Security

Reply
Occasional Contributor II

CPPM Cluster Design + MDM Integration

Hi Airheads Community, Good Day! I am new here and a bit new in this technology. I would like to ask something about my setup, I am currently running in CPPM cluster mode with 1 Primary Publisher and 1 Standby Publisher. I also have 24 subscribers connected to my publishers. Now, I want to integrate MDM for the BYOD. Do I need to integrate it to all nodes (publishers and subscribers) or in the publishers only? Also, do CPPM will download the data from the MDM or CPPM will just do a lookup? Thanks
Guru Elite

Re: CPPM Cluster Design + MDM Integration

All configuration happens on the publisher. You only configure the EMM integration on the publisher.

 

The active publisher will download the endpoint information from the EMM provider.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: CPPM Cluster Design + MDM Integration

Hi Capalli, Good Day! Thanks for the fast feedback, if the publisher will download the endpoint information from the MDM/EMM, how much is the total endpoints that can handle the CPPM? Thanks
Guru Elite

Re: CPPM Cluster Design + MDM Integration

There is no hard count.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: CPPM Cluster Design + MDM Integration

Hi cappalli,

 

Good Day!

 

Meaning no limitation? Does the hard disk of the appliance and the VM version of ClearPass can handle roughly 360,000+ endpoints including its MDM attributes? This number of endpoints came fom the MDM because someone told me that once we integrate the CPPM to an MDM, the CPPM will download all endpoints including the its MDM attributes from the MDM server and stores it in the CPPM's local drive.

 

Thanks

Guru Elite

Re: CPPM Cluster Design + MDM Integration

We have customers with millions of endpoints.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: CPPM Cluster Design + MDM Integration

Hi cappalli,

 

Good Day!

 

Thanks for that fast reply. Here is my next concern, let us say I successfully integrated my CPPM to MDM and CPPM downloaded the massive volume of endpoint database from my MDM.

 

The question is, does those endpoints can authenticate concurrently or it will still depends on the license that we bought?

 

Thanks

Guru Elite

Re: CPPM Cluster Design + MDM Integration

Endpoint database != license count. You can store as many endpoints are required. Licensing is calculated based on authenticating endpoints.

 

Are you working with your Aruba or partner account team?


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: CPPM Cluster Design + MDM Integration

Hi cappalli,

 

thanks again for the help.

 

Meaning if I bought CP-25K appliance or VM, my CPPM can only authenticate 25K concurrently?

 

But how about 1 endpoint successfully authenticates, does that endpoint will still hold the 1 license count or it will release it?

 

Thanks

Guru Elite

Re: CPPM Cluster Design + MDM Integration

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: