Secure Your Network Where It Counts
05-02-2018 11:36 AM
Wired Intelligent Edge Per-User Dynamic Segmentation
Per-user dynamic segmentation builds on top Aruba’s per-port dynamic segmentation, formally called per port or per user tunneled node. Per port dynamic segmentation allowed the switch to tunnel traffic to an Aruba Mobility controller on a per-port basis. Per user dynamic segmentation now gives the capability to tunnel traffic on a per-user client basis, tunneling traffic of a given client or device based on an assigned user role. The policies associated with that client could be driven through a RADIUS server such as ClearPass or by local user authentication in the switch.
Many devices that require power over Ethernet (PoE) and network access, such as security cameras, payment card readers, medical devices, do not have built in security software such as a desktop or laptop computer would. These devices can pose a risk to networks with the lack security on the device. The process of dynamic segmentation can work here by authenticating these devices using ClearPass, tunneling the client traffic, and harnessing the firewall and policy capabilities in the Aruba mobility controller. This can provide secure access to IoT devices within the Aruba wired intelligent edge network.
SR. DIRECTOR TME, ARUBA WIRED INTELLIGENT EDGE
CAMPUS / DATA CENTER
M: 414.841.3605 | firstname.lastname@example.org
8000 FOOTHILLS BLVD | ROSEVILLE, CA 95747 USA