HPE Aruba Networking SSE
Cloud access security broker (CASB) software
Cloud edge security software
Software-defined perimeter (SDP) software
Zero trust networking software
Cloud security software
Network security software
Zero trust architecture software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if HPE Aruba Networking SSE and its alternatives fit your requirements.
Contact the product provider
Free Trial unavailableFree version unavailable
Small
Medium
Large
- Manufacturing
- Transportation and logistics
- Construction
What is HPE Aruba Networking SSE
HPE Aruba Networking SSE is a security service edge (SSE) offering that delivers cloud-delivered security controls for user-to-internet and user-to-application access. It is used by IT and security teams to enforce web security, apply zero-trust access policies, and reduce reliance on traditional perimeter-based network security for remote and distributed users. The product aligns with SASE/SSE architectures and is positioned to integrate with Aruba’s broader networking portfolio for policy and access enforcement across users, devices, and locations.
SSE-aligned security controls
The product is designed around SSE use cases such as securing internet access and controlling access to private applications without extending the corporate network. This supports zero-trust patterns where access is granted based on identity, device posture, and policy rather than network location. For organizations standardizing on SSE, it provides a consolidated approach compared with deploying multiple point products.
Zero-trust access orientation
HPE Aruba Networking SSE emphasizes policy-based access to applications, which fits software-defined perimeter (SDP) and zero trust networking requirements. This can reduce exposure of internal applications by avoiding broad network-level access for remote users. It also helps security teams apply consistent access rules across users and devices.
Ecosystem fit with Aruba networking
The offering is intended to work within Aruba’s networking and security ecosystem, which can simplify operational alignment between network access and security policy. For Aruba-centric environments, this can reduce integration effort versus stitching together unrelated vendors. It can also support a more unified approach to access enforcement across campus, branch, and remote users.
Feature depth varies by module
SSE platforms often differ in maturity across secure web gateway, CASB, and data protection capabilities. Depending on the deployment goals, some organizations may find that certain advanced controls (for example, deep SaaS governance or granular data loss prevention) require additional components or do not match best-of-breed depth. A detailed requirements-to-capability mapping is typically necessary before standardizing.
Adoption may require architecture change
Moving from perimeter VPN and appliance-based web security to SSE typically requires changes to traffic steering, identity integration, and endpoint configuration. This can introduce project complexity for organizations with legacy network designs or multiple identity providers. Rollout planning and phased migration are often needed to avoid user disruption.
Potential vendor-stack dependency
Organizations that do not already use Aruba networking may see less operational benefit from ecosystem integration. In mixed-vendor environments, teams may need to invest more in integration work for policy, logging, and troubleshooting across tools. This can affect time-to-value compared with platforms that are already standard in the existing security stack.
Plan & Pricing
| Plan | Price | Key features & notes |
|---|---|---|
| Foundation (ZTNA only) | Not publicly listed — contact HPE for quote | Zero Trust Network Access for private apps; DNS/URL filtering; threat intelligence; DLP; malware/AV scanning. Bandwidth (BW) tiers purchased separately. |
| Foundation Plus (ZTNA + SWG) | Not publicly listed — contact HPE for quote | Includes Foundation features plus Secure Web Gateway (SWG) capabilities for web access inspection. |
| Advanced | Not publicly listed — contact HPE for quote | Foundation + SWG plus in-line CASB (visibility/control for SaaS apps), compliance dictionaries, unlimited SSL inspection, enhanced analytics. |
| Advanced Plus | Not publicly listed — contact HPE for quote | All Advanced features plus Cloud FW (FWaaS), Advanced DLP (including OCR), Sandbox (fast/deep file analysis), Local Edge deployment option. |
| SASE SWG BW (site-based) | Not publicly listed — contact HPE for quote | Site-based subscription protecting unmanaged devices; each license entitles 10 Mbps to the service; stackable BW licenses (also available as BW tiers: 20Mbps/50Mbps/100Mbps/200Mbps/500Mbps/1Gbps/2Gbps/Unlimited). Can integrate with EdgeConnect SD-WAN or third-party SD-WAN via IPsec tunnel. |
Notes: Billing options referenced on the official store include upfront, annual, and quarterly periodic billing. HPE documents and product pages describe the service structure (user-based and site-based subscriptions), available feature add-ons (Sandbox, Local Edge), and Customer Success package tiers, but do not publish per-user or per-site list prices on the public site—HPE directs buyers to request a custom quote.
Seller details
Hewlett Packard Enterprise Company
Spring, Texas, USA
2015
Public
https://www.hpe.com/
https://x.com/HPE
https://www.linkedin.com/company/hewlett-packard-enterprise/
