Implementing and Configuring Cisco Identity Services Engine (SISE)

description

This course is an intensive hands-on experience. With enhanced hands-on labs, you will cover the Cisco ISE version 1.4 (labs). You will learn how to perform a fundamental installation of ISE and how to configure identity-based networks using 802.1X for both wired and wireless clients, using Windows 8 and Apple iPad endpoints. You will also learn to use many of the new features, including AnyConnect 4.1 Posture Module for LAN and VPN posture compliance, EAP-FAST, PEAP, BYOD, and EAP Chaining. You’ll also see how the new Virtual Wireless Controller (vWLC) works to integrate with ISE along with advanced features within ISE.

This course is focused specifically on the Cisco Identity Services Engine (ISE), an identity and access control policy platform that provides a single policy plane across the entire organization, combining multiple services, including authentication, authorization, and accounting (AAA), posture, profiling, device on-boarding, and guest management, into a single context-aware identity-based platform.

The training provides learners with the knowledge and skills to enforce security posture compliance for wired and wireless endpoints and enhance infrastructure security using the Cisco ISE.

This course is based on ISE v2.1. Please note extended hours for this bootcamp.

who should attend

Individuals involved in the deployment and maintenance of the Cisco ISE platform

prerequisites

CCNA Security certification ICND1 or CCNA and IINS

Understand the concepts of 802.1X - 802.1x recommended

Familiarity with Microsoft Windows and Active Directory

learning objectives

  • Describe Cisco ISE architecture, installation, and distributed deployment options
  • Configure Network Access Devices (NADs), policy components and basic authentication and authorization policies in Cisco ISE
  • Implement Cisco ISE web authentication and guest services
  • Deploy Cisco ISE profiling, posture and client provisioning services
  • Describe administration, monitoring, troubleshooting, and TrustSec SGA security
  • Configure device administration using TACACS+ in Cisco ISE

course information

  • Length:

    5 day

  • Format:

    Lecture and Lab

  • Delivery Method:

    Virtual / Onsite

  • Max Capacity:

    16

Contact Us

labs

  • Lab 1: ISE Familiarization and Certificate Usage
  • Lab 2: Active Directory and Identity Source Sequences
  • Lab 3: Policy Sets, Conditions Studio, and Network Devices
  • Lab 4: Passive Identity (Easy Connect)
  • Lab 5: 802.1X-Wired Networks – PEAP
  • Lab 6: 802.1X-Wired Networks - EAP-FAST
  • Lab 7: 802.1X-Wireless Networks
  • Lab 8: 802.1X-MAC Authentication Bypass (MAB)
  • Lab 9: Centralized Web Authentication (CWA)
  • Lab 10: Guest Access and Reports
  • Lab 11: Endpoint Profiling and Reports
  • Lab 12: BYOD and My Device Portal
  • Lab 13: Posture Compliance and Reports
  • Lab 14: Compliance Based VPN Access
  • Lab 15: Threat Centric NAC with AMP for Endpoint
  • Lab 16: Firepower pxGrid Remediation
  • Lab 17: TACACS+ Device Administration
  • Lab 18: TrustSec Security Group Access
  • Lab 19: Additional Guest Scenarios
  • Lab 20: ISE Distributed Deployment

upcoming training sessions

dateslocationduration
Jun 24, 2019Remote CDT5 DAY COURSE
Sep 30, 2019REMOTE-EMEA-GMT5 DAY COURSE
Nov 18, 2019Remote CST5 DAY COURSE