- Cloud & Data Platform
- HPE
- Article
To say that the development of network security is moving rapidly would be the understatement of the year. The fact that it is also fragmented and unclear is part of the deal. A vast amount of resources are spent on securing the network and the hunt for the best solution is on everyone’s agenda.
There is a strong new tendency to create ultimate transparency and oversight rather than keeping people out. Here, we are going to look into the good and secure network as it looks in 2023. For many years, the premise of network administration across the world has been building walls and hiding behind technology. However, the winds are changing and the focus has shifted when it comes to security Flemming Lind Christensen, Network Infrastructure Specialist at Danoffice IT explains. “Naturally, there continues to be a great focus on security, but in a different way than before. Today, it is more about creating transparency in the networks than anything else. We want to be able to see who is on our network and what they are doing there,” he says.
“In the old days, you would turn on Vlan, but with that, you could not see anything. Today, the laser focus is on whether there is something on the network which should not be there. The access MUST be there – security may not stop productivity.” In other words, the tendency has moved from shutting people out and staying behind walls – firewalls, to improving the technologies and thereby making access control possible for the next generation. The automated access control. The key to achieving just that has proven to be visibility. Oversight and transparency. But how?
Profiling
If a company implements a complete Aruba solution, including the network, ClearPass cannot just see what a unit IS, but also what it DOES according to Flemming. “We refer to it as profiling on steroids,” he says. “Therefore, we are currently creating several PoC's (short for Proof of Concepts), within which we create ClearPass clusters. If we can get technical for a moment and address our talented administrator coworkers out there, ClearPass is not only a profiling unit. It is also a security unit.”
A fundamental element in Zero Trust and SASE frameworks is dynamic segmentation. In this, the access is assigned based on the identity of the units, as well as the roles and permissions assigned. “The static switch is a thing of the past because dynamic access is what makes device profiling possible. Furthermore, Aruba uses the concept of colorless ports when assigning all switches in identical configurations with the same IP numbers, credentials, authentication, and so on. Thus, the ultimate effective profiling is made possible which enables the dynamic segmenting of the traffic. This also applies to the wireless portion. It can control any network,” Flemming explains.
Virtually all companies have some level of OT infrastructure (Operational Technology infrastructure). This could be the company’s operational installations which are connected to the IT infrastructure at various levels. However, a little is enough. A small door left ajar is enough to make everything vulnerable. Because of this, the loT wave naturally rolls in over OT. And suddenly there are even more units, roles, and access levels to define. This increases the need for an intelligent solution.
No More Running Around and Wasting Time
Flemming and his coworkers are often met with a request to make the employees’ workday more efficient; “They are plenty busy in the IT departments out there,” he concludes. “It is a waste of time to be running around configuring the units on the network all the time and the answer to this is to automate the processes.” The solution is to move from a lot to a little. Moving from many tasks to a few.
”We have seen examples of companies being able to save the work equivalent to two employees! People who previously did not do anything other than creating static solutions can now spend their time doing more valuable tasks”, Flemming says and elaborates: “Basically all IT departments we come across would like to save on the resources. Clearly, an Aruba ClearPass is an upfront expenditure, but it is quickly recaptured in the time saved and after that, it is just pure business. There would be quite a bit less manual labor than before because ClearPass can save the network administrator many hours”.
EU's NIS2 Directive
But who is lurking on your network? That will soon be an essential question to all companies. “A lot of people are contacting us about EU’s NIS2 directive,” Flemming confirms. “This is where ClearPass is essential purely because of the profiling aspect. Many have no clue what is on their network and clearly, it is not about the lack of abilities, but rather because many is becoming more digitized so everyone is just incredibly busy. We encourage many network administrators to team up with ClearPass since they will get both insight and security in one fell swoop,” Flemming Lind Christensen, Network Infrastructure Specialist at Danoffice IT concludes.
Get a Clear View in Just Two Days
At Danoffice IT, we have developed a ClearPass PoC with which you can have a complete installation in just two days. After this, your company will be secure and operational on the platform for six months.
Related Stories
-
HPE OpsRamp PlatformBy deploying HPE’s Observability Platform called OpsRamp, we are now able to offer all our customers a solution which makes the complete overview possible. -
Aruba Ambassador at Danoffice ITWe can proudly say that our Senior Datacenter Consultant, Network, Tejs Evers is now part of Aruba's global Partner Ambassador Program.
-
Record GreenLake AgreementThis is the story about how specialized know-how and contract management paved the way for the largest ever HPE GreenLake agreement originating in Denmark.
-
Hot Future: HPE Discover 2024This year’s HPE Discover offered big surprises. These consisted of a look at the crystal ball into the future of AI as well as a look at tomorrow.
-
Dell Technologies World 2024The overall agenda for the 2024 Dell Technologies World can be summed up in two letters: AI.
-
The World Will Always Be HybridWe were, of course, present at this year's HPE Discover where it was clear that all doomsday theories about data centers we have in this world were removed.
-
Discover the FutureWe were present at HPE Discover once again this year along with a handful of our great clients. At this event, it became clear that the future is not just knocking, it is already here.
-
Arctic Wolf AwardsWe are delighted to call ourselves Arctic Wolf Partner of the Year EMEA Alpha and Nordics Partner of the Year.
-
VMware as a ServiceOperating VMware as well as ongoing updates and maintenance of your hypervisor level are the talk of the town. It gives us great pleasure to introduce our new VMware aaS.
-
Guaranteed the right helpSystem administrators have poor options when a critical breakdown hit their IT infrastructure We offer the concept of Microsoft Critical Preparedness.
-
Take-Off with CopilotMicrosoft Copilot is now available and many have started their AI journey. We share 5 great tips and how we can help you get well on your way.
