Aruba ClearPass is one of the most capable Network Access Control platforms available — but its flexibility also makes it complex to implement correctly. A ClearPass deployment that works in a lab often breaks in production because of edge cases: non-802.1X devices, legacy printers, BYOD certificate failures, or guest portal redirects that do not behave as expected on mobile devices.
With 11+ years of enterprise NAC experience — deploying ClearPass alongside Aruba wireless, Cisco switching, and HP infrastructure — we provide independent consulting, deployment support, and managed services for organizations that need ClearPass expertise without a full-time specialist.
What We Do
🔐 ClearPass Deployment & Configuration
- Greenfield ClearPass deployments — Publisher/Subscriber sizing, HA configuration
- Authentication Sources — AD, LDAP, SQL, local user database
- Service configuration — 802.1X wired, 802.1X wireless, MAC Authentication (MAB)
- Enforcement profiles — VLAN change, ACL, Role assignment, CoA (Change of Authorization)
- Onboard — BYOD self-service device provisioning, certificate issuance
- Guest — customized guest portals, sponsor flow, sponsored guest access
- OnGuard — endpoint health checks, posture assessment
- Integration with Aruba Mobility Master, Aruba Central, Cisco Catalyst, HP switches
📶 802.1X Project Consulting
- Pre-deployment infrastructure audit — switch configuration, AP settings, RADIUS readiness
- AD/LDAP integration — machine authentication, user authentication, group mapping
- Certificate strategy — EAP-TLS vs PEAP, internal CA integration, auto-enrollment
- MAB exception handling — printers, cameras, IoT devices, VoIP phones
- Phased rollout planning — monitor mode to enforcement, minimizing disruption
- Wireless 802.1X — WPA3-Enterprise, EAP-TLS, dynamic VLAN assignment
⚙️ ClearPass Upgrade & Migration
- ClearPass version upgrades — planning, execution, rollback planning
- Migration from Cisco ISE or other NAC platforms to ClearPass
- Pre-upgrade health checks, database backup, post-upgrade validation
- Aruba Central integration migration
🛡️ Ongoing ClearPass Management
- Policy review — cleaning up unused services, enforcement profiles, roles
- Certificate monitoring and renewal — CA certificates, RADIUS server certificate
- New device type onboarding — IoT, medical devices, industrial equipment
- Patch management — ClearPass hotfixes and security patches
- Monthly operational reports
Why ClearPass Projects Struggle
Common issues we see:
- Guest portal not redirecting on iOS/Android — SSL inspection stripping the redirect
- MAB devices authenticating but landing in the wrong VLAN — enforcement profile ordering
- ClearPass and Cisco switches not agreeing on VLAN change — CoA configuration
- BYOD certificates not enrolling — Onboard profile misconfiguration
- HA failover not working as expected — Subscriber not syncing policies
These are all solvable — but they require someone who has seen them before.
Independent Consulting — No Vendor Bias
We work with Aruba, Cisco, HP and mixed environments. If ClearPass is the right tool, we will tell you. If your existing infrastructure would work better with a different NAC approach, we will tell you that too.
Remote-First Delivery
All services delivered remotely via secure access. On-site coordination available for new deployments when needed.
Get in Touch
📱 WhatsApp: wa.me/4916098665971
📧 Email: barash@digitriva.de
Free 30-minute technical consultation. No commitment required.