Cisco SISAS 1.0: Cisco TrustSec, MACsec, and WebAuth Access

This course is included in our On-demand training solution.

Overview

The Cisco Identity Services Engine (ISE) has support for features that provide enhanced access control capabilities in the Cisco ISE solution such as authorization, Security Group Access (SGA), MAC Security (MACsec), web authentication, as well as guest services. In this course, you will learn about certificate-based client authentication, Security Group Access (SGA) and MAC Security (MACsec) features that provide enhanced access control capabilities in the Cisco ISE solution. You will also learn about Cisco ISE WebAuth and the guest service features of the Cisco ISE. This course is one of a series in the Skillsoft learning path that covers the objectives for the Implementing Cisco Secure Access Solutions (SISAS) v1.0 (300-208 SISAS) exam.

Target Audience

This course is for anyone wishing to obtain the Implementing Cisco Secure Access Solutions (SISAS) v1.0 300-208 certification; one of four designed for the CCNP Security track from Cisco. Knowledge of Cisco Certified Network Associate (CCNA) certification is required and knowledge of Cisco Certified Network Associate (CCNA) Security certification and Knowledge of Microsoft Windows Operating System are helpful.

Prerequisites

None

Expected Duration

120 min.

Course Objectives

Course Introduction

Cisco TrustSec Overview

  • describe the Cisco TrustSec solution architecture
  • Cisco TrustSec Benefits

  • describe the benefits of the Cisco TrustSec solution
  • SGT Classification

  • describe the classification at the ingress
  • Inline SGT Transport

  • describe the inline SGT transport
  • SGT Exchange Protocol

  • describe the SGT Exchange Protocol
  • Enforcement Using SGACLs

  • describe SGACL enforcement
  • Enforcement Using SGFW

  • describe SGFW enforcement
  • SGA Deployment Procedure

  • describe the SGA deployment procedure
  • Define SGACLs

  • describe how to define SGACLs
  • Implement SGFW Enforcement on the ASA

  • describe how to implement SGFW Enforcement on the ASA
  • MAC Security

  • describe MAC Security (MACsec)
  • Implement Downlink MACsec

  • implement downlink MACsec
  • WebAuth Process

  • describe WebAuth and its processes
  • Central WebAuth Operation

  • describe the Central WebAuth process
  • Central WebAuth Configuration I

  • sequence the steps in the Central WebAuth configuration procedure
  • Central WebAuth Configuration II

  • describe how to configure the MAB to continue when user is not found
  • Central WebAuth Configuration III

  • describe how to configure and apply an authorization profile for traffic redirection to WebAuth
  • Verify WebAuth

  • verify WebAuth redirect
  • Guest Service and WebAuth

  • describe the purpose of the Cisco ISE guest services
  • Cisco ISE Guest Service Applications

  • describe the Cisco ISE guest service applications
  • Portal Configuration Scopes

  • describe portal configurations
  • Guest Service Configuration I

  • describe the guest service configuration procedure
  • Guest Service Configuration II

  • configure a guest policy
  • Exercise: Describe TrustSec, MACsec, and WebAuth Access

    SUBSCRIPTION COST



     

    NEED HELP OR NOT SURE?