HPE introduces new security features to its Aruba network and Greenlake platforms to enhance cloud and network security in hybrid IT environments.
Updates announced at the RSA 2025 conference include AI-driven policy engine for network access control, stricter integration between Aruba Central and HPE OpsRamp to unify visibility and real-time threat responses for SD-WAN and SECH-WAN and security service Edge (SSE).
HPE said Greenlake Private Cloud Enterprise will get a “digital circuit breaker” to isolate critical systems from the public Internet during detected threats.
“With the adoption of data fuel AI applications, the storage, capture or transmission of data is more complex,” said Phil Mottram, EVP and general manager of HPE Aruba Networking.
The security driver is HPE’s $14 billion acquisition of Juniper Network, which is currently under review by the Department of Justice. HPE CEO Antonio Neri said in a quarterly fiscal earnings call that the company had a “conspicuous case” and hoped to close the deal before the end of fiscal 2025.
Zero Trust Gets AI Upgrade
HPE has announced Aruba Central’s enhanced network access control (NAC) capability built on the legacy version of ClearPass, providing a cloud-native, AI-powered system that automates access policies.
Enhanced NAC will be applied directly to new devices based on applications, roles, and subnets, applying rules to network workflows to implement zero trust from the edge to the cloud. The automation is designed to reduce setup time and errors and enable security teams to effectively manage dynamic environments.
Through integration with HPE OpsRamp, the platform will provide unified visibility in Cisco, Arista and Juniper environments, enabling application risk scores to tweak access controls in real time.
Sakshi Grover, senior research manager at IDC Asia Pacific/Pacific, said HPE’s AI-driven NAC stands out in the zero-value and SASE markets. “HPE focuses on data sovereignty, operational resilience and regulatory consistency, which is crucial for businesses around the world.”
Aruba’s EdgeConnect SD-WAN will now include an adaptive DDOS defense that uses machine learning to detect and mitigate attacks at the edge, reducing reliance on upstream protection services.
ZTNA customers’ free private edge licensing will align local policies with cloud settings, ensuring consistent security. Aruba’s Secure Service Edge (SSE) will use global grid connections to route traffic dynamically, maintaining uptime without manual intervention, which supports operational continuity during network outages.
Private cloud quarantine
HPE announced that its Greenlake Private Cloud Enterprise will now have a “digital circuit breaker” that the enterprise disconnects from the public internet when a threat is detected, isolates critical systems and reconnects after verification. This feature will support compliance with the Digital Operations Resilience Act (DORA), which is crucial for financial institutions.
“HPE’s threat adaptive security provides an active and automated containment mechanism,” Grover said. “Instead of relying on manual intervention during violations, it can be mitigated in real time to help maintain sensitive data and minimize business disruptions.”
The air conditioning cloud management operated by HPE’s security-related personnel will operate without an external network connection, serving regulated departments such as the government and planning support from Kubernetes.
New cybersecurity services focus on AI workloads and sovereign clouds, providing governance to address AI-driven threats and compliance frameworks targeting data-sensitive industries. Opsramp-Crowdstrike integration is designed to provide real-time threat detection in a hybrid environment, thereby enhancing responsiveness. Grover said HPE’s focus on regulated markets is with “a growing demand for trust, control and uptime” (especially in the Asia-Pacific region, especially in the Asia-Pacific region.”
