Aruba ClearPass

Additional features

Secure network with policies based on zero trust security

Implements a security model that assumes no user or device is inherently trustworthy.

Support for hybrid workplace initiatives

Enables secure access for employees working from various locations and using different devices.

Support for IoT devices

Provides secure connectivity and access control for the growing number of Internet of Things devices on the network.

Support for edge computing

Extends secure access policies to devices and applications at the network edge.

Simplify access for authorized users

Makes it easier for legitimate users to connect to the network resources they need.

"Least privilege" controls

Grants users and devices only the necessary level of access to perform their tasks, minimizing potential damage.

Secure visitors, partners, customers, and employees

Offers different levels of access and security for various types of network users.

Connectivity to Wi-Fi networks

Manages and secures wireless network access.

Connectivity to wired networks

Controls access for devices connected via Ethernet cables.

Connectivity to WAN networks

Extends secure access policies across wide area network connections.

Built-in solutions

Offers integrated functionalities for common security needs.

Pre-configured guest portals

Provides ready-to-use web pages for guest users to authenticate and access the network.

Device configuration monitoring

Continuously checks if connected devices comply with defined security policies.

Adherence to zero trust security principles

Ensures the network access control follows the core tenets of zero trust.

Adherence to SASE security principles

Supports the Secure Access Service Edge framework for integrated network and security services.

Enable IT teams to deploy robust policies

Offers the tools and flexibility to create and enforce strong security policies.

Role-based policies for implementing zero trust security

Allows defining access based on the roles and responsibilities of users and devices.

Massive partner ecosystem

Benefits from a large network of technology partners for extended functionality and integration.

Seamless integration with existing security technology

Works smoothly with other security products already in place.

Reduce risk with traffic segmentation

Limits the impact of security breaches by isolating network traffic based on identity.

Consistent protection with identity-based access

Enforces access control based on the identity of the user or device, regardless of connection type.

Dynamically enforced access across wired networks

Access privileges are automatically adjusted based on real-time conditions and policies for wired connections.

Dynamically enforced access across wireless networks

Access privileges are automatically adjusted based on real-time conditions and policies for wireless connections.

Dynamically enforced access across WAN networks

Access privileges are automatically adjusted based on real-time conditions and policies for wide area network connections.

Cloud-native network access control

Built and operates in the cloud, offering scalability and flexibility.

Zero trust protection for modern networks

Specifically designed to address the security challenges of today's complex networks.

Security from the edge to the cloud

Provides consistent security policies across the entire network infrastructure.

Centralized access policy definition

Allows administrators to define and manage all access policies from a single point.

Enforcement throughout the network

Ensures that defined access policies are consistently applied across all network segments and connection types.

Eliminate network blind spots

Provides visibility into all connected devices and user activities on the network.

Leverage network telemetry

Utilizes data collected from network devices to gain insights and improve security.

Apply ML-based classification models

Uses machine learning to categorize and understand the characteristics of connected devices.

Fingerprint connected devices

Creates unique identifiers for devices to accurately track and manage them.

Identify connected devices

Determines the type and nature of devices connecting to the network.

Profile connected devices

Gathers information about the behavior and risk level of connected devices.

Visibility across wired infrastructure

Provides insights and control over devices connected to the wired network.

Visibility across wireless infrastructure

Offers insights and control over devices connected to the wireless network.

Visibility across WAN infrastructure

Extends visibility and control to devices and traffic on the wide area network.

SASE solutions from edge to cloud

Offers components that align with the Secure Access Service Edge architecture.

Choice of best-of-breed components

Allows organizations to select individual security solutions that best fit their needs.

Choice of all-in-one components

Provides integrated security solutions for simplified management.

Rich ecosystem of security partners

Offers a wide variety of integrations and complementary solutions from other vendors.

Integrates with 150+ third-party IT systems

Works with a large number of other security and IT management tools.

Share information with the rest of the security ecosystem

Can exchange threat intelligence and context with other security systems.

Receive third-party security alerts

Can ingest security alerts from other systems to inform access control decisions.

Change access privileges to respond to an attack

Automatically adjusts user and device permissions based on detected threats.

Authentication of users

Verifies the identity of users trying to access the network.

Authorization of users

Determines what resources and actions authenticated users are allowed to access.

Enforcement of secure network access control

Actively applies the defined access policies to control network access.

Role-based network policies

Defines access based on the user's role within the organization.

ClearPass Policy Manager product

The core software component providing these features.

ClearPass Scaling and Ordering Guide (resource)

Provides information on how to size and purchase ClearPass licenses and components.

HPE Aruba Networking Cloud Auth (resource)

Details a cloud-based NAC solution from Aruba.

HPE Aruba Networking ClearPass Overview (resource)

Provides a general introduction to ClearPass capabilities.

HPE Aruba Networking Client Insights (solution)

Describes a solution for gaining visibility into connected devices using AI.

HPE Aruba Networking ClearPass Device Insight (data sheet)

Details a feature that uses machine learning for device profiling and security.

HPE GreenLake integration

Works with HPE's cloud platform for deployment and management.

HPE Managed IT Compliance (additional security solution)

A related service for managing IT compliance.

HPE GreenLake for Disaster Recovery (additional security solution)

A related service for data protection and recovery.

Unified control plane for HPE GreenLake cloud services

Provides a single interface for managing various HPE cloud services.

Consistent, open, and extensible cloud operating experience

Offers a standardized and flexible way to interact with HPE cloud services.

Support for various workloads and data locations

Can manage security for applications and data wherever they reside.