Integrated firewall, integrated WIDS/WIPS on the controllers and the ability to tunnel LAN traffic from the switches through the controllers to set consistent 802.1x and access controls that are consistent across both wired and wireless LANs.
Integrated firewall, integrated WIDS/WIPS on the controllers and the ability to tunnel LAN traffic from the switches through the controllers to set consistent 802.1x and access controls that are consistent across both wired and wireless LANs.
It improves security by helping us to centralize access controls and dot1x and set common policy across both wired and wireless LANs without having to install additional components.
The controllers used to include heat map functionality. This was removed in a recent release. To get this functionality now, you need to be using Airwave (AWMS), which adds additional cost. On the other hand, Airwave can be used to manage a multi-vendor environment, so there may be some other benefits to having it deployed, but it would be nice to have the heat map back in the controller.
I've been using it for five years.
No issues encountered.
No issues encountered.
No issues encountered.
It's excellent.
Technical Support:It's excellent.
Default settings are sufficient to get a functioning wireless network up and running fairly easily. Complexity increases add vLANs, security policy, dot1x, redundancy, etc.
At my previous employer we had a relatively large wireless installation so we worked with a vendor team. The network at my current employer is small enough that I could handle it myself.
Licensing has improved. In the past all redundant controllers required licenses for all the access points. They've not implemented a centralized licensing model so that you only need to license your access points once.
We evaluated Cisco. Cisco's solution, at the time, required additional components to provide the same functionality. For example you'd need external firewalls, IDS/IPS, and authentication servers. Aruba controllers had all this built in. I haven't looked at Cisco's current offerings, so this may not still be the case.
I'd recommend you do the training.