You are here: Home > Configuring ArubaOS Features > Managed Devices > Managed Node Feature Overview

Managed Device Feature Overview

ArubaOS supports these distributed enterprises through the following features designed specifically for managed devices in branch and remote offices:

Authentication survivability allows managed devices to store user access credentials and key reply attributes whenever clients are authenticated with external RADIUSRemote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  servers or LDAPLightweight Directory Access Protocol. LDAP is a communication protocol that provides the ability to access and maintain distributed directory information services over a network. authentication servers, providing authentication and authorization survivability when remote authentication servers are not accessible.

Integration with existing Palo Alto Networks FirewallsFirewall is a network security system used for preventing unauthorized access to or from a private network., like WildFire™ anti-virus and anti-malware detection services. In deployments with multiple Palo Alto Networks firewallsFirewall is a network security system used for preventing unauthorized access to or from a private network., managed devices can select the best PAN firewallFirewall is a network security system used for preventing unauthorized access to or from a private network. based on priority and availability.

Policy-based routing on each uplink interface, which allows you specify the next hop to which packets are routed. ArubaOS supports multiple next-hop lists, to ensure connectivity in the event that a device on the list becomes unreachable.

Uplink and VPNVirtual Private Network. VPN enables secure access to a corporate network when located remotely. It enables a computer to send and receive data across shared or public networks as if it were directly connected to the private network, while benefiting from the functionality, security, and management policies of the private network. This is done by establishing a virtual point-to-point connection through the use of dedicated connections, encryption, or a combination of the two. redundancy, and per-interface bandwidth contracts to limit traffic for individual applications (or categories of applications) either sent from or received by a selected interface.

Packet compression between Aruba devices (such as devices at the branch and main office), to maximize the amount of data that can be carried by the network.

A WANWide Area Network. WAN is a telecommunications network or computer network that extends over a large geographical distance. health-check feature that uses ping-probes to measure WANWide Area Network. WAN is a telecommunications network or computer network that extends over a large geographical distance. availability and latency on each uplink.

The following diagram depicts a managed device topology where a managed device in the branch office learns the address, routing information, and other provisioning information from the Mobility Master.

Figure 1  Managed Device Topology

/*]]>*/