No problems, here to help. Comments inline below.
OK, so if Clearpass can visualize all devices on my WLANs, then that means I should be able to detect who has brought thier own device and is trying to access corp resources without informing IT first right? That's one of our biggest concerns, not knowing what's being used by personnel who have enough access.
Absolutely this is a common problem for organizations dealing with BYOD challenges and the ClearPass platform has several approaches to solving them. If you were to go down the path of using our Onboarding technology, each BYO device will be provisioned with a unique device credential as part of the one-time enrollment process. This credential will then be used for all subsequent connections to the secure network. The absence of this credential is then a simple method to detect a new BYO device entering the network and ClearPass can send a different enforcement method back to your WLAN equipment to ensure that the device is redirected to the provisioning portal. This enforcement method will differ from one WLAN vendor to the next but typically there is a method to change how the device is admitted onto the network.
The second approach is to use the ClearPass Profile technology that listens to device identifying data whilst a device connects to the network and use this to identify the device type and apply business rules on how they should be treated. Again ClearPass could use this device context to send a different enforcement method down to your WLAN network to trigger the redirect to the provisioning portal as required.
Does Clearpass also work as a MDM solution? For example, once we ID those BYOD's can we do stuff to them such as remote wipe of just corp data, corp app deployment, etc.?
ClearPass is currently focussed on the provisioning of secure network access and not managing the device itself. We have found with many customers that managing a device that is owned by the employee (BYOD) can create some friction and legal challenges around privacy (geo-location, personal Apps installed etc) and also loss of personal data (family photos, purchased music) that outweigh the need to perform a function such as remote wipe. Many customers are leveraging existing solutions such as Exchange Active Sync's abilitiy to trigger a remote wipe or looking to an MDM solution to tackle the management of their corporate issued mobile devices.
Aruba has partnerships with many of the leading MDM providers if you are interested in an integrated solution.
What document do I need to read to see the nitty gritty details of how Clearpass visualizes the devices on my WLANs and how it ties into my current WAPs/RADIUS server, etc?
Take a look at some of the Deployment Guide and Tech Notes notes published on the support site and definitely work with your local Aruba partner or Account team for further assistance on your project.