ClearPass Policy Manager and ClearPass Guest
ClearPass Policy Manager delivers identity and device-based network access control across any wired, wireless, and VPN Virtual Private Network. VPN enables secure access to a corporate network when located remotely. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security, and management policies of the private network. This is done by establishing a virtual point-to-point connection through the use of dedicated connections, encryption, or a combination of the two. infrastructure. AirGroup can be deployed with ClearPass Policy Manager (recommended for large WLANs Wireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection.) or without ClearPass Policy Manager in smaller networks. AirGroup enables context awareness for services across the network and supports a typical customer environment with shared, local, and personal services available to mobile devices.
In centralised mode, RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. requests to the CPPM server are sent by the Mobility Conductor. CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. is sent to the Mobility Conductor.
In distributed mode , the managed device sends the RADIUS Remote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources. requests. CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. is sent to the managed device.
AirGroup and ClearPass Policy Manager work together to allow users to share personal devices.
- An AirGroup administrator uses ClearPass Policy Manager to authorize end users to register their personal devices.
- An AirGroup operator registers their personal devices (such as an Apple TV) in the ClearPass Guest portal.
- AirGroup enabled Mobility Conductor sends AirGroup The application that allows the end users to register their personal mobile devices on a local network and define a group of friends or associates who are allowed to share them. AirGroup is primarily designed for colleges and other institutions. AirGroup uses zero configuration networking to allow Apple mobile devices, such as the AirPrint wireless printer service and the AirPlay mirroring service, to communicate over a complex access network topology. queries to ClearPass Policy Manager for information on the registered devices and associates the access privileges of each device to its allowed services.
- ClearPass Policy Manager sends the CoA Change of Authorization. The RADIUS CoA is used in the AAA service framework to allow dynamic modification of the authenticated, authorized, and active subscriber sessions. to notify the Mobility Conductor about the registered devices.
For more information on ClearPass Policy Manager, see the ClearPass Policy Manager User Guide and ClearPass Guest Deployment Guide.