Security

Reply

Data port Clearpass

In security stand point it is necessary?

I ask this because i see that we can add rules on the clearpass from where i can access the managment of clearpass, on the same clearpass.

 

we will use clearpass as radius server tacacs server and also as clearpass Guest.

 

The guest users will only have access only to the clearpass through the ports needed for that.  

i would like to keep it simple and just use one port but im not sure if the data port was done also for security purpuses or was for something else in mind?

 

Cheers

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: Data port Clearpass

Using a single interface is recommended.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: Data port Clearpass

Thanks Tim

Just as general knowledge, when i should use DATA port?

 

Cheers

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: Data port Clearpass

You shouldn’t 😊

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: Data port Clearpass

Tim

Why is there then? it was used before for some reason? and now is not used anymore?

 sorry Tim but i really want to know now.... :)

 

Cheers

Carlos

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Guru Elite

Re: Data port Clearpass

To offer flexibility, but we don’t recommend using it as it provides very little security value and adds complexity.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: Data port Clearpass

When you mean security you mean very little extra security or you mean little security at all? i mean that it offer less security than just having one port?

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp

Re: Data port Clearpass

i mean for examplewhen you have  802.1x and the client want to add  mac authentication

it offer little extra  security but its not worth it... it is the same????

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: