Cisco SNAA 1.0 Instructor Series: Certificates, Easy VPN, and QoS

This course is included in our On-demand training solution.


This course is part of Skillsoft's Instructor Series, technical courses presented in spontaneous lecture-style by subject matter experts. This is 3 of 6 of the Securing Networks with ASA Advanced (SNAA) 1.0 series. This course focuses on the new features and syntax of Cisco Security Appliance Software v8.0. This course teaches the knowledge and skills needed to configure, maintain, and operate Cisco ASA 5500 Series Adaptive Security Appliances at an advanced level. This course further updates Securing Networks with PIX and ASA (SNPA) v5.0 and includes extensive VPN features of the ASA which replaces Cisco Secure Virtual Private Networks (CSVPN).

Target Audience

This is an ideal course for CCNA students looking for the CCSP certification or employees, customers and channel partners and resellers who want to extend their knowledge of network security. It is an excellent choice for the CCSP elective since it is a logical extension of the required SNAF.


This class assumes familiarity with Ethernet switching, TCP/IP addressing and basic networking configuration of the Cisco IOS software. Ideally, students possess CCNA certification and have already passed the SNAF certification exam.

Expected Duration

141 min.

Course Objectives

Understanding IPsec and Digital Certificates Cont.

Implementing Site-to-Site VPNs with Digital Certificates

Labs: Configuring Site-to-Site VPNs with Pre-shared Keys

Configuring the Cisco VPN Client

Implementing Remote-Access VPNs with Digital Certificates

  • – Describe the components of remote-access VPNs – Describe the general tasks for configuring a Cisco ASA adaptive security appliance to support Cisco VPN Remote Client access – Configure the Cisco ASA security appliance to use digital certificates manually – Define an address pool for remote-access VPN connections – Explain the user policy inheritance that is determined by the Cisco ASA appliance – Configure an IPsec connection profile to support digital certificates – Configure a certificate to connection policy to map the identity certificate to the proper connection profile – Use Cisco ASDM graphs and show commands to verify the operation of remote-access VPNs – Use logging and debug commands to troubleshoot remote-access VPNs
  • Labs: Configuring the Corporate ASA as a Cisco Easy VPN Server