Overview
What is Aruba ClearPass?
Aruba ClearPass is network access control (NAC) technology from HPE company Aruba Networks. Aruba acquired Avenda and its eTips NAC in 2011.
TrustRadius Insights
Best NAC server out there at the moment, but needs improvement in training materials and support
Most useful NAC product
Aruba Clearpass
ClearPass Integration in a University Environment
Aruba ClearPass delivers
Clearpass: Everything you hope for and more from a network access control system
Simplifies day-to-day operations
Reviewer Pros & Cons
Pricing
What is Aruba ClearPass?
Aruba ClearPass is network access control (NAC) technology from HPE company Aruba Networks. Aruba acquired Avenda and its eTips NAC in 2011.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
36 people also want pricing
Alternatives Pricing
What is NordLayer?
NordLayer provides cybersecurity tools for businesses of any size or work model developed by the standard of NordVPN. NordLayer helps organizations secure networks and enhance internet security and modernizes network and resource access with technical improvements aligning with the best regulatory…
What is Twingate?
Twingate allows businesses to secure remote access to their private applications, data, and environments, whether they are on-premise or in the cloud. Built to make the lives of DevOps teams, IT teams, and end users easier, it replaces outdated corporate VPNs which were not built to handle a world…
Product Demos
Aruba Clearpass - Employee Device OnGuard Demo
ClearPass 6.6 Multi-factor authentication: demo network access with ImageWare GoVerifyID biometrics
Aruba Clearpass - Wired 802.1x Demo
[ATM16 Demo] Connect and Protect Building IoT with Aruba ClearPass
Aruba Clearpass - Sponsored Guest Access Demo
ClearPass 6.6 Multi-factor authentication: demo Onboarding with SMS confirmation
Product Details
- About
- Tech Details
- FAQs
What is Aruba ClearPass?
Aruba ClearPass Video
Aruba ClearPass Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(43)Community Insights
- Business Problems Solved
- Pros
- Cons
This product is a versatile network access control system that is used in wired and wireless networks for information security purposes. It offers features such as NAC, RADIUS, and TACACS to ensure the security of network connections. With its ability to dynamically assign devices with certificates to VLAN groups in wired networks and restrict their authority with DACL, it provides a robust solution for controlling network access.
One key use case of this product is user authentication. It can be utilized for authenticating users in connection to various network and security products through the TACACS feature. This not only enhances the overall security of the network but also simplifies the authentication process for users. Additionally, it serves as a primary authentication platform for organizations, like universities, providing TACACS for management and RADIUS services for 802.1X authentication.
Another important use case is guest and BYOD network security in wireless networks. By authenticating wireless devices and assigning users to appropriate VLANs based on their membership in AD security groups, this product ensures the security of guest and BYOD networks. Moreover, it creates guest accounts for visitors, granting them access to the internet while restricting access to internal systems.
In addition to these use cases, the product also addresses wireless authentication problems in a reliable and scalable manner. By managing devices on wireless networks and providing a registration portal page for guest users, it simplifies the process of managing network access for both employees and visitors. Furthermore, it reduces management overhead for IT staff while enhancing convenience for users.
Overall, this product serves as an essential network access control system that addresses various security needs in both wired and wireless networks. Its user-friendly features and robust functionality make it a valuable tool for organizations seeking to enhance their information security measures while simplifying network management tasks.
Wide range of compatible devices: Many users have found the wide range of compatible devices in ClearPass to be helpful, as it allows for easy integration with various systems. This flexibility enables users to seamlessly connect and manage their network infrastructure without any compatibility issues.
Easy-to-understand rule-writing structure: The hierarchical and easy-to-understand rule-writing structure in ClearPass has been appreciated by several users. This feature simplifies the process of configuring access for different devices and purposes, making it convenient for users to set up and manage user authentication rules.
Seamless integration with Microsoft Active Directory: Users have praised the seamless integration of ClearPass with Microsoft Active Directory. This functionality allows for efficient user authentication and eliminates the need for multiple SSIDs, streamlining the user experience while ensuring secure network access.
Difficult Rule Editing: Users have found it challenging to edit and save rules in ClearPass, particularly when navigating to the end of the page. They have expressed difficulty in making rule modifications and successfully saving them.
Limited OR Operations: Reviewers have mentioned that ClearPass does not allow performing an OR operation within a rule. As a result, they are required to write multiple rules instead, which can be time-consuming and cumbersome.
Complex License Structure: Users have reported confusion and difficulty understanding the license structure of ClearPass. The complex nature of the licensing system makes it hard for users to grasp and manage effectively.
Attribute Ratings
Reviews
(1-8 of 8)Clearpass NAC solution is top of game!
- Reliable
- Informative dashboards
- Priced well
- Integrates into non-aruba platforms
- Easy to install patches
- Little downtime
- The user interface is outdated
- Support is not as responsive as it used to be
- I'd like to be able to build dashboards
Best NAC server out there at the moment, but needs improvement in training materials and support
- Wireless authentication with EAP-TLS.
- Wireless guest access with self-registration.
- Interfacing with Aruba wireless controllers.
- Very good logging/troubleshooting.
- Wired NAC with non-Aruba switches is clunky and hard.
- Configuration is not intuitive.
- Training materials online are practically nonexistent.
- Even when given on official training courses, training materials are terrible.
Most useful NAC product
- wide range of compatible devices
- have an easy-to-understand and hierarchical rule-writing structure
- easy-to-use interface and extensive documentation
- seamless MS AD integration
- Going to the end of the page to edit the rules and save them later causes problems.
- An AND operation can be performed within a rule, but an OR operation cannot. therefore having to write too many rules
- The license structure seems very complex at first.
Aruba Clearpass
- Network access control
- Guest network access
- Network segmentation
- More intuitive upgrade process.
- Add in-service software upgrades.
- Use common syntax across the various systems within Clearpass. For instance, monitoring view and guest view use different syntax's.
ClearPass Integration in a University Environment
- Heavily extensible logic that can solve a myriad of authentication and authorization scenarios.
- Extensive logging for troubleshooting services and device connections
- Standards based and compatible with nearly any device capable of 802.1X.
- Good user base for support and solutions.
- Policy manager and guest sections of ClearPass are disjointed, and where they overlap isn't readily apparent.
- Some changes require a full service restart which can take 5 to 10 minutes.
- Documentation is a bit dense and hard to navigate.
Aruba ClearPass delivers
- It does a great job of authenticating users and eliminating the need for us to run multiple SSIDs to “manually” separate users.
- Integrates well with AD to support assigning users to segments based on security group membership
- It integrates well with our Aruba controller environment
- We’d like to see some logic being applied to the VLAN assignment so that we could do it based on more than one condition - for example, membership in a security group and operating system.
- You can use ClearPass authenticate using wired and wireless network devices. This is helpful that you don't have to have multiple systems to accomplish this.
- Because devices can have different purposes Clearpass can configure groups that will specify what access they have. You can use parameters such as vendor or mac address so clearpass know what group to push them to.
- It is very easy to view device logs. This is really helpful to troubleshoot auth issues. Once you find the device Clearpass provides more than enough info to know what the issue is and to fix it.
- Getting data out of ClearPass is difficult. You can get some with SNMP but he API is lacking. There is only a limited amount of info that you can get from it. Even some data that shows up in ClearPass Insight is not available to import into a 3rd party application.
- In the past, if you have hardware/software issues you could troubleshoot them yourself through the CLI in a Linux type interface but now they have locked everything down and it makes troubleshooting difficult. You have to rely on them for everything. As a person who likes to understand the ins and outs of the systems I manage it is somewhat frustrating.
- Steep learning curve, although support can assist and their forums like airheads can be helpful. This is a complex system and can take a while to grasp how everything works and integrates.
Simplifies day-to-day operations
- Granularity in access.
- Multiple sources of authentication.
- Manage guest and defined users with the same tool.
- Nested configurations can get tiresome and hard to follow.
- More robust reporting.
- Add the ability to search MAC addresses including colons and periods.