Aruba recently presented their vision of the SilverPeak integration into the Aruba family, now branded as EdgeConnect Enterprise and augmented a number existing solutions to round out the offering with EdgeConnect SD-Branch, Microbranch, and Mobile. The mix of solutions here enables use-case based right sizing of the hardware. Aruba's pivot to support this space and expand the existing footprint from mostly on-premises solutions to enabling robust solutions for the entire spectrum of work environments from large enterprise to remote worker and SOHO spaces is necessary in today's environment as the traditional practice of "protecting four walls" is antiquated as users connect from everywhere, with a much larger percentage now remote.
Adjusting from the traditional thinking of each device role to its role in this environment makes sense when following the use case:
- EdgeConnect Mobile - VIA for remote VPN users
- EdgeConnect Microbranch - RAP/IAP for SOHO users
- EdgeConnect SD-Branch - "Office in a Box" style use cases
- EdgeConnect Enterprise - large office, enterprise use cases
Tying together known device types leveraging AOS10 and Aruba's policy engines and creating intent-based profiles that seamlessly work across the LAN, SD-WAN, endpoints, and now extend out to SASE platforms creates a great opportunity to meet customers where they are at in their journey and a point of differentiation for Aruba, who has always leaned in to the best of breed space. This step is an important shift in the paradigm of providing NAC-like solutions in the corporate environment, while many home connections go unsecured. A holistic approach that weaves these use cases together in a simplified way might take a little adjusting to, however is absolutely necessary in today's hybrid work environment.
The Aruba EdgeConnect SD-WAN Fabric Orchestrator enables the extension of role-based policy controls and infusion into the SD-WAN environment through Aruba ClearPass or through options like radius snooping or proxies, or VXLAN to enforce roles out at the enterprise edge. Leveraging existing technologies to then intelligently apply policies to create this net new functionality offers network security engineers with numerous new ways to segment and secure traffic. Additionally, being able to dynamically recognize devices and drive them to a user profile based off of known characteristics simplifies tasks of dealing with IoT type devices in all cases.
Building upon this strategy, there is room for adding numerous capabilities to the environment, support workflows, and provide nuanced control of the network. Enabling an organization to spend more time to focus on the policy and the intent of its enforcement can enable more reliable delivery of applications, create better and more customized user experience. Aruba's solution also address some of the concerns left by some manufacturers as legacy WAN Optimization is no longer enough, the need to distribute internet access and provide control at the edge can facilitate a migration to the cloud.
The Edge to Cloud story highlights that these solutions provide the last mile of connectivity from application to user, and if it can be done such that it enables the users to consume that data on their own terms from location to device to media type, it is a big win for everyone. Looking forward to watching this solution continue to be refined and mature to be even further integrated into the Aruba product portfolio. The approach used for EdgeConnect should be able to pair with the existing mobility overlay methods that Aruba is using and allow for automated, yet complex, network topologies that are created by policy rather than extensive engineering.
