course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Describe identity-based networking concepts and components
• Define the components and processes of port-based authentication
• Identify the 802.1X components and their interrelation at a high level
• Identify requirements and options for non-supplicant devices
• Position individual components of an 802.1X network and identify compatibilities

---

prerequisites

The recommended Cisco learning offerings that the delegates may complete to benefit fully from this course, including the following:

• Cisco CCNA®
• Attendance of Securing Networks with Routers and Switches (SECURE) or equivalent knowledge
• Knowledge of Microsoft Windows Server 2008 Active Directory
• Knowledge of Cisco wireless LAN controllers and lightweight access points
• Knowledge of basic command-line configuration of Cisco Catalyst switches

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Understand how the RADIUS and TACACS + protocols operate and what purpose they serve
• Understand the current ACS solution offering, including ACS Express, ACS Enterprise, ACS on VMware, and appliances such as the CSACS-1120 Series and CSACS-1121 Series
• Describe the major components of ACS
• Determine the best installation practices for ACS 5.2
• Configure the ACS from a default install
• Understand the Licensing requirements of ACS and how licensing works
• Understand how attributes, value types, and predefined values are used
• Describe the Types of Authentication, Authorization, and Accounting (AAA) clients available and how they access network resources and other AAA clients
• Work with a local identity store and identity store sequence
• Understand users and identity stores
• Configure an external identity store with LDAP
• Understand the Fundamentals of LDAP
• Set up LDAP SSL
• Set up an external identity store with Active Directory
• Perform AAA with TACACS+
• Monitor and troubleshoot ACS (AAA with TACACS+)
• Use a local certificate authority to replace digital certificates self-signed by ACS
• Introduction to IEEE 802.1x and EAP
• 802.1x using Windows XP, Windows 7, and Any Connect 3.x supplicants
• 802.1x single host authentication
• 802.1x troubleshooting

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• CCNA Certification
  
  • ICND1 plus ICND2 or CCNABC recommended
• CCNA Security Certification
  
  • IINS recommended but not mandatory
• Working Knowledge of the Microsoft windows operating system

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Introduce Cisco NAC components and posture validation process flow.
• Explain the procedures required to configure and administer Cisco Secure ACS for Cisco NAC.
• Explain the commands required to configure and administer a Cisco router for use as a Cisco NAC Network Access Device.
• Explain the commands required to configure and administer a Cisco switch for use as a Cisco NAC Network Access Device.
• Explain the processes required to configure and administer Cisco NAC agents.
• Describe the CANAC solution and various CCA deployment options.
• Configuring User Roles, external authentication and DHCP for CANAC deployments.
• Implementing Cisco Clean Access Out-of-Band deployment.
• Managing switches and routers for CANAC deployments.
• Discuss several CANAC implementation options
• Use CANAC Manager to monitor operational information for CCA deployment, including information on user activity, syslog events, and network configuration changes.
• Use Administration Module of the CANAC Manager to configure internal administration settings, such as its interface addresses, DNS servers, and other network information.
• Describe the MARS solution, features, and functions.
• Given MARS software and hardware appliance, cover the basic physical installation process.
• Add Reporting devices into MARS appliance.
• Configure security devices to generate interesting events that constitute an attack scenario and have MARS collect the interesting events for incident investigation.
• Discuss attack mitigation and false positive confirmation in context to MARS appliance.
• Configure appliance to perform Incident Investigation and attack mitigation.
• Explain how to create, view and save a long-duration query and reports on the MARS appliance.
• Configure the MARS appliance to send an alert.
• Describe and configure a rule (or rules) that detect interesting patterns of network activity and other anomalous network behaviour.
• Use management features in the MARS appliance to assign event, addressing, service, and user information.
• Configure hardware maintenance chores like viewing audit trail, data archiving, hot swapping hard drives, upgrading software on MARS appliance.
• Provide overview of MARS Global Controller

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Certified as a CCNP Security or the equivalent knowledge.
• Pass SECUR exam (642-501) and/or SNRS exam (642-502).
• At least six months practical experience configuring Cisco routers and security products.
• Familiarity with implementing network security policies and the following networking components and concepts:
  • Perimeter security system components: Perimeter router, firewall, IPS, VPN and DMZ host.
  • Servers: Syslog servers, web servers, and FTP servers.
  • Protocols: Syslog, SNMP, SSH, FTP, and Telnet

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Given client network security requirements, explain how a Cisco NAC Appliance deployment scenario will meet or exceed network security requirements
• Configure the common elements of a Cisco NAC Appliance solution
• Configure the Cisco NAC Appliance in-band and out-of-band implementation options
• Implement a highly available Cisco NAC Appliance solution to mitigate network threats and facilitate network access for those users that meet corporate security requirements
• Maintain a highly available Cisco NAC Appliance deployment in medium and enterprise network environments

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Certification as a CCNP Security or the equivalent knowledge
• Basic knowledge of the Microsoft Windows operating system
• Familiarity with networking and security terminology and concepts
• Fundamental knowledge of implementing network security or CCNP Security or Cisco Security CSQ
• SWITCH or working knowledge of VLANs
• SECURE or working knowledge of digital certificates
• ROUTE or working knowledge of HSRP

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Evaluate the basic firewall technology, features, hardware models, and licensing options of the Cisco ASA security appliance
• Implement and troubleshoot basic Cisco ASA security appliance connectivity and device management plane features
• Configure and verify Cisco ASA security appliance network integration
• Configure and verify Cisco ASA security appliance policy
• Configure and verify high availability and virtualization on Cisco ASA security appliances

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Cisco Certified Network Associate (CCNA®) certification
• Cisco Certified Network Associate Security (CCNA Security) certification
• Working knowledge of the Microsoft Windows operating system

course objectives

Upon completing this course, the student will be able to meet these overall objectives:

• Describe the components of a comprehensive network security policy that can be used to counter threats against IT systems, within the context of a security policy life cycle
• Develop and implement security countermeasures that are aimed at protecting network elements as part of the network infrastructure
• Deploy and maintain threat control and containment technologies for perimeter security in small and midsize networks
• Describe secure connectivity strategies and technologies using VPNs, as well as configure site-to-site and remote-access VPNs using Cisco IOS features

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Skills and knowledge equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1)
• Working knowledge of the Windows operating system
• Working knowledge of Cisco IOS networking and concepts

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Evaluate products and deployment architectures for the Cisco IPS product line
• Perform an initial implementation of a Cisco IPS sensor
• Implement an initial security policy using a Cisco IPS sensor according to local policies and environmental requirements
• Deploy customized policies to adapt Cisco IPS traffic analysis and response to the target environment
• Implement a basic Cisco IPS data management and analysis solution
• Implement complex Cisco IPS policy virtualization, high-availability, and high-performance solutions according to policy and environmental requirements
• Perform the initial setup of and maintenance of specific Cisco IPS hardware

 

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Cisco CCNA® certification:
  • Interconnecting Cisco Network Devices, Part 1 (ICND1)
  • Interconnecting Cisco Network Devices. Part 2 (ICND2)
• Cisco CCNA Security certification:
  • Implementing Cisco IOS Network Security (IINS)
• Working knowledge of the Microsoft Windows operating system

 

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Describe the Cisco TrustSec 2.0 solution architecture and deployment methodologies using the Cisco ISE platform
• Configure the Cisco ISE platform in a network that includes Microsoft Active Directory
• Configure the Cisco ISE software for wired and wireless 802.1X
• Deploy firewall-based VPN services using the Cisco ASA 5500 Series Adaptive Security Appliances and inline posture
• Configure the Cisco ISE for classification and policy enforcement
• Deploy the Cisco ISE Profiler Service, Posture Service, and Guest Service
• Troubleshoot user authentication and policy enforcement problems that are based on configuration errors or network issues
• Create a low-level design for the Cisco ISE platform deployment methodology, scaling requirements, and platform resiliency

---

prerequisites

The recommended Cisco learning offerings that the delegates may complete to benefit fully from this course, including the following:

• Cisco CCNA® certification or equivalent level of experience with the configuration of Cisco routers and switches
• Introduction to 802.1X Operations for Cisco Security Professionals Version 1.0

Recommended:

• Cisco CCNP® certification or equivalent level of experience
• Cisco CCSP® certification or equivalent level of experience
• Base level of knowledge and understanding of the Cisco NAC Appliance and Cisco Secure ACS server version 5.X.

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Describe a Cisco Security MARS solution and its role in Cisco Threat-Defense System management
• Describe the software components of Cisco Security MARS architectural design
• Configure the network reporting devices to work with the Cisco Security MARS appliance
• Describe the key concepts involved in using network reporting and mitigation devices with the Cisco Security MARS appliance
• Use the Summary page to view the security status of your network
• Describe and configure a rule that detects interesting patterns of network activity and other anomalous network behaviour
• Describe the process of generating queries and reports in a Cisco Security MARS appliance
• Describe the process of incident investigation on a Cisco Security MARS appliance
• Configure user-defined log parser templates on the Cisco Security MARS appliance
• Integrate Cisco Security Manager and Cisco Security MARS
• Perform system maintenance tasks on the Cisco Security MARS appliance
• Identify common issues about Cisco Security MARS
• Describe the features and functions of the Cisco Security MARS Global Controller
• Summarize the key functionalities of Cisco Security MARS technologies at work

 

---

prerequisites

The knowledge and skills that a delegate  must have before attending this course are as follows:

• Cisco CCNP Security certified or equivalent knowledge
• Completion of the Securing Cisco IOS Networks (SECUR) exam (642-501)
• At least six months of practical experience configuring Cisco routers and security products
• Familiarity with implementing network security policies and these networking components and concepts:
  • Perimeter security system components: Perimeter router, firewall, intrusion prevention system (IPS), virtual private network (VPN), and demilitarized zone (DMZ) host
  • Servers: Cisco Security Manager; syslog; authentication, authorization, and accounting (AAA); Cisco Secure Access Control Server (Cisco Secure ACS); and FTP
  • Protocols: syslog, Simple Network Management Protocol (SNMP), Secure Shell (SSH), FTP, and Telnet

 

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Understand how Cisco NAC operates
• Configure Cisco Secure ACS to operate as a Cisco NAC AAA policy server
• Configure Cisco IOS routers, switches, and access points to act as Cisco NAC NADs
• Configure Cisco agents to act as Cisco NAC clients
• Configure a Trend Micro policy server to operate as an external Cisco NAC policy server

---

prerequisites

The knowledge and skills that a delegate must have before attending this course include the following:

• Certification as a CCNP Security or the equivalent knowledge
• Basic knowledge of the Microsoft Windows operating system
• Familiarity with networking and security terminology and concepts

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Implement and maintain Cisco IOS Software infrastructure protection controls in a Cisco router- and switch-based network infrastructure
• Implement and maintain Cisco IOS Software threat control and containment technologies in a Cisco router-based perimeter infrastructure
• Implement and maintain Cisco IOS Software VPN technologies in a Cisco router-based WAN
• Implement and maintain Cisco IOS Software remote access VPN technologies in a Cisco router-based remote access solution

 

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Cisco CCNA® certification:
  • Interconnecting Cisco Network Devices Part 1 (ICND1)
  • Interconnecting Cisco Network Devices Part 2 (ICND2)
• Cisco CCNA Security certification:
  • Implementing Cisco IOS Network Security (IINS)
• Working knowledge of the Microsoft Windows operating system

 

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Present an overview of the Cisco Security Manager product, describe the main product features, and introduce the basic deployment tasks
• Manage configuration of Cisco ASA adaptive security appliances and Cisco FWSM firewall devices, and explain firewall event management and device configuration correlation
• Describe the most commonly used VPN topologies and their deployment
• Examine the configuration of intrusion prevention mechanisms on the Cisco IOS platform, modules, and standalone appliances, as well as explain the Cisco IPS event and configuration correlation
• Explain how Cisco Security Manager works with Cisco IOS devices, including the new Cisco ISR G2 routers
• Describe the FlexConfig functionality of Cisco Security Manager, the workflow mode of operation, and administrative tasks and integration with Cisco Secure ACS

 

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Cisco CCNP® Security certification:
  • Securing Networks with Cisco Routers and Switches (SECURE)
  • Deploying Cisco ASA Firewall Features (FIREWALL)
  • Deploying Cisco ASA VPN Solutions (VPN)
  • Implementing Cisco Intrusion Prevention System (IPS)
• Understanding of networking and routing (on the CCNP level, but no certification is required)
• Understanding of different VPN technologies (such as DMVPN, GET VPN, and SSL VPN)
• Working knowledge of the Microsoft Windows operating system

 

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Recognize modern threats to enterprise business processes
• Recognize modern security controls
• Choose appropriate controls for specific threats and environments
• Apply basic security design guidelines
• Recognize basic customer requirements and environment limitations, and build an optimal solution based on them
• Position Cisco security products in basic customer scenarios

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Basic network design concepts (can be obtained attending the Designing for Cisco Internetwork Solutions [DESGN] course)
• Intermediate user-level operating system concepts, especially for Microsoft Windows

course objectives

Upon completing this course, the delegate will be able to meet these overall objectives:

• Describe the general properties of the Cisco ASA security appliance VPN subsystem
• Implement and maintain Cisco clientless remote access Secure Sockets Layer (SSL) VPNs on the Cisco ASA security appliance VPN gateway
• Implement and maintain Cisco AnyConnect client-based remote access SSL VPNs on the Cisco ASA security appliance VPN gateway, according to policies and environmental requirements
• Implement and maintain Cisco remote access IP Security (IPsec) VPNs on the Cisco ASA VPN gateway, according to policies and environmental requirements
• Implement and maintain site-to-site VPN solutions on the Cisco ASA security appliance VPN gateway, according to policies and environmental requirements
• Deploy endpoint security with Cisco Secure Desktop and dynamic access policy (DAP), and deploy and manage high-availability and high-performance features of the Cisco ASA security appliance

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Cisco CCNA® certification
• Cisco CCNA Security certification
• Completion of the course Deploying Cisco ASA Firewall Solutions (FIREWALL)
• Working knowledge of the Microsoft Windows operating system

course objectives

Upon completing this course, the delegate will be able to meet these overall objective:

• Describe, Configure, Administer, and Troubleshoot
• Simple and complex deployment scenarios
• PAC files
• WCCP
• On the Cisco IronPort Web Security Appliance (WSA)
• On the Cisco Adaptive Security Appliance (ASA)
• The Web Security Appliance Policy Framework
• Authentication
• Cisco IronPort Web Usage Controls
• Web Reputation Filters
• The DVS Anti-malware Engine
• Inbound malware scanning
• Outbound malware scanning
• HTTPS inspection
• Data security and data loss prevention

---

prerequisites

The knowledge and skills that a delegate must have before attending this course are as follows:

• Knowledge of IP routing, and TCP/IP services, including DNS, SSH, FTP, SNMP, and HTTPS is assumed
• High level understanding of web proxy servers is assumed
• High level understanding of web security concepts and technologies is assumed
• Some familiarity with the Cisco Adaptive Security Appliance (ASA) is desirable