Cisco VPN 2.0: Deploying Advanced AAA in Cisco Full-Tunnel VPNs
This course is included in our On-demand training solution.
When deploying VPNs, it is important to use strong authentication options. This course describes several advanced authentication options that you can use when implementing Cisco AnyConnect full-tunnel Secure Sockets Layer (SSL) VPNs on the Cisco ASA adaptive Security Appliance. These authentication options offer more adequate security and scalability, compared to basic local authentication.
Advanced password-based authentication using external authentication, authorization, and accounting (AAA) servers, certificate-based authentication using the local certificate authority (CA) of the Security Appliance, and options that are available to verify user certificates for revocation are also covered.
Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security designation. Cisco Network Security Engineers responsible for the selection, configuration, and the troubleshooting of the majority of Cisco ASA adaptive Security Appliance perimeter security features to reduce risk to IT infrastructure and its applications within their networking environments. Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure, as well as working knowledge of the Microsoft Windows operating system. Candidates who have completed the Cisco Certified Network Associate (CCNA), the Cisco Certified Network Associate Security (CCNA Security), the Securing Networks with Cisco Routers and Switches (SECURE) v1.0, and the Deploying Cisco ASA Firewall Solutions (FIREWALL 2.0) Certifications.
SSL VPN Gateway and User Authentication Overview
Deploying Advanced Client Authentication
Deploying Certificate-Based Authentication Using CAs
Configuring SCEP Proxy
Multiple Client Authentication
Configuring Local Group Policy Authorization
Configuring Remote Group Policy Authorization