5.Select required Bonjour support services. To allow all services, select ALLOWALL.

6.Based on the services configured, you can block any user roles and VLAN from accessing a Bonjour support service. The user roles and VLANs marked as disallowed are prevented from accessing the corresponding Bonjour support service. You can create a list of disallowed user roles and VLANs for all Bonjour support services configured on the AP. For example, If the AirPlay service is selected, the Edit links for the AIRPLAY DISALLOWED ROLES and AIRPLAY DISALLOWED VLANS are displayed. Similarly, if sharing service is selected, the Edit links for the SHARING DISALLOWED ROLES and SHARING DISALLOWED VLANS are displayed.

To block user roles from accessing a Bonjour support service, click the corresponding Edit link and select the user roles for which you want to restrict access. By default, an Bonjour support service is accessible by all user roles configured in your AP cluster.

To select VLANs from allowing access to Bonjour support service, click the corresponding Edit link and select the VLANs to exclude. By default, the Bonjour support services are accessible by users or devices in all VLANs configured in your AP cluster.

Integrating an AP with Palo Alto Networks firewall

Palo Alto Networks (PAN) next-generation firewall offers contextual security for all users for safe enabling of applications. A simple firewall beyond basic IP address or TCP port numbers only provides a subset of the enhanced security required for enterprises to secure their networks. In the context of businesses using social networking sites, legacy firewalls are not able to differentiate valid authorized users from casual social networking users.

The Palo Alto next-generation firewall is based on user ID, which provides many methods for connecting to sources of identity information and associating them with firewall policy rules. For example, it provides an option to gather user information from Active Directory or LDAP server.

Integration with Cloud Network Manager

The functionality provided by the PAN firewall based on user ID requires the collection of information from the network. AP maintains the network (such as mapping IP address) and user information for its clients in the network and can provide the required information for the user ID feature on PAN firewall. Before sending the user-ID mapping information to the PAN firewall, the AP must retrieve an API key that is used for authentication for all APIs.

AP and PAN firewall integration can be seamless with the XML-API that available with PAN-OS 5.0 or later.

To integrate an AP with PAN user ID, a global profile is added. This profile can be configured on an AP with PAN firewall information such as IP address, port, user name, password, firewall enabled or disabled status.

The AP sends messages to PAN based on the type of authentication and client status:

After a client completes the authentication and is assigned an IP address, AP sends the login message.

After a client is disconnected or dissociated from the AP, the AP sends a logout message.

Configuring an AP for PAN integration

To configure an AP for PAN firewall integration:

1.Select Wireless Configuration > Services. The Services pane is displayed.

2.Click NETWORK INTEGRATION. The PAN firewall configuration options are displayed.

3.Select ENABLE to enable PAN firewall.

4.Specify the USER NAME and PASSWORD. Ensure that you provide user credentials of the PAN firewall administrator.

5.Enter the PAN firewall IP ADDRESS.

71 Wireless configuration

HP Cloud Network Manager User Guide

Page 70 Page 72
Page 71
Image 71
HP Cloud Network Manager Software manual Integrating an AP with Palo Alto Networks firewall
Page 70 Page 72

Cloud Network Manager Software specifications

HP Cloud Network Manager is a robust software solution designed to simplify and enhance the management of network infrastructure in cloud environments. As organizations increasingly shift toward cloud computing, they require comprehensive tools to oversee complex network deployments. HP Cloud Network Manager rises to this challenge, offering a powerful suite of features aimed at optimizing performance, automating tasks, and ensuring reliable connectivity.

One of the main features of HP Cloud Network Manager is its intuitive dashboard, which provides users with real-time insights into network operations. This centralized interface allows administrators to monitor the status of various components, identify potential issues, and respond swiftly to anomalies. With advanced analytics capabilities, the software empowers users to make data-driven decisions that enhance network efficiency.

Another critical feature of this software is its automation capabilities. HP Cloud Network Manager simplifies routine network management tasks, such as configuration, provisioning, and software updates, allowing IT teams to focus on strategic initiatives rather than mundane maintenance. Automation reduces the risk of human error and accelerates deployment times, significantly increasing operational agility.

The software also supports multi-cloud environments, enabling organizations to manage their network resources across different cloud platforms seamlessly. This flexibility is essential for businesses that utilize various cloud providers and wish to maintain a unified network strategy. Coupled with its compatibility with open standards, HP Cloud Network Manager facilitates integration with existing IT ecosystems, ensuring a smooth transition to advanced cloud solutions.

Security is a top priority in today's digital landscape, and HP Cloud Network Manager includes integrated security features to protect network assets. It provides visibility into traffic patterns, helping to detect and mitigate potential threats before they become significant issues. Enhanced security protocols ensure that sensitive data remains protected during transit and at rest, aligning with compliance requirements.

Finally, HP Cloud Network Manager is built on cutting-edge technologies, including artificial intelligence and machine learning, which enable proactive network management. These technologies predict network behavior, assisting administrators in optimizing resources and anticipating potential challenges. As a result, organizations can achieve enhanced reliability and performance from their network infrastructure.

In summary, HP Cloud Network Manager is an essential tool for businesses looking to improve their cloud network management capabilities. With its powerful features, supportive technologies, and commitment to security, it stands out as a reliable solution for navigating the complexities of modern network environments.
Top Page Image Contents