPass OverviewClearPass Overview
ClearPass Overview
 
Securing Internal Applications with Cloudflare Access
Securing Internal Applications with Cloudflare AccessSecuring Internal Applications with Cloudflare Access
Securing Internal Applications with Cloudflare Access
 
3 reasons-sdp-is-replacing-vpn-in-2019
3 reasons-sdp-is-replacing-vpn-in-20193 reasons-sdp-is-replacing-vpn-in-2019
3 reasons-sdp-is-replacing-vpn-in-2019
 
Cisco's Cloud Networking Powered by Meraki
Cisco's Cloud Networking Powered by MerakiCisco's Cloud Networking Powered by Meraki
Cisco's Cloud Networking Powered by Meraki
 
ReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered serviceReadyCloud Collaboration, a Cisco Powered service
ReadyCloud Collaboration, a Cisco Powered service
 
7.5 steps to overlaying byod & iot
7.5 steps to overlaying byod & iot7.5 steps to overlaying byod & iot
7.5 steps to overlaying byod & iot
 

Plus de Aruba, a Hewlett Packard Enterprise company

Plus de Aruba, a Hewlett Packard Enterprise company (20)

Airheads Tech Talks: Cloud Guest SSID on Aruba Central
Airheads Tech Talks: Cloud Guest SSID on Aruba CentralAirheads Tech Talks: Cloud Guest SSID on Aruba Central
Airheads Tech Talks: Cloud Guest SSID on Aruba Central
 
Airheads Tech Talks: Understanding ClearPass OnGuard Agents
Airheads Tech Talks: Understanding ClearPass OnGuard AgentsAirheads Tech Talks: Understanding ClearPass OnGuard Agents
Airheads Tech Talks: Understanding ClearPass OnGuard Agents
 
Airheads Tech Talks: Advanced Clustering in AOS 8.x
Airheads Tech Talks: Advanced Clustering in AOS 8.xAirheads Tech Talks: Advanced Clustering in AOS 8.x
Airheads Tech Talks: Advanced Clustering in AOS 8.x
 
EMEA Airheads_ Advance Aruba Central
EMEA Airheads_ Advance Aruba CentralEMEA Airheads_ Advance Aruba Central
EMEA Airheads_ Advance Aruba Central
 
EMEA Airheads_ Aruba AppRF – AOS 6.x & 8.x
EMEA Airheads_ Aruba AppRF – AOS 6.x & 8.xEMEA Airheads_ Aruba AppRF – AOS 6.x & 8.x
EMEA Airheads_ Aruba AppRF – AOS 6.x & 8.x
 
EMEA Airheads- Switch stacking_ ArubaOS Switch
EMEA Airheads- Switch stacking_ ArubaOS SwitchEMEA Airheads- Switch stacking_ ArubaOS Switch
EMEA Airheads- Switch stacking_ ArubaOS Switch
 
EMEA Airheads- LACP and distributed LACP – ArubaOS Switch
EMEA Airheads- LACP and distributed LACP – ArubaOS SwitchEMEA Airheads- LACP and distributed LACP – ArubaOS Switch
EMEA Airheads- LACP and distributed LACP – ArubaOS Switch
 
Introduction to AirWave 10
Introduction to AirWave 10Introduction to AirWave 10
Introduction to AirWave 10
 
EMEA Airheads- Virtual Switching Framework- Aruba OS Switch
EMEA Airheads- Virtual Switching Framework- Aruba OS SwitchEMEA Airheads- Virtual Switching Framework- Aruba OS Switch
EMEA Airheads- Virtual Switching Framework- Aruba OS Switch
 
EMEA Airheads- Aruba Central with Instant AP
EMEA Airheads- Aruba Central with Instant APEMEA Airheads- Aruba Central with Instant AP
EMEA Airheads- Aruba Central with Instant AP
 
EMEA Airheads- AirGroup profiling changes across 8.1 & 8.2 – ArubaOS 8.x
EMEA Airheads- AirGroup profiling changes across 8.1 & 8.2 – ArubaOS 8.xEMEA Airheads- AirGroup profiling changes across 8.1 & 8.2 – ArubaOS 8.x
EMEA Airheads- AirGroup profiling changes across 8.1 & 8.2 – ArubaOS 8.x
 
EMEA Airheads- Getting Started with the ClearPass REST API – CPPM
EMEA Airheads- Getting Started with the ClearPass REST API – CPPMEMEA Airheads- Getting Started with the ClearPass REST API – CPPM
EMEA Airheads- Getting Started with the ClearPass REST API – CPPM
 
EMEA Airheads - AP Discovery Logic and AP Deployment
EMEA Airheads - AP Discovery Logic and AP DeploymentEMEA Airheads - AP Discovery Logic and AP Deployment
EMEA Airheads - AP Discovery Logic and AP Deployment
 
EMEA Airheads- Layer-3 Redundancy for Mobility Master - ArubaOS 8.x
EMEA Airheads- Layer-3 Redundancy for Mobility Master - ArubaOS 8.xEMEA Airheads- Layer-3 Redundancy for Mobility Master - ArubaOS 8.x
EMEA Airheads- Layer-3 Redundancy for Mobility Master - ArubaOS 8.x
 
EMEA Airheads- Manage Devices at Branch Office (BOC)
EMEA Airheads- Manage Devices at Branch Office (BOC)EMEA Airheads- Manage Devices at Branch Office (BOC)
EMEA Airheads- Manage Devices at Branch Office (BOC)
 
EMEA Airheads - What does AirMatch do differently?v2
EMEA Airheads - What does AirMatch do differently?v2 EMEA Airheads - What does AirMatch do differently?v2
EMEA Airheads - What does AirMatch do differently?v2
 
Airheads Meetups: 8400 Presentation
Airheads Meetups: 8400 PresentationAirheads Meetups: 8400 Presentation
Airheads Meetups: 8400 Presentation
 
Airheads Meetups: Ekahau Presentation
Airheads Meetups: Ekahau PresentationAirheads Meetups: Ekahau Presentation
Airheads Meetups: Ekahau Presentation
 
Airheads Meetups- High density WLAN
Airheads Meetups- High density WLANAirheads Meetups- High density WLAN
Airheads Meetups- High density WLAN
 
Airheads Meetups- Avans Hogeschool goes Aruba
Airheads Meetups- Avans Hogeschool goes ArubaAirheads Meetups- Avans Hogeschool goes Aruba
Airheads Meetups- Avans Hogeschool goes Aruba
 

Dernier

Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceKanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Damini Dixit
 
WhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
WhatsApp Chat: 📞 8617697112 Independent Call Girls in DarjeelingWhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
WhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
Nitya salvi
 
Ooty call girls 📞 8617697112 At Low Cost Cash Payment Booking
Ooty call girls 📞 8617697112 At Low Cost Cash Payment BookingOoty call girls 📞 8617697112 At Low Cost Cash Payment Booking
Ooty call girls 📞 8617697112 At Low Cost Cash Payment Booking
Nitya salvi
 
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
Nitya salvi
 
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
Nitya salvi
 
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment BookingJhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
Nitya salvi
 
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
Abortion pills in Riyadh +966572737505 get cytotec
 
sample sample sample sample sample sample
sample sample sample sample sample samplesample sample sample sample sample sample
sample sample sample sample sample sample
Casey Keith
 
Sample sample sample sample sample sample
Sample sample sample sample sample sampleSample sample sample sample sample sample
Sample sample sample sample sample sample
Casey Keith
 
08448380779 Call Girls In Chirag Enclave Women Seeking Men
08448380779 Call Girls In Chirag Enclave Women Seeking Men08448380779 Call Girls In Chirag Enclave Women Seeking Men
08448380779 Call Girls In Chirag Enclave Women Seeking Men
Delhi Call girls
 
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
Damini Dixit
 
Hire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
Hire 💕 8617697112 Chamba Call Girls Service Call Girls AgencyHire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
Hire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
Nitya salvi
 
Study Consultants in Lahore || 📞03094429236
Study Consultants in Lahore || 📞03094429236Study Consultants in Lahore || 📞03094429236
Study Consultants in Lahore || 📞03094429236
Sherazi Tours
 
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
Delhi Call girls
 
visa consultant | 📞📞 03094429236 || Best Study Visa Consultant
visa consultant | 📞📞 03094429236 || Best Study Visa Consultantvisa consultant | 📞📞 03094429236 || Best Study Visa Consultant
visa consultant | 📞📞 03094429236 || Best Study Visa Consultant
Sherazi Tours
 

Dernier (20)

Hire 💕 8617697112 Champawat Call Girls Service Call Girls Agency
Hire 💕 8617697112 Champawat Call Girls Service Call Girls AgencyHire 💕 8617697112 Champawat Call Girls Service Call Girls Agency
Hire 💕 8617697112 Champawat Call Girls Service Call Girls Agency
 
Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort ServiceKanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
Kanpur Call Girls Service ☎ ️82500–77686 ☎️ Enjoy 24/7 Escort Service
 
WhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
WhatsApp Chat: 📞 8617697112 Independent Call Girls in DarjeelingWhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
WhatsApp Chat: 📞 8617697112 Independent Call Girls in Darjeeling
 
Ooty call girls 📞 8617697112 At Low Cost Cash Payment Booking
Ooty call girls 📞 8617697112 At Low Cost Cash Payment BookingOoty call girls 📞 8617697112 At Low Cost Cash Payment Booking
Ooty call girls 📞 8617697112 At Low Cost Cash Payment Booking
 
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
Night 7k to 12k Lahaul and Spiti Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Esco...
 
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
Night 7k to 12k Daman Call Girls 👉👉 8617697112⭐⭐ 100% Genuine Escort Service ...
 
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment BookingJhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
Jhargram call girls 📞 8617697112 At Low Cost Cash Payment Booking
 
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
CYTOTEC DUBAI ☎️ +966572737505 } Abortion pills in Abu dhabi,get misoprostal ...
 
sample sample sample sample sample sample
sample sample sample sample sample samplesample sample sample sample sample sample
sample sample sample sample sample sample
 
Genuine 8250077686 Hot and Beautiful 💕 Visakhapatnam Escorts call Girls
Genuine 8250077686 Hot and Beautiful 💕 Visakhapatnam Escorts call GirlsGenuine 8250077686 Hot and Beautiful 💕 Visakhapatnam Escorts call Girls
Genuine 8250077686 Hot and Beautiful 💕 Visakhapatnam Escorts call Girls
 
Sample sample sample sample sample sample
Sample sample sample sample sample sampleSample sample sample sample sample sample
Sample sample sample sample sample sample
 
08448380779 Call Girls In Chirag Enclave Women Seeking Men
08448380779 Call Girls In Chirag Enclave Women Seeking Men08448380779 Call Girls In Chirag Enclave Women Seeking Men
08448380779 Call Girls In Chirag Enclave Women Seeking Men
 
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
High Profile 🔝 8250077686 📞 Call Girls Service in Siri Fort🍑
 
Hire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
Hire 💕 8617697112 Chamba Call Girls Service Call Girls AgencyHire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
Hire 💕 8617697112 Chamba Call Girls Service Call Girls Agency
 
Are Vatican Museum Tickets and Private Tours Worth It
Are Vatican Museum Tickets and Private Tours Worth ItAre Vatican Museum Tickets and Private Tours Worth It
Are Vatican Museum Tickets and Private Tours Worth It
 
Study Consultants in Lahore || 📞03094429236
Study Consultants in Lahore || 📞03094429236Study Consultants in Lahore || 📞03094429236
Study Consultants in Lahore || 📞03094429236
 
Genesis 1:6 || Meditate the Scripture daily verse by verse
Genesis 1:6 || Meditate the Scripture daily verse by verseGenesis 1:6 || Meditate the Scripture daily verse by verse
Genesis 1:6 || Meditate the Scripture daily verse by verse
 
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
2k Shots ≽ 9205541914 ≼ Call Girls In Tagore Garden (Delhi)
 
visa consultant | 📞📞 03094429236 || Best Study Visa Consultant
visa consultant | 📞📞 03094429236 || Best Study Visa Consultantvisa consultant | 📞📞 03094429236 || Best Study Visa Consultant
visa consultant | 📞📞 03094429236 || Best Study Visa Consultant
 
Genuine 8250077686 Hot and Beautiful 💕 Amaravati Escorts call Girls
Genuine 8250077686 Hot and Beautiful 💕 Amaravati Escorts call GirlsGenuine 8250077686 Hot and Beautiful 💕 Amaravati Escorts call Girls
Genuine 8250077686 Hot and Beautiful 💕 Amaravati Escorts call Girls
 

2012 ah emea deploying byod

  • 1. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 1 #airheadsconf#airheadsconf DEPLOYING BYOD: ONBOARDING, PROVISIONING, POLICY, REPORTING
  • 2. 2 2 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. The BYOD Challenges Trusted • Company-owned • Fully managed • Fully controlled Corporate Liable Employee Liable Tolerated • Company or Employee owned • Limited visibility • Limited control How do I: • Maintain visibility & control? • Deliver secure, differentiated access? • Simplify device provisioning? Requirement: Securely Onboard Mobile Devices
  • 3. 3 3 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Is your Network ready for BYOD? • The buzz is uncontrollable – Any device, any user, any time • What have we learnt from the originators of BYOD…? • Education has been doing BYOD for years – Lots of diverse devices to manage = lots of helpdesk calls – Securing the network and the application is key – Expand cloud applications or VDI • So from a security perspective – BYOD is driving the need for a more intelligent access control network
  • 4. 4 4 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Join the BYOD Domain • Supplicant Config • Push Trusted Cert • Enable Posture • Set Auth type • Enrolment workflow • Authorize User to provision device • Device credential push • Link User to Device • Complete view device & network • Command & Control • Inventory • Diagnostics • Revoke Device Access • Device Profiling • Role Derivation • Corp vs Employee Liable Device Access Controls Join BYOD Domain Visibility & Reporting Onboard Device 1 2 3 4
  • 5. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 5 #airheadsconfcommunity.arubanetworks.com #airheadsconf BYOD Building Blocks
  • 6. 6 6 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Foundation Technologies for BYOD • Device Profiling – Accurately determine device, force enrollment or deny access • Enrollment and Provisioning Workflow – Clean user self managed onboarding process, no IT involvement • Context Aware Policy Definition Point (PDP) – Implement business policy for BYOD access, multi-contextual • Granular Policy Enforcement at the Access Layer – Stateful firewalling, Application Aware, Bandwidth Constraints • BYOD lifecycle management – Device inventory, revoke network access, more to come . . .
  • 7. 7 7 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. ClearPass Profile Session Info Device Visibility Per Classification Real- time tracking
  • 8. 8 8 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. User and Device Policy Example Profile dB Device Classification “Auto Profile” 1 Type Family Category 1. All devices auto profiled 2. Device information mapped to classification for policy and proper access 3. Granular access based on device type and identity Example: Executive level user connects to network with iPad 2, and ClearPass Profile matches device to category, family and type to apply full access policy 2 3 User & Device ClearPass Policy
  • 9. 9 9 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Enrollment & Provisioning Workflow Limited Access Zone Active Directory Device Credential Access Network ClearPass Policy Manager 1. Authorize BYOD enrollment based on AD credentials 2. Register device type & ownership Provision a unique device credential for that user & device 3. + Revoke access for devices that are lost or stolen 4.
  • 10. 10 10 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Onboard Provisioning
  • 11. 11 11 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Integrated Captive Portal 1. Device type is auto detected and user prompted to commence workflow 2. Settings and credentials are auto configured on device 3. User is automatically placed on secure SSID or network segment upon completion of onboarding
  • 12. 12 12 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Context Aware Policy Definition Point Policy VPN
  • 13. 13 13 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Intuitive Policy Definition Service Authentication Authorization Roles Posture Audit Enforcement
  • 14. 14 14 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Granular Policy Enforcement at the Access Layer Policy Enforcement Firewall (PEF) Instant AP Mobility ControllerMobility Access Switch Identify the Connection Classify the Traffic Control Optimize the Air Follow the UserAccess per Packet 1101010001001111100
  • 15. 15 15 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Enforce on any Network! POLICY DECISION ClearPass Policy Manager POLICY ENFORCEMENT: Policy Enforcement Optimized for Mobility Any Network
  • 16. 16 16 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. BYOD lifecycle management Revoke Device Network Access Device Inventory Data Realtime Dashboard of BYOD Access Enforcement of BYOD Access Policies
  • 17. 17 17 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. Distributed Architecture ClearPass Policy Manager DNS/DHCP Identity Stores LDAP/AD Main Data Center Mid-size Branch Regional Office DMZ • Centralized/Distributed Administrative Domains • Redundancy/Load Balancing • Cluster wide licenses VM CCPM Node ClearPass Guest/Onboard CPPM Node CPPM Profile
  • 18. 18 18 CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. 5 Tips for BYOD • Define your BYOD Access Policy – Limited Access Zone, Which devices, Bandwidth Contracts • Device Aware Access Network – Device Profiling, ability to force enrollment workflow • Granular Policy Definition & Enforcement – Centralized policy creation, role based enforcement • User Managed Onboarding Process – Avoid Help Desk load, install trusted certs, profile device details • Method to Revoke Device Access Critical – Unique device credential, lost device or employee leaves
  • 19. CONFIDENTIAL © Copyright 2012. Aruba Networks, Inc. All rights reserved 19 #airheadsconfcommunity.arubanetworks.com #airheadsconf Thank You