Duration: 5 Days
This course is designed to provide you with the necessary knowledge and skills to implement security features in a Cisco Unified Communications environment.
What You Will Learn
- Identify vulnerabilities in Cisco Unified Communications networks, describe security implementation strategies, cryptographic services, PKI, and VPN technologies
- Implement network infrastructure security features such as network separation and firewalling, 802.1X in phone VLANs, and the IP Phone VPN Client
- Harden Cisco Unified Communications endpoints and implement toll-fraud prevention features and Cisco Unified Communications Manager cryptographic security features
- Implement secure Cisco Unified Communications Manager integration with external devices, such as gateways, firewalls, and application proxies
Audience
Network security specialists, VoIP and network engineers, administrators, and technicians
Prerequistes
- Working knowledge of converged voice and data networks
- Working knowledge of Cisco IOS gateways, Cisco Unified SRST gateways, and Cisco Unified Border Element
- Working knowledge of Cisco Unified Communications Manager and Cisco Unified Communications Manager Express
- CCNP® Voice certification recommended
- Knowledge of network security fundamentals
- Knowledge of Cisco IOS Firewall and Cisco ASA adaptive security appliance firewalls
- Knowledge of IPsec or SSL VPNs or both
- CCNA® Security certification is recommended
Course Outline
1. Vulnerabilities of Cisco Unified Communications Networks and Security Fundamentals
- Assessing Vulnerabilities of Cisco Unified Communications Networks
- Describing Security Implementation Strategies
- Describing Cryptographic Services and Functions
- Describing Key Management and PKI
- Describing IPsec and Cisco AnyConnect SSL VPN
2. Network Infrastructure Security
- Implementing Network Separation and Packet Filtering
- Implementing Switch Security Features
- Implementing Cisco AnyConnect SSL VPNs in Cisco Unified Communications Networks
3. Cisco Unified Communications Manager and Endpoint Security Features
- Hardening Cisco Unified Communications Endpoints
- Implementing Toll-Fraud Prevention
- Implementing Native Cisco Unified Communications Manager Security Features
- Implementing Cisco Unified Communications Manager Security Features Based on Security Tokens
4. Secure Cisco Unified Communications Integration and Features
- Implementing SRTP to Gateways and Signaling Protection by IPsec
- Implementing Secure Signaling and SRTP in SRST and Cisco Unified Communications Manager Express
- Implementing Trusted Relay Points
- Implementing Proxies for Secure Signaling and SRTP
Course Labs
Lab 1: Identifying Security Weaknesses in a Cisco Unified Communications Network
Lab 2: Implementing Firewalls
Lab 3: Implementing 802.1X
Lab 4: Implementing Cisco AnyConnect SSL VPNs
Lab 5: Implementing Cisco UC Manager Security Features Based on Security Tokens
Lab 6: Implementing SRTP to Gateways and Signaling Protection by IPsec
Lab 7: Implementing Secure SRST and Secure Cisco UC Manager Express
Lab 8: Implementing Trusted Relay Points
Lab 9: Implementing Proxies for Signaling and RTP
