Security

last person joined: an hour ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

CLEARPASS POLICY MANAGER ARUBA 360 SECURITY EXCHANGE QUARTERLY INTEGRATION NEWSLETTER #6

This thread has been viewed 6 times

  • 1.  CLEARPASS POLICY MANAGER ARUBA 360 SECURITY EXCHANGE QUARTERLY INTEGRATION NEWSLETTER #6

    Posted Dec 19, 2019 01:40 AM

    ARUBA 360 SECURITY EXCHANGE QUARTERLY INTEGRATION NEWSLETTER

      

    CONTENTS

    • NEW AND UPDATED CLEARPASS POLICY MANAGER INTEGRATIONS THIS QUARTER
    • IN CASE YOU MISSED LAST QUARTER’S NEWSLETTER
    • WHERE TO FIND STUFF
    • WHAT WE WANT FROM YOU? 

     

     

    NEW AND UPDATED CLEARPASS POLICY MANANGER INTEGRATIONS THIS QUARTER

    This quarter we focused on improving a number of our existing integrations and adding a few new ones. We’ve updated our Symantec Endpoint Protection Manager and made a minor update to our VMware Workspace One real-time update process. We have a couple of new integrations for you that we’ve releasing, Mosyle, a MDM player that is very successful in the K-12 and academia vertical and Medigate a Medical IoT security vendor. Finally this month we’ve completely re-written the ClearPass Policy Manager and Palo Alto Integration Guide. This guide has gone through eight previous iterations and had become fragmented with references to old versions and code, this is a fresh new version of the guide.

     

    We believe these improvements or new integrations will continue to enable you to have more meaningful conversations with both existing customers by ensuring they get the most out of their investment in ClearPass Policy Manager as well as prospective customers looking at us versus the competition.

     

     

    Mosyle – NEW

    Most K-12 schools want visibility and control of the devices students and faculty connect to the network. Being able to make intelligent decisions about these devices becomes much easier if there is a source of truth for the devices that can be used. Integrating with an MDM enables an easy way to ensure only authorized devices can connect to the network. If the device is unknown, provide a workflow that enables the student or teacher to self-remediate and enroll the device, if the device is not running the latest s/w direct the user to update their device, if its jailbroken, quarantine it on the network, and so on. Mosyle is a very successful MDM vendor in the K-12 market, specializing exclusively in the Apple eco-system for iOS, macOS and tv-OS.

    Why this maters to you? – For K-12 customer’s this provides an essential and almost invaluable integration that’s delivers an enhanced layer of security for any connected device to the network be it known or unknown.


    Medigate – NEW
    Medical IoT {MIoT} has started to get a lot if visibility, similar in a way to Industrial IoT {IIoT}, it’s highly specialized and security vendors playing in this space are laser focused exclusively on the MIoT space. Identifying connected devices within the medical space is a specialty technology, seeing beyond the regular device-type, device-os is a necessity, not a nice to have. There is no point identifying a MRI machine as a Windows Computer {if its running embedded windows} where the devices functionality and classification is very different. Being able to identify devices on your network with CVE vulnerabilities, firmware or their serial numbers is again a necessity. Our new integration with Medigate provides an enhanced level of visibility into the MIoT world of connected devices, Medigate automatically provisions endpoint with content into the ClearPass Endpoint database.

    Why this maters to you? – Having the visibility and context from Medigate enables the deployment of a centralized security access policy for all devices connected to the network.


    VMware Workspace One – Updated
    Since releasing this integration one of the items specifically requested was the need to have the exchange integration tag endpoints as “unknown” when they are being deleted from within VMware Workspace One, so that they be removed from the ClearPass Endpoint database by normal Policy Manager housekeeping. This update provides an additional switch in the extension config to enable this functionality.
    Why this maters to you? – Maintaining a consistent view of your managed network devices is critical, if there is high turn-over or a need to just remove deleted/retired devices from the ClearPass Endpoint database this optional feature lets you chooses how you want to manage your devices.


    Symantec Endpoint Protection Manager – Updated
    The original SEPM integration was released in 2018, this new version delivers a number of changes and improvements. The integration now pre-appends “SEPM” to all of the endpoint attributes added to Endpoints. We’ve updated the configuration of the polling process which controls the full or delta-changes update process, it’s now based upon a unix style CRON job scheduler. Finally, for this new version we exposed the ability to set the returned page size of Endpoints we retrieve from the remote SEPM per API call, this allows the load on the SEPM server to be better controlled.
    Why this maters to you? –     Standardizing the experience and functionality across our extensive Extension estate, adding incremental updates.


    Palo Alto Networks Integration Guide – Updated
    We’ve re-written the integration guide to bring it up to date and remove a large amount of dated content. In this new guide, we’ve taken some of the content from the ‘other’ advanced integration guide and added a new section covering the use of the Ingress Event Engine and its configuration and thus retiring the old advanced guide with this new single guide.

    Why this maters to you? – We’ve streamlined your reading of this guide by removing old redundant content. Being able to leverage all of the capabilities of our integrations enables you to build a more secure environment.

     

     

     

    IN CASE YOU MISSED LAST QUARTER’S NEWSLETTER

    We announced several new and updated integrations which we are re-listing below for those that missed it. For a more detailed description of the below integrations from the last quarter use this link to read more and why they are useful and valuable to you and our customers. 

    • JAMF ZuluDesk – NEW
    • Palo Alto Networks GlobalProtect - NEW
    • Nozomi Networks - NEW
    • HCL BigFix - Updated
    • Envoy - Updated

    You can also find a complete list of all the Aruba 360 Security Exchange Quarterly announcement here on our community site.


    WHERE TO FIND STUFF

    Everyone including customer and partners can find the documents on the community site located here, this is a NEW landing page which will become the source of access to all ClearPass Documentation.

    https://www.arubanetworks.com/clearpassdocs

     

     
    WHAT WE WANT FROM YOU? 

    We always want your feedback on the integrations we deliver, good or bad. What we like to hear from you is what integrations are you are seeing or hearing about in your accounts today, what’s missing, what do you need to help you win?

     

     

    Finally, A big thanks to the ClearPass Engineering and QA team for helping us develop, validate and update these integrations!

     

     

    Danny Jump, Arpit Bhatt & Anish Pansare