Aruba

/Aruba

SSL-VPN With Endpoint Posture Compliance Check in Fortinet VPN and Aruba ClearPass Environment

Introduction With the current pandemic situation most of the employees are working from home by using the VPN connections to their enterprise network. Since the employees are connecting over public network and using their personal devices, it poses a great security risk to respective enterprises. To mitigate this issue, we are integrating Fortinet VPN solution [...]

By | May 11th, 2020|Aruba, ClearPass, Fortigate|0 Comments

VPN Access with Posture Checks using Clearpass Onguard

Introduction A virtual private network, or VPN, is an encrypted connection over the Internet from a device to a network. The encrypted connection helps ensure that sensitive data is safely transmitted. It prevents unauthorized people from eavesdropping on the traffic and allows the user to conduct work remotely. VPN technology is widely used in corporate [...]

By | April 24th, 2020|Aruba, ClearPass|0 Comments

Using Clearpass as an Accounting Proxy server

Clearpass can be used as an accounting proxy to pass on accounting packets from your NAD devices to an external server like a firewall.etc.   Purpose: ClearPass Integration with Fortinet through Radius Accounting (RSSO) would provide the User Data Flow Analysis from user perspective instead of IP address or MAC Address.   Check out the [...]

By | April 8th, 2020|Aruba, BLOG, ClearPass|0 Comments

Virtual Switching Framework

HP Virtual Switching Framework (VSF) technology virtualizes multiple physical devices into one virtual fabric which provides high availability due to a significant reduction in recovery time simplified network design and management. Stacking technology has been around for almost a decade now. But, what makes VSF special is the fact that we don't need dedicated stack [...]

By | April 2nd, 2020|Aruba|0 Comments

Adding Network Devices on Clearpass

The first step towards authenticating your wired, wireless and VPN clients on Clearpass is adding the respective switch or controller on Clearpass.   Check out the video below on how to add them on Clearpass:   https://www.youtube.com/watch?v=91rD8vsaDoc

By | April 2nd, 2020|Aruba, BLOG, ClearPass|0 Comments

Aruba Dynamic Segmentation

Anybody with experience configuring Aruba Mobility Controllers would be aware of how powerful the inbuilt DPI (Deep Packet Inspection) capable stateful firewall is. In a wireless infrastructure, majority of the time, the access points are deployed in tunnel mode which means all client traffic is tunnel from the AP to the controller via GRE encapsulation. [...]

By | March 26th, 2020|Aruba, BLOG|0 Comments

DYNAMIC PATH STEERING

DPS policies are used to determine the WAN circuit that is selected for specific users, applications and destinations. The selected paths can be a single WAN uplink or a group of WAN uplinks for traffic load balancing. Dynamic path selection works based on a list of rules mapped in the policy, threshold settings based on [...]

By | March 19th, 2020|Aruba|0 Comments

Adding licenses on Clearpass

There are multiple features we can use on Clearpass each of which requires a license. These include Platform, Access, Onguard and Onboard. ClearPass Platform Activation Key: The ClearPass Platform License is the base-level license and enables ClearPass on the appliance, including the Policy Manager and Guest user interface. You must have a ClearPass Platform license [...]

By | March 17th, 2020|Aruba, BLOG, ClearPass, ClearPass|0 Comments

Aruba MPSK implementation per user instead of per device

Introduction:   Aruba MPSK was introduced in the AOS release 8.4.x, a feature using which you can leverage the use of different PSK’s for different devices. The traditional approach is well documented in the link below: https://community.arubanetworks.com/t5/Security/Setting-up-MPSK-for-headless-IoT-devices/td-p/522858   Need for per user MPSK:   We at Airowire Networks had the privilege of working with a [...]

By | March 17th, 2020|Aruba, BLOG, ClearPass, ClearPass|0 Comments

Why is it a bad idea to use port 389 for LDAP communication between Clearpass and your Active Directory?

What is LDAP: LDAP stands for Lightweight Directory Access Protocol. As the name suggests, it is a lightweight client-server protocol for accessing directory services, specifically X.500-based directory services. LDAP runs over TCP/IP or other connection-oriented transfer services. LDAP is defined in RFC2251 "The Lightweight Directory Access Protocol (v3).   Connection between LDAP and Clearpass: On [...]

By | February 20th, 2020|Aruba, BLOG, ClearPass, ClearPass|0 Comments