The problem of trying to control access to Federal wireless networks has become increasingly challenging with the introduction of handheld devices into the workplace, especially distinguishing between a handheld device that is authorized GFE versus employees personal devices. The most effective method for controlling which devices are authorized to access the network is to utilize machine-based certificates that are only valid for one specific device. Although this sounds somewhat straight forward, it may prove to be a daunting task to administer certificates for thousands, tens-of-thousands, or even hundreds-of-thousands devices.
Aruba ClearPass Policy Manger can simplify the administration, setup, and issuing of machine-based certificates. With an incorporated CA (Certificate of Authority) the process of creating, distributing, and even revoking these certificates is simplified even to the level of minimal to no user intervention required. Along with the Guest and On-Board software modules, CPPM is the answer to many BYOD challenges that federal customers face.
Without the introduction of CPPM into the wireless network authentication stream, the available solutions are limited and the administration often becomes cumbersome, requiring several point products that do not work well together.