- Cloud & Data Platform
- HPE
- Article
To say that the development of network security is moving rapidly would be the understatement of the year. The fact that it is also fragmented and unclear is part of the deal. A vast amount of resources are spent on securing the network and the hunt for the best solution is on everyone’s agenda.
There is a strong new tendency to create ultimate transparency and oversight rather than keeping people out. Here, we are going to look into the good and secure network as it looks in 2023. For many years, the premise of network administration across the world has been building walls and hiding behind technology. However, the winds are changing and the focus has shifted when it comes to security Flemming Lind Christensen, Network Infrastructure Specialist at Danoffice IT explains. “Naturally, there continues to be a great focus on security, but in a different way than before. Today, it is more about creating transparency in the networks than anything else. We want to be able to see who is on our network and what they are doing there,” he says.
“In the old days, you would turn on Vlan, but with that, you could not see anything. Today, the laser focus is on whether there is something on the network which should not be there. The access MUST be there – security may not stop productivity.” In other words, the tendency has moved from shutting people out and staying behind walls – firewalls, to improving the technologies and thereby making access control possible for the next generation. The automated access control. The key to achieving just that has proven to be visibility. Oversight and transparency. But how?
Profiling
If a company implements a complete Aruba solution, including the network, ClearPass cannot just see what a unit IS, but also what it DOES according to Flemming. “We refer to it as profiling on steroids,” he says. “Therefore, we are currently creating several PoC's (short for Proof of Concepts), within which we create ClearPass clusters. If we can get technical for a moment and address our talented administrator coworkers out there, ClearPass is not only a profiling unit. It is also a security unit.”
A fundamental element in Zero Trust and SASE frameworks is dynamic segmentation. In this, the access is assigned based on the identity of the units, as well as the roles and permissions assigned. “The static switch is a thing of the past because dynamic access is what makes device profiling possible. Furthermore, Aruba uses the concept of colorless ports when assigning all switches in identical configurations with the same IP numbers, credentials, authentication, and so on. Thus, the ultimate effective profiling is made possible which enables the dynamic segmenting of the traffic. This also applies to the wireless portion. It can control any network,” Flemming explains.
Virtually all companies have some level of OT infrastructure (Operational Technology infrastructure). This could be the company’s operational installations which are connected to the IT infrastructure at various levels. However, a little is enough. A small door left ajar is enough to make everything vulnerable. Because of this, the loT wave naturally rolls in over OT. And suddenly there are even more units, roles, and access levels to define. This increases the need for an intelligent solution.
No More Running Around and Wasting Time
Flemming and his coworkers are often met with a request to make the employees’ workday more efficient; “They are plenty busy in the IT departments out there,” he concludes. “It is a waste of time to be running around configuring the units on the network all the time and the answer to this is to automate the processes.” The solution is to move from a lot to a little. Moving from many tasks to a few.
”We have seen examples of companies being able to save the work equivalent to two employees! People who previously did not do anything other than creating static solutions can now spend their time doing more valuable tasks”, Flemming says and elaborates: “Basically all IT departments we come across would like to save on the resources. Clearly, an Aruba ClearPass is an upfront expenditure, but it is quickly recaptured in the time saved and after that, it is just pure business. There would be quite a bit less manual labor than before because ClearPass can save the network administrator many hours”.
EU's NIS2 Directive
But who is lurking on your network? That will soon be an essential question to all companies. “A lot of people are contacting us about EU’s NIS2 directive,” Flemming confirms. “This is where ClearPass is essential purely because of the profiling aspect. Many have no clue what is on their network and clearly, it is not about the lack of abilities, but rather because many is becoming more digitized so everyone is just incredibly busy. We encourage many network administrators to team up with ClearPass since they will get both insight and security in one fell swoop,” Flemming Lind Christensen, Network Infrastructure Specialist at Danoffice IT concludes.
Get a Clear View in Just Two Days
At Danoffice IT, we have developed a ClearPass PoC with which you can have a complete installation in just two days. After this, your company will be secure and operational on the platform for six months.
Related Stories
-
Guaranteed the right helpSystem administrators have poor options when a critical breakdown hit their IT infrastructure We offer the concept of Microsoft Critical Preparedness. -
Take-Off with CopilotMicrosoft Copilot is now available and many have started their AI journey. We share 5 great tips and how we can help you get well on your way.
-
A Secure CultureMærsk opened our eyes and today, we are all the Danish National Bank. Get inspiration for your backup and restore in this trend article written with Commvault.
-
CASE: Aarhus UniversityAarhus University’s server rooms need to process and store several petabytes of data. Its new expansion has set a new standard for the HPC arena in Denmark.
-
The Automated Access ControlTo say that the development of network security is moving rapidly would be an understatement. The fact that it is also fragmented and unclear is part of the deal.
-
CASE: Lenovo for InfomediaWalking hand-in-hand and having each other’s back is the be-all and end-all when forming a great relationship between two parties in business.
-
Hybrid Future with HPE AlletraOur HPE Worldwide Ambassador, Niels Vejrup, is among the heavy hitters when it comes to servers and storage both in Denmark and globally.
-
Leading HPE-distributor. Again.As always, HPE had created a beautiful event focused on great partnerships, development, and progress. This year we brought home three of the big ones!
-
Microsoft’s prices are increasingThis is no longer news to some of us, but to many people, this is a change they are not prepared to face. As of April 1, the prices of all Microsoft licenses are increasing by 11%.
-
CASE: HPE Aruba for TvilumA story about how a collaboration on IT can develop when everything aligns. This is where the great strategic collaboration between customer and supplier emerges.
-
CASE: Azure for FiberlineWhen looking at opening new factories in globally, the company’s IT infrastructure had become outdated. There was a need for a unique solution with global reach.
