Portnox CLEAR

Start by wiring your network to say “yes” only to the right devices. In Portnox CLEAR, connect your switches, wireless controllers, and remote gateways to the cloud RADIUS and set a default access rule that safely contains anything unknown. Sync users and groups from your identity provider, map offices and VLANs, and label device categories you care about—laptops, phones, printers, cameras, shop-floor gear. Stand up onboarding in minutes: push 802.1X to managed endpoints, issue certificates automatically, let employees register personal phones through a self-service portal, and enroll headless IoT by profile or MAC. As devices show up, you’ll see a live roster of who’s trying to enter, from where, and by which path—wired, Wi‑Fi, or remote.

Next, build decisions that match how you operate. Create policies that look at identity, device posture, and connection context to place users in the right segment instantly. Example: if a corporate laptop connects on the secure SSID, the user is in Finance, the disk is encrypted, and EDR is healthy, drop them into the finance network and tag traffic appropriately. If a personal phone connects, give internet-only access with no reach to internal apps. If a camera plugs into a wall jack, move it to the OT zone and lock it to approved destinations. For remote users, enforce MFA plus device checks before letting them through VPN—and send noncompliant laptops to a remediation network with guided fixes. All of this is policy-driven, so changes roll out globally without touching each switch or AP. more