Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0

Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0

Course Delivery

This Course is available in the following format:

Request this course in a different delivery format

GSA Schedule 70 Saving for Government Customers

Course Overview:

Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 – Hands-on

Learn to install, configure, and deploy ISE with enhanced labs written for ISE version 2.4

In this Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course, you will learn about the Cisco Identity Services Engine (ISE) – a next-generation identity and access control policy platform that provides a single policy plane across the entire organization combining multiple services including authentication, authorization, and accounting (AAA) using 802.1x, MAB, web authentication, posture, profiling, device on-boarding, guest services, and VPN access into a single context-aware identity-based platform. The Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 provides learners with the knowledge and skills to enforce security compliance for wired and wireless endpoints and enhance infrastructure security using the Cisco ISE.>/p>

This Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course is an intensive hands-on experience. With enhanced hands-on labs, you will cover all facets of Cisco ISE version 2.4. You will learn how to configure fundamental elements of ISE and how to secure identity-based networks using 802.1X for both wired and wireless clients, using Windows 10 and Apple iPad endpoints. You will integrate the Cisco Virtual Wireless LAN Controller (vWLC) with advanced ISE features. With Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0, you will also learn to use the following advanced features of Cisco ISE: Active Directory Integration, Policy Sets, EasyConnect, EAP-FAST with EAP Chaining, BYOD, AnyConnect 4.x Posture Module for LAN and VPN compliance, TACACS+ Device Management, and TrustSec Security Group Access.

Customize It:

• If you are familiar with some aspects of this Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course in manner understandable to lay audiences.

Related Courses:

SISAS Training – Implementing Cisco Secure Access Solutions Training
SIMOS Training – Implementing Cisco Secure Mobility Solutions Training

Class Prerequisites:

The knowledge and skills that a learner must have before attending this Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course are as follows:

• CCNA Security or equivalent level of experience with Cisco devices
• Foundation-level wireless knowledge and skills
• Familiarity with Microsoft Windows and Microsoft Active Directory
• Familiarity with 802.1X
• Familiarity with Cisco ASA

Audience / Target Group:

The target audience for this Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course:

• ISE Administrators/Engineers
• Wireless Administrators/Engineers
• Consulting Systems Engineers
• Technical/Wireless/BYOD/Security Solutions Architects
• ATP partner systems and field engineers
• Systems integrators who install and implement the Cisco Identity Service Engine version 2.1

Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 – Objectives:

Upon completing this Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 course, learners will be able to meet these objectives:

• Describe Cisco ISE deployments, including core deployment components and how they interact to create a cohesive security architecture. Describe the advantages of such a deployment and how each Cisco ISE capability contributes to these advantages.
• Describe concepts and configure components related to 802.1X and MAC Authentication Bypass (MAB) authentication, identity management, and certificate services.
• Describe how Cisco ISE policy sets are used to implement authentication and authorization, and how to leverage this capability to meet the needs of your organization.
• Describe third-party network access devices (NADs), Cisco TrustSec®, and Easy Connect.
• Describe and configure web authentication, processes, operation, and guest services, including guest access components and various guest access scenarios.
• Describe and configure Cisco ISE profiling services, and understand how to monitor these services to enhance your situational awareness about network-connected endpoints. Describe best practices for deploying this profiler service in your specific environment.
• Describe BYOD challenges, solutions, processes, and portals. Configure a BYOD solution, and describe the relationship between BYOD processes and their related configuration components. Describe and configure various certificates related to a BYOD solution.
• Describe the value of the My Devices portal and how to configure this portal.
• Describe endpoint compliance, compliance components, posture agents, posture deployment and licensing, and the posture service in Cisco ISE.
• Describe and configure TACACS+ device administration using Cisco ISE, including command sets, profiles, and policy sets. Understand the role of TACACS+ within the authentication, authentication, and accounting (AAA) framework and the differences between the RADIUS and TACACS+ protocols.
• Migrate TACACS+ functionality from Cisco Secure Access Control System (ACS) to Cisco ISE, using a migration tool.

Implementing and Configuring Cisco Identity Services Engine Training (SISE) v3.0 – Course Syllabus:

Module 1: Introducing Cisco ISE Architecture and Deployment

Cisco ISE Features and Services
Cisco ISE Deployment Models

Module 2: Cisco ISE Policy Enforcement

Introducing 802.1X and MAB Access: Wired and Wireless
Introducing Cisco ISE Identity Management
Configuring Cisco ISE Certificate Services
Introducing Cisco ISE Policy Sets
Configuring Cisco ISE Authentication and Authorization Policy
Implementing Third-Party Network Access Device Support
Overview of Cisco TrustSec using Cisco ISE
Introducing Cisco ISE EasyConnect

Module 3: Web Auth and Guest Services

Introducing Web Access with Cisco ISE
Introducing Cisco ISE Guest Access Components
Configuring Guest Access Settings
Configuring Portals: Sponsors and Guests

Module 4: Cisco ISE Profiler

Introducing Cisco ISE Profiler
Configuring Cisco ISE Profiling

Module 5: Cisco ISE BYOD

Introducing the Cisco ISE BYOD Process
Describing BYOD Flow
Configuring My Devices Portal Settings
Configuring Certificates in BYOD Scenarios

Module 6: Cisco ISE Endpoint Compliance

Introducing Cisco ISE Endpoint Compliance
Configuring Client Posture Services and Provisioning in Cisco ISE

Module 7: Working with Network Access Devices

Configuring TACACS+ for Cisco ISE Device Administration

Labs:

1. ISE Familiarization and Certificate Usage
2. Active Directory and Identity Source Sequences
3. Policy Sets, Conditions Studio, and Network Devices
4. Passive Identity (Easy Connect)
5. 802.1X-Wired Networks – PEAP
6. 802.1X-Wired Networks – EAP-FAST
7. 802.1X-Wireless Networks
8. 802.1X-MAC Authentication Bypass (MAB)
9. Centralized Web Authentication (CWA)
10. Guest Access and Reports
11. Endpoint Profiling and Reports

Whether you are looking for general information or have a specific question, we want to help!

Request More Information

Print Friendly, PDF & Email