Duration: 3 Days
In this course, you will discover the capabilities and functions of the IEEE 802.1X protocol and learn to configure the Cisco Identity Services Engine (ISE) for 802.1X operation. You will be introduced to the architecture, components, and features of an identity-based network designed around the IEEE 802.1X and RADIUS protocols. You will receive hands-on training configuring a network for 802.1X-based network services using the Cisco ISE, Cisco Catalyst switches, and Cisco wireless products.
What You Will Learn
- Identity-based networking concepts and components
- Components and processes of port-based authentication
- 802.1X components and their interrelation at a high level
- Requirements and options for non-supplicant devices
- Position individual components of an 802.1X network and the compatibilities
Audience
- Cisco partner sales engineers and field engineers supporting customers with 802.1X solutions
- Cisco channel partner sales engineers and field engineers looking to meet the education requirements to attain ATP authorization to sell Cisco ISE
- Security architects, design engineers, and others seeking hands-on experience with Cisco TrustSec 802.1X deployments with Cisco ISE
- Field engineers preparing for the Introduction to 802.1X Operations for Cisco Security Professionals Exam (650-472 S802DT1X)
Prerequistes
- CCNA
- SECURE - Securing Networks with Routers and Switches or equivalent knowledge
- Knowledge of Microsoft Windows Server 2008 Active Directory
- Knowledge of Cisco Wireless LAN Controllers and Lightweight Access Points
- Knowledge of basic command-line configuration of Cisco Catalyst switches
Course Outline
1. Cisco TrustSec
- Surveying Cisco TrustSec
- Surveying Cisco TrustSec Architecture Components
2. Port-Based Authentication
- Surveying the IEEE 802.1X Standard
- Surveying 802.1X and EAP
- Role of RADIUS in EAP Communications
3. Configure Devices for 802.1X Operation
- 802.1X Components and Topologies
- Configuring Cisco ISE for 802.1X
- Configuring Network Devices for 802.1X
- Configuring Supplicants for 802.1X Operation
4. Configure Guest Access
- Configuring Cisco TrustSec for Non-Supplicant Devices
- Configuring Cisco WebAuth for Non-Supplicant Devices
5. Design Cisco TrustSec Networks with Cisco ISE and 802.1X
- Component Capabilities with 802.1X
- 802.1X Design Considerations Impacting Implementation
- Scalable 802.1X Architectures
Course Labs
Lab 1-0: Access the Lab Equipment
Lab 1-1: Configure Cisco ISE, Switch, WLC, and Clients
Lab 2-1: Configure Authentication Using Web Authentication
Lab 3-1: Design an End-to-End High-Level Cisco TrustSec Network with Cisco ISE and 802.1X