Implementing Cisco Secure Access Solutions v1.0

This course has been designed to provide engineers with the foundational knowledge and skills required to implement and manage network access security through the deployment of the Cisco Identity Services Engine and 802.1x Solution.

Students will gain hands-on experience with configuring advanced Cisco security solutions to enable secure device connection to the network and for mitigating outside threats. At the end of the course, students will be able to reduce the risk to their IT infrastructures and applications using Cisco’s ISE appliance features and provide operational support to identity and network access control.

Förkunskaper

Attendees should meet the following prerequisites:

  • Cisco Certified Network Associate Certification ICND1 and ICND2 or CCNABC
  • Cisco Certified Network AssociateSecurity Certification ICND1 and IINS
  • Knowledge of Microsoft Windows Operating System

Ämnesområden

Threat Mitigation Through Identity Services

  • Identity Services
  • 802.1X and EAP
  • Identity System Quick Start

Cisco Identity Services Engine (ISE) Fundamentals

  • Cisco ISE Overview
  • Cisco ISE with PKI
  • Cisco ISE Authentication
  • Configuring Cisco ISE for External Authentication

Advanced Access Control

  • Certificate-based User Authentication
  • Authorization
  • Security Group Access (SGA) and MACsec Implementation

Web Authentication and Guest Access

  • Describe the Cisco Email Security Solutions
  • Guest Access Services

Endpoint Access Control Enhancements

  • Posture
  • Profiler
  • BYOD

Troubleshooting Network Access Control

  • Troubleshooting Network Access Control

Labs

  • Lab 1-1: Bootstrap Identity System
  • Lab 2-1: Enroll Cisco ISE in PKI
  • Lab 2-2: Implement MAB and Internal Authentication
  • Lab 2-3: Implement External Authentication
  • Lab 3-1: Implement EAP-TLS
  • Lab 3-2: Implement Authorization
  • Lab 4-1: Implement Central WebAuth and Guest Services
  • Lab 5-1: Implement Posture Service
  • Lab 5-2: Implement the Profile Service
  • Lab 6-1: Troubleshooting Network Access Control

Du lär dig

After completing this course you should be able to:

  • Understand Cisco Identity Services Engine architecture and access control capabilities
  • Understand 802.1X architecture, implementation and operation
  • Understand commonly implemented Extensible Authentication Protocols (EAP)
  • Implement Public-Key Infrastructure with ISE
  • Understand the implement Internal and External authentication databases
  • Implement MAC Authentication Bypass
  • Implement identity based authorization policies
  • Understand Cisco TrustSec features
  • Implement Web Authentication and Guest Access
  • Implement ISE Posture service
  • Implement ISE Profiling
  • Understand Bring Your Own Device (BYOD) with ISE
  • Troubleshoot ISE

Målgrupp

This course is aimed at engineers looking to deploy or support a Cisco's Identity Services Engine solution and individuals looking to achieve the Cisco Certified Network Professional Certification for Security.

Om kursen

Pris: 29 000,00 kr

exklusive moms

Längd 5 dagar
Kurskod SISAS

Kursen hålls på begäran

Kontakta oss för mer information.

Telefon: 08-440 11 00
E-post: info@addskills.com