Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access.
You can securely connect different types of devices to the network and get identity access control for human or non-human entities. This helps our company to control user access to exactly what we need. I like that it can also do Mac authentication. We could then apply different policies for different types of devices.
If you need diverse network segmentation, Aruba ClearPass gives you the ability to restrict what your users can access. On the downside, it was a kind of frustrating to set up and we needed outside help for installing it. However, once we set it up, it was very easy to manage.
The standards are compatible with almost any device with 802.1X capability. It saves us from having to separate users by running multiple SSIDs. We can easily create guest accounts for visitors and specify their permission levels.
I see Cisco ISE as more suited to managing high-privilege access. With it, you can assign privileges and access levels according to the user and device, which improves the user experience since the access level is set depending on the device. We find it very useful for users that need to log in physically or via remote VPN access.
The end-to-end visibility helps implement a zero-trust-security approach. However, the integration of third-party products is limited, and the interface is not very user-friendly. Integrating with social networks could be a good idea for authenticating guests.
Conclusions
In my opinion, Cisco ISE is a very valuable product that is great for accounting, authorization, and authentication. However, Aruba ClearPass has the advantage of solving very different authentication scenarios, so in my opinion, in these days of remote and hybrid working, it has the upper hand.
Hello community,
I am a Senior Network Administrator at a large financial services firm.
What are the requirements for integrating the Cisco Data Center and Cisco ISE?
Thank you for your help.
Senior Technical Consultant at International Turnkey Systems - ITS
Mar 9, 2023
Hi Anyman
1- first you need to enable pixgrid setting at CIsco ISE at Admin setting.
2- You Need to activate ISE as Radius in DNA Setting tab at the left corner (user name and password is any ISE administrator user ).
3- From Network Hierarchy Tab in DNA Cisco choose ISE as your AAA server.
4- You need to create STG group at policy tab to create the proper user grouping.
4-Then go to provision / fabric / switch interface then apply ISE as your authentication profile.
Most Importantly you need to ensure that your fabric switch has DNA advantage license
Hello community,
I work for a large financial service firm in India.
I am looking for a local vendor who can perform a POC for Aruba ClearPass on our premises.
Which vendor would you recommend?
Thank you for your help.
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias.
Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why.
You can read user reviews for the top Top 5 Network Access Control (NAC) S...
The wireless network has been one of the critical pillars in Guangdong Technion-Israel Insitute of Technology(GTIIT) since its birth in 2017, connecting well over 75% of different types of mobile devices and shouldering over 90% of network traffic from end-user devices to internal servers or internet resources. The IT Department faces considerable challenges.
All staff and students rely on th...
Aruba ClearPass is a Network Access Control tool that gives secure network access to multiple device types. You can adapt the policies to VPN access, wired, or wireless access.
You can securely connect different types of devices to the network and get identity access control for human or non-human entities. This helps our company to control user access to exactly what we need. I like that it can also do Mac authentication. We could then apply different policies for different types of devices.
If you need diverse network segmentation, Aruba ClearPass gives you the ability to restrict what your users can access. On the downside, it was a kind of frustrating to set up and we needed outside help for installing it. However, once we set it up, it was very easy to manage.
The standards are compatible with almost any device with 802.1X capability. It saves us from having to separate users by running multiple SSIDs. We can easily create guest accounts for visitors and specify their permission levels.
I see Cisco ISE as more suited to managing high-privilege access. With it, you can assign privileges and access levels according to the user and device, which improves the user experience since the access level is set depending on the device. We find it very useful for users that need to log in physically or via remote VPN access.
The end-to-end visibility helps implement a zero-trust-security approach. However, the integration of third-party products is limited, and the interface is not very user-friendly. Integrating with social networks could be a good idea for authenticating guests.
Conclusions
In my opinion, Cisco ISE is a very valuable product that is great for accounting, authorization, and authentication. However, Aruba ClearPass has the advantage of solving very different authentication scenarios, so in my opinion, in these days of remote and hybrid working, it has the upper hand.