Home / Aruba / ForeScout / Comparing Network Access Control ( NAC Solution ) - Aruba ClearPass Vs ForeScout CounterACT

Comparing Network Access Control ( NAC Solution ) - Aruba ClearPass Vs ForeScout CounterACT

,
Today I am going to talk about the features and the services provided by the HP (Aruba- ClearPass) and ForeScout Counter ACT. In my earlier article I explained the difference between the Cisco and the HP NAC solutions with the feature sets.

HP- Aruba ClearPass
ClearPass offers a strong guest network application. Guest portals can be customized with a wide range of options, including localized language support. Granular policies allow guests to share printers and projectors that use Apple's Bonjour protocol

Aruba provides detailed diagnostic information to assist network administrators in troubleshooting failed 802.1X authentications 

There are some of the cautions for using the Aruba's ClearPass NAC Solution and It lags behind several competitors in its breadth of prepackaged integrations with SIEM vendors and advanced threat defence vendors.

Fig 1.1- Automatic Guest User -Aruba ClearPass

It also faces a difficult balancing act with its WorkSpace MDM offering, because it is now competing with the same MDM vendors that it partners with to enhance ClearPass

It is still ramping up its value-added reseller (VAR) channel's ability to sell and support ClearPass. Before purchasing ClearPass from an Aruba partner, verify that the partner is ClearPass-certified. 

Fig 1.2- ForeScout CounterACT Vs HPE Aruba ClearPass
ForeScout CounterACT
CounterACT performs these actions on corporate-issued, personally owned bring-your-own-device (BYOD) endpoints and non-traditional devices—without requiring software agents or previous device knowledge. It deploys quickly into your existing environment and rarely requires infrastructure changes, upgrades or endpoint reconfiguration. 

CounterACT can identify the device type, location, user, and whether the device is a member of your domain, as well as other basic information. It also obtains detailed information about the security posture of the device by using administrative credentials to query corporate-owned devices. 

Fig 1.3- ForeScout MDM

CounterACT leverages the ForeScout ControlFabric Architecture to orchestrate information sharing and operation among the security and system management tools you already own. ControlFabric Architecture allows you to achieve this through custom integrations or plug-and-play software modules. Co-developed with ForeScout Technology Partners, ForeScout Base and Extended Modules bring the power of CounterACT to more than 70 leading network, security, mobility and IT management