Duration: 5 Days
In this course, you will learn to configure various advanced Cisco security solutions for mitigating outside threats and securing devices connected to the network. You will learn how to reduce the risk to your IT infrastructures and applications using Cisco's Identity Services Engine (ISE) appliance feature.
What You Will Learn
- Cisco ISE architecture and access control capabilities
- 802.1X architecture, implementation, and operation
- Commonly implemented Extensible Authentication Protocols (EAP)
- Implement public-key infrastructure (PKI) with ISE
- Implement internal and external authentication databases
- Implement MAC authentication bypass
- Implement identity based authorization policies
- Cisco TrustSec features
- Implement web authentication and guest access
- Implement ISE posture service
- Implement ISE profiling
- Bring Your Own Device (BYOD) with ISE
- Troubleshoot ISE
Audience
Network security engineers
Prerequistes
- Cisco Certified Network Associate (CCNA®) certification
- Cisco Certified Network Associate (CCNA®) Security certification
- Knowledge of Microsoft Windows operating system
Course Outline
1. Threat Mitigation Through Identity Services
2. Cisco Identity Services Engine (ISE) Fundamentals
3. Advanced Access Control
4. Web Authentication and Guest Access
5. Endpoint Access Control Enhancements
6. Troubleshooting Network Access Control
Course Labs
Lab 1: Bootstrap Identity System
Lab 2: Enroll Cisco ISE in PKI
Lab 3: Implement MAB and Internal Authentication
Lab 4: Implement External Authentication
Lab 5: Implement EAP-TLS
Lab 6: Implement Authorization
Lab 7: Implement Central WebAuth and Guest Services
Lab 8: Implement Posture Service
Lab 9: Implement the Profile Service
Lab 10: Troubleshooting Network Access Control
