1 / 45

Mobility Matters : Aruba WLAN Solution Introduction Presenter Prakun Laohakittikul Country Manager Aruba Networks , Inc

Aruba Networks. Mobility Matters : Aruba WLAN Solution Introduction Presenter Prakun Laohakittikul Country Manager Aruba Networks , Inc . Thailand. Industry Recognition. Magic Quadrant leader for six years in a row. 7 th fastest growing technology company. 30% YoY WLAN Growth.

loan
Download Presentation

Mobility Matters : Aruba WLAN Solution Introduction Presenter Prakun Laohakittikul Country Manager Aruba Networks , Inc

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Aruba Networks MobilityMatters : Aruba WLANSolution IntroductionPresenterPrakun LaohakittikulCountry ManagerAruba Networks, Inc.Thailand

  2. Industry Recognition Magic Quadrant leader for six years in a row 7th fastest growing technology company 30% YoY WLAN Growth

  3. Trusted by Enterprises Worldwide High Tech Finance Internet Media & Ent. Higher Education Healthcare Government Retail Public Venues Primary Education Public Transit Services Oil & Gas Manufacturing Telecom Hospitality 3

  4. Top of Mind WLAN Requirements BYOD Security& Support Fast & Flexible Deployment From nomadic use to always-on & connected Dependable Wi-Fi for Mobile Apps

  5. WiFi Campus

  6. Advantages of a Mobility Controller 1 2 3 Enforcement across Wired, Wireless, Remote One Touch-Point For IPs & VLANs No Data Sent in the Clear Data Home/Branch Voice Cellular Data Center Wiring Closet Provisioning BYOD Guest Video Remediation Wired, Wireless, Remote VLANs Wireless

  7. Manage the Air Fair distribution of clients across channels eg. Ch 36, 40, 44 Fair distribution of clients across bands eg. 2.4-GHz and 5-GHz Fair distribution of air-time per radio eg. iPad vs. MacBook vs. iPod Channel 1 Channel 6 Channel 11

  8. Full Spectrum Visibility • Cost Effective • Integrated in the Wi-Fi chipset of Aruba 802.11n APs • Does not require costly specialized wireless card or external laptop for monitoring • Fully Featured • 10+ simultaneous views within the Aruba Mobility Controller • Diagnose difficult RF problems remotely • Record and Playback on Demand • Integrated with the NMS • Automated alerts about RF Utilization • Identify APs with RF problems using automated reports

  9. Aruba Networks Security Architecture Secure Data Center Client-to-core session encryption Validations and Accreditations Integrated Wireless IDS Integrated User Access Control including CAC authentication Integrated Stateful User Firewall Broad standards-based secure client support Secure Remote Networks

  10. Per User Firewall AAA FastConnect Role-Based Access Control Access Rights SSID-Based Access Control RADIUS LDAP AD Staff Executive Virtual AP 1 SSID: Corp Finance Contractors Legal Voice HR Virtual AP 2 SSID: GUEST Corporate Services DMZ Video Secure Tunnel To DMZ Guest Captive Portal Guest

  11. DHCP and HTTP signature matching within ArubaOS identifies device type and model Enables per user and per device access control, enrollment, authentication and management Device Fingerprinting Port, VLAN Aware User, Device Aware vs. • All devices and users assigned to same network access policy, increasing risk • Network operations costs increase due to manual troubleshooting and monitoring

  12. AppRF : Application Visibility and Control • New “Firewall” Dashboard UI • Includes summary views of activity by: • Users, Devices, Destinations, Applications, WLANs, Roles • Allows drilling down into details of each

  13. AppRF™ Technology Identify the payload Lync Skype BitTorrent FaceTime Dropbox IP TV AirPlay Adjust RF Unicast Bonjour Optimize Video Limit Bandwidth IncreasePriority AdjustPriority Load Balance Blacklist Device

  14. Port and VLAN Aware ⊗ Limited policy enforcement ⊗ Hard to scale at large sites ⊗ Too costly to manage Key Requirements for Mobility User Aware • Role based access • Per user visibility • Easy to scale Device Aware • Device enrollment • Per device policies • Device inventory New! App Aware • Per application QoS • StatefulQoS for UC • Supports high density Legacy Access Next-Gen Access

  15. Flexible Matters : WLAN Architecture Same AP, multiple modes of operation • Campus Mode • Integrates with high performance controller • Branch Mode • Instant branch network with IPSec VPN to a central controller • Instant • APs form instant campus network • Remote Mode • AP enabled with IPSec VPN connect to a central controller

  16. Branches and Telework with Remote WLANs CORP CORP VOICE VOICE Internet Services Split Tunnel Remote Site Internet Services DMZ Mobility Controller Internet access INTERNET Remote AP Firewall/NAT • Split Tunneling for Internet Traffic • Built-in User-centric Firewall • Integrated User Access Control • HotelConnect™ Captive Portal Pass-Through • Works with any Aruba AP Corporate HQ

  17. Virtual Intranet Agent (VIA) : Solution for Single Remote User

  18. Campus 802.11n Access Points Single/Dual Radio : 2x2 MIMO Dual Radio : 3x3 MIMO Low Density or Air Monitor High Density, Maximum Flexibility AP-92/93 Client Access / Air Monitor / Remote AP Internal or External Antenna Options AP-104/105 AP-134/135 Client Access / Air Monitor / Remote AP Internal or External Antenna Options Single Radio : 1x1 Low Density or Air Monitor Campus Extension AP-68 Client Access / Air Monitor / Remote AP AP-175 Environmentally Hardened Design

  19. Aruba VBN Branch Portfolio Small Branches Home Offices RAP-2wg 2 secure ports 802.11b/g Wi-Fi RAP-3wn/wnp 2secure ports + 1 WAN port 802.11b/g/n USB-WAN Middle Branches Large Branches RAP-108/109 5 secure ports 802.11a/b/g/n USB-WAN RAP-5wn 5 secure ports 802.11a/b/g/n USB-WAN

  20. Controllerless (Aruba Instant) Web-based management and automatic cloud updates Master AP as virtual controller Automatic configuration download Faster setup Faster network Faster maintenance Stronger security

  21. 3x3:3 Dual Radio 5GHz 11ac: up to 1.3Gbps 2.4GHz 11n: up to 450Mbps(600Mbps with Broadcom clients) 2x GE link aggregation Enabling >1Gbps TCP throughput Operates with 802.3af, requires 802.3at for full functionality 802.11ac: Aruba 220 Series Controller-managed & Controllerless

  22. TCP Throughput with 802.11ac Data Rate (Mbps) 830 800 600 280 300 Smartphone 240 Laptop 150 95 802.11ac 802.11n

  23. AirWave Network Management

  24. AirWave: Manage Network Operations Centralized Management Monitoring & Visibility Reporting & Compliance RF Client Wi-Fi Dashboards Device Wired Rogues App Remote Historic Logs & Custom Reports Network

  25. Global Dashboard

  26. Network Usage Report – per SSID

  27. Smart Phone Report for a Group

  28. New Dashboard: Firewall • AppRF(PEF) Visibility • Summary page to display top destinations & applications • Drill down pages similar to ArubaOS • Client diagnostic page to display top 3 apps/destinations

  29. ARM 3.0 – client health • Client health: Dashboard and overlay

  30. BYOD

  31. How Do You Make BYOD Work in Your Environment? BYOD VPN How do I keep my network and my users protected? iOS Android Ultrabooks How do I provide a reliable & intuitive experience to my employees & guest ANY NETWORK How do I minimize impact to my IT and helpdesk staff ANY USER

  32. ClearPass: Integrated Policy Management Hardware or Virtual Appliance WHO WHAT MOBILE APP MANAGEMENT NETWORK ACCESS MANAGEMENT DEVICE ONBOARDING AND MANAGEMENT WHEN On Any Network Massive App Ecosystem Faster Device Deployments WHERE HOW

  33. ClearPass Packaging Included Services Expandable Applications Application Starter Bundle • RADIUS/TACACS+ • ClearPass Policy Manager Profiling • Reporting • Device Registration • Visibility / Management•

  34. ClearPass Secure Mobile Device Framework Invoke a Policy Onboard Device Enforce Policy 1 2 3

  35. Control Compromised Devices ClearPass Policy Manager Access Network OnGuard Detect unsecure devices • Minimal Risk to Network • Block access to network resources across wired, wireless & remote • Auto or manual remediation

  36. Guest Web Portal Hardware or Virtual Appliance • Push ads & messages to custom web & mobile skins ON ANY NETWORK • Route guest • access request to a sponsor • Self-register using customizable web portal • Integrates with Lobby, CRM & Student Registered systems

  37. Automate Guest OnBoarding ClearPass Policy Manager New Visitor Access Network 3. Sponsor Account enabled, visitor notified via screen, SMS, or email 1. Collect visitor information 2. Sponsor prompted to confirm that guest is valid

  38. Wi-Fi Registration - Kiosk Wifi-ticket example Insert ID Card Registration confirmed with Airport’s attraction information

  39. Aruba Workspace

  40. Device Enforcement with Aruba MDM Monitor: Monitor device inventory Audit devices to ensure compliance Control: Configure security settings Over the air remote provisioning Protect: Locate, lock and wipe devices Passcode enforcement Reduce the cost and risk of managing mobile devices

  41. Aruba Workspace : Application Control Corporate Controlled Private to Employee Under MDM Personal Apps Corporate Apps

  42. WorkSpace App Enforces Policy Personal Corporate • Employee self-service mobility • Personalized portal with Single Sign-On • WorkSpace App provisioned to device My Access My Apps My Devices @mycompany WORK APPS BYOD DEVICES ACCOUNT & GUESTS

  43. Control Apps Based on Context • Mobile Context Email App: Can not be used while driving,moving EMR Apps: Must be used at hospital or member facilities CONTENT CONTROL MOTION SENSING Browser App: Can not access torrent sites GEO- FENCING • Point of Sale App: • Must be used during store hours TIME-FENCING Device Status: Cut & paste restrictions, Jailbreak / Root detection, Cloud backup DEVICE CONTROL

  44. Aruba MOVE Architecture • Mobility everywhere • Performance, security, access management • Campus, branch and remote • Support BYO-everything • Integrate NAC, MDM, MAM • Policy control between network, device, app • Automation of routine IT tasks • Simple personal device onboarding • Automatic device & app provisioning • Unified network operation • End to end solution for mobility management • Multi-vendor & multi-generation networks

  45. Thank You

More Related