Juniper Mist Cloud Services & Management
Available on backorder
Juniper Mist Access Assurance is a cloud-native NAC service that enforces Zero Trust access for wired and wireless networks, simplifying secure onboarding and policy management for guest, IoT, BYOD, and corporate devices with Mist AI-driven insights.
Compare
Juniper Mist Access Assurance is a cloud-based network access control (NAC) service that ensures secure, Zero Trust access for wired and wireless networks based on user and device identities. It simplifies IT operations by offering a flexible, microservices-based authentication system that enforces policies for guest, IoT, BYOD, and corporate devices. Integrated with Mist AI, it provides end-to-end visibility, identity fingerprinting using X.509 certificates and IdP data, and seamless integration with external directory services (e.g., Google Workspace, Microsoft Azure AD, Okta), PKI, and MDM/UEM platforms. The service supports 802.1X authentication, MAC Address Bypass (MAB), and dynamic policy assignment via VLAN or Group-Based Policy (GBP), delivering low-latency, scalable access control across single or multi-site deployments.
- Architecture: Cloud-hosted, microservices-based, delivered via Juniper Mist Cloud.
- Authentication: Supports 802.1X, MAC Address Bypass (MAB) for non-802.1X devices, Multi Pre-Shared Key (MPSK), Private Pre-Shared Key (PPSK).
- Identity Fingerprinting: Uses X.509 certificate attributes, IdP data (group membership, user account state), MDM/UEM compliance, posture state, client lists, and location.
- Policy Enforcement: Dynamic assignment of roles and network segments via VLAN or Group-Based Policy (GBP); WxLAN policy framework for resource access control.
- Integrations: External directory services (Google Workspace, Microsoft Azure AD, Okta Workforce Identity), PKI, MDM/UEM platforms, SIEM, firewalls, XDR, ITSM via open APIs.
- Visibility: Captures all client events (connection/auth successes and failures) for unified connectivity troubleshooting; tracks active devices per PSK.
- Scalability: Regional cloud instances for low-latency authentication; bi-weekly feature/security updates without downtime.
- Subscriptions:
- Standard: Full NAC functionality, policy enforcement.
- Advanced: Adds client posture verification (UEM/EMM/MDM) and firewall integrations.
- AI Features: Mist AI for proactive anomaly detection, root cause analysis, and integration with Marvis Virtual Network Assistant for conversational troubleshooting.
- Deployment: Supports single or multi-site enterprise networks; Zero-Touch Provisioning (ZTP) for simplified setup.
Related products
-
Hardware, Network Switch
Juniper QFX Series Switches
- QFX5240: High-density 800GbE switch for AI data centers, with up to 64 QSFP-DD/OSFP ports, supporting BGP, MPLS, RoCEv2, and intent-based automation.
- QFX5230: 400GbE switch for high-speed, scalable spine-and-leaf IP fabrics, ideal for AI/ML workloads.
- QFX5700: Flexible 10/25/40/50/100/200GbE switch for enterprise, HPC, and cloud data centers, supporting dense 400GbE fabrics.
- QFX5130: Cost-optimized 1U switch with 10/25/40/100/400GbE, up to 25.6 Tbps, for cloud and enterprise with in-band telemetry.
- QFX5120: 1/10/25/40/100GbE switch with 6.4 Tbps, low 550ns latency, for data center and campus with EVPN-VXLAN support.
- QFX5210: 2U, 10/25/40/100GbE switch with 12.8 Tbps for lean spine-and-leaf and metro deployments.
- QFX5220: 400GbE switch for large, standards-based data center and metro fabrics.
- QFX5110: 10/40GbE switch with 2.56 Tbps, low latency, and EVPN-VXLAN for flexible deployments.
- QFX5100: 10/40GbE switch with 2.56 Tbps, supporting FCoE, MC-LAG, and Virtual Chassis.
- QFX10000 Series: High-capacity 10/40/100GbE switches (up to 96 Tbps) for demanding data center and campus environments with deep buffers.
SKU: QFX -
-
NAC, Software
Cisco Identity Services Engine (ISE)
Cisco ISE is a next-generation NAC solution that enforces Zero Trust access control, providing pervasive visibility, dynamic policy enforcement, and automated threat containment for wired, wireless, and VPN networks, with seamless integration into Cisco and third-party ecosystems.
SKU: CISCO-ISE -
NAC, Software
Forescout’s Network Access Control (NAC)
The Forescout Platform is an agentless NAC solution that provides real-time visibility, Zero Trust access control, and automated threat response for all network-connected devices, seamlessly integrating with multi-vendor environments to enhance security and compliance.
SKU: forescout-platform -
