TechLeague

    Aruba

    Aruba ClearPass: NAC deployment that survives audits

    TechLeague Editorial··8 min read

    ClearPass is the NAC that wins multi-vendor environments. Designed well, it passes auditors and keeps users productive.

    Architecture

    • Publisher + subscribers; geographic redundancy.
    • HA pair per site for low latency auth.

    Authentication

    • 802.1X with EAP-TLS for managed devices.
    • MAB with profiling fallback for printers/IoT.

    Posture

    • OnGuard agent for managed endpoints.
    • Continuous health check and quarantine VLAN.

    OnBoard

    • Self-service cert provisioning for BYOD.
    • Per-user cert revocation.

    Multi-vendor

    • Cisco, Juniper, HPE all supported via RADIUS.
    • Aruba CX integration via downloadable user roles.

    Train NAC and segmentation in a TechLeague tournament.