Implementing and Configuring Cisco Identity Services Engine (SISE) 1.1

Implementing and Configuring Cisco Identity Services Engine (SISE) 1.1
  • Implementing and Configuring Cisco Identity Services Engine (SISE) 1.1

    5 päivän kurssi
    Network Security
    1 Star2 Stars3 Stars4 Stars5 Stars (5 votes, average: 5.00 out of 5)


    € 3950(alv 0 %)

    Course Details


    This course discusses the Cisco Identity Services Engine (ISE) version 1.1.1, a next-generation identity and access control policy platform that provides a single policy plane across the entire organization combining multiple services, including authentication, authorization, and accounting (AAA), posture, profiling, device on-boarding, and guest management, into a single context-aware identity-based platform. The training provides learners with the knowledge and skills to enforce security posture compliance for wired and wireless endpoints and enhance infrastructure security using the Cisco ISE.


    Upon completing this course, the learner will be able to meet these overall objectives:

    • Describe Cisco ISE architecture, installation, and distributed deployment options.
    • Configure Network Access Devices (NADs), policy components, and basic authentication and authorization policies in Cisco ISE – Implement Cisco ISE web authentication and guest services.
    • Deploy Cisco ISE profiling, posture and client provisioning services.
    • Describe administration, monitoring, troubleshooting, and TrustSec SGA security.


    Module 1: Cisco ISE Product Overview

    Module 2: Cisco ISE Authentication and Authorization

    Module 3: Web Authentication and User Access Management

    Module 4: Cisco ISE Profiler, Posture, and Endpoint Protection Services

    Module 5: Reports, Monitoring, Troubleshooting, and Security


    Module 1: Cisco ISE Product Overview


    Lesson 1: Introducing the Cisco ISE

    • Overview of Cisco TrustSec
    • Overview of Cisco ISE
    • Cisco ISE Architecture
    • Cisco ISE Deployment Options


    Lesson 2: Getting Started with Cisco ISE

    • Installing Cisco ISE
    • Network Time Protocol
    • Cisco ISE Certificates
    • Monitoring Basics
    • Configuring and Verifying Cisco ISE Distributed Deployment


    Lab 1-1: Installing the Cisco ISE

    Lab 1-2: Certificate Operations

    Lab 1-3: Cisco ISE Node Deployment


    Module 2: Cisco ISE Authentication and Authorization


    Lesson 1: Configuring Basic Access

    • NAD Overview
    • IEEE 802.1X Primer
    • Cisco Switch Configuration
    • Cisco WLC Configuration
    • Cisco ASA Appliance Configuration
    • Cisco ISE Authentication Process
    • Internal Databases
    • Simple Authentication
    • Rule-Based Authentication
    • Sessions in Cisco ISE


    Lesson 2: Understanding External Authentication

    • External Authentication Process
    • Active Directory
    • Active Directory
    • Lightweight Directory Access Protocol
    • RADIUS
    • Certificates
    • Identity Source Sequencing
    • Authentication Support and Performance


    Lab 2-1: Configure and Add Network Access Devices to Cisco ISE

    Lab 2-2: Configure External Identity Sources


    Lesson 3: Using Cisco ISE Dictionaries


    • Overview of Cisco ISE Dictionaries
    • Read-Only Dictionaries
    • Administrable Dictionaries


    Lab 2-3: Examine Cisco ISE Dictionaries


    Lesson 4: Configuring Authorization


    • Authorization Policies and Components
    • Authorization Policy Configuration
    • Exception Policies


    Lab 2-4: Basic Cisco ISE Policies

    Lab 2-5: Configuring Multiple Cisco ISE Policies


    Module 3: Web Authentication and User Access Management


    Lesson 1: Implementing Web Authentication


    • Web Authentication Overview
    • Configuring ISE Web Authentication
    • Verifying Web Authentication


    Lesson 2: Implementing Guest Services


    • Guest Service Overview
    • Preparing the Deployment
    • Configuring Sponsor Portal
    • Configuring Guest Portal
    • Creating Guest Accounts
    • Verifying Guest Accounts


    Lab 3-1: Configuring Cisco ISE Guest Services

    Lab 3-2: Guest Services Self-Registration


    Module 4: Cisco ISE Profiler, Posture, and Endpoint Protection Services


    Lesson 1: Implementing Cisco ISE Profiler Service


    • Profiler Service Overview
    • Configuring Profiling on Cisco ISE
    • Verifying Profiling


    Lab 4-1: Configuring Cisco ISE for Profiling


    Lesson 2: Implementing Cisco ISE Posture Service


    • Posture Service Overview
    • Configuring Cisco ISE for Client Provisioning
    • Adapting the Authorization Policy for Posture Compliance
    • Configuring the Posture System Settings
    • Configuring the Posture Policy
    • Verifying the Posture Service


    Lab 4-2: Configuring Cisco ISE for Posture Assessment


    Lesson 3: Implementing Cisco ISE Endpoint Protection Services


    • EPS Overview
    • Configuring EPS
    • Monitoring EPS


    Lab 4-3: Endpoint Protections Services


    Lesson 4: Implementing BYOD


    • BYOD Overview
    • Designing BYOD
    • Dual SSID BYOD Design
    • Device Onboarding User Experience


    Lab 4-4: BYOD


    Module 5: Reports, Monitoring, Troubleshooting, and Security


    Lesson 1: Implementing Inline Posture and TrustSec Security


    • Inline Posture
    • Security Group Access
    • MAC Security


    Lesson 2: Describing the Cisco ISE Architecture


    • Cisco ISE Deployment Types
    • Deploying Monitoring Personas
    • Preparing the Network Infrastructure


    Lesson 3: Performing Cisco ISE Administration and Maintenance


    • Role-Based Access Control
    • Cisco ISE Licensing
    • Backing Up and Restoring the System Configuration


    Lesson 4: Using Cisco ISE Reporting, Monitoring, and Troubleshooting


    • Cisco ISE Dashboard Monitoring
    • Implementing Logging
    • Managing Alarms
    • Cisco ISE Reports
    • Troubleshooting the Network
    • Backing Up and Restoring the Monitoring Database


    Lab 5-1: Logging Setup

    Lab 5-2: Cisco ISE Reporting

    Lab 5-3: Working with Cisco ISE Monitoring and Troubleshooting

    Lab 5-4: Patching Cisco ISE

    Lab A-1: GUI Orientation

    Lab A-2: Admin Access


    • Channel Partner / Reseller
    • Customer
    • Employee


    The knowledge and skills that a learner must have before attending this course are as follows:

    • CCNA Security certification.
    • Foundation-level network knowledge and skills necessary to install, configure, operate, and troubleshoot network devices and applications.
    • Foundation-level wireless knowledge and skills.
    • Basic knowledge of Cisco IOS networking and concepts.

    Tulevat päivämäärät

      Jun 11 - Jun 15, 2018
      Sep 10 - Sep 14, 2018
      Dec 10 - Dec 14, 2018