PPrerequisites
The learner is expected to have the following skills and knowledge before attending this course:
Familiarity with Cisco IOS CLI
Familiarity with Cisco ASA
Familiarity with Cisco VPN clients
Familiarity with Microsoft Windows Operating System
Familiarity with 802.1X
Course Content
This course discusses the Cisco Identity Services engine (ISE), an identity and access control policy platform that provides a single plane across the entire organization, combining multiple services, including authentication, authorization and accounting (AAA), posture and profiling, device on-boarding, and guest management, into a single context-aware identity-based platform. The training provides learners with the knowledge and skills to enforce security posture compliance for wired and wireless endpoints and enhance infrastructure security using the Cisco ISE.
Course Objectives
Upon completing this course, the learner will be able to meet these overall objectives:
Describe Cisco ISE architecture, installation, and distributed deployment options
Configure Network Access Devices (NADs), policy components, and basic authentication and authorization policies in Cisco ISE- Implement Cisco ISE web authentication and guest services
Deploy Cisco ISE profiling, posture and client provisioning services
Describe administration, monitoring, troubleshooting, and TrustSec SGA security
Configure device administration using TACACS+ in Cisco ISE
Course Outline
The course contains these components:
Module 1: Introducing Cisco ISE Architecture and Deployment
Module 2: Cisco ISE Enforcement
Module 3: Web Auth and Guest Services
Module 4: Cisco ISE Profiler
Module 5: Cisco ISE BYOD
Module 6: Cisco ISE Endpoint Compliance Services
Module 7: Cisco ISE with AMP and VPN-Based Services
Module 8: Cisco ISE Integrated Solutions with APIs
Module 9: Working with Network Access Devices