Implementing and Configuring Cisco Identity Services Engine Training (SISE) (v3.0) Course with hands-on Labs – Cisco Learning Credits: 42 CLC
The Implementing and Configuring Cisco Identity Services Engine (SISE) v3.0 course shows you how to deploy and use Cisco® Identity Services Engine (ISE) v2.4, an identity and access control policy platform that simplifies the delivery of consistent, highly secure access control across wired, wireless, and VPN connections.
This hands-on Implementing and Configuring Cisco Identity Services Engine Training (SISE) course provides you with the knowledge and skills to implement and use Cisco ISE, including policy enforcement, profiling services, web authentication and guest access services, BYOD, endpoint compliance services, and TACACS+ device administration. Through expert instruction and hands-on practice, you will learn how to use Cisco ISE to gain visibility into what is happening in your network, streamline security policy management, and contribute to operational efficiency.
• Provide secure business and context-based access based on policies
• Centrally configure and manage profiler, posture, guest, authentication, and authorization services in a single web-based GUI console
• Provide a streamlined experience for implementing and customizing guest network access
• Gain leading-edge career skills for high-demand job roles and responsibilities focused on enterprise security
Duration: 5 days
- Interconnecting Cisco Network Devices Part 1 Training (ICND1) (v3.0)
- Interconnecting Cisco Network Devices Part 2 Training (ICND2) (v3.0)
- Interconnecting Cisco Network Devices: Accelerated Training (CCNAX) (v3.0)
- Configuring Data Center Unified Computing Training (DCUCS) (v3.0)
- Introducing Cisco Data Center Networking Training (DCICN) (v6.2)
- Introducing Cisco Data Center Technologies Training (DCICT) (v6.2)
- Implementing Cisco Data Center Unified Computing Training (DCUCI) (v6.2)
- Implementing Cisco Data Center Infrastructure Training (DCII) (v6.2)
- Implementing Cisco Data Center Virtualization and Automation Training (DCVAI) (v6.2)
- Designing Cisco Data Center Infrastructure Training (DCID) (v6.2)
- Troubleshooting Cisco Data Center Infrastructure Training (DCIT) (v6.2)
- Splunk Enterprise for Cisco Networks Training (SPLUNK)
- Configuring Cisco Nexus 9000 Series Switches in ACI Mode Training (DCAC9K)
- Introducing Cisco Nexus 9000 Switches in NX-OS Mode Training (DCINX9K)
- Configuring Cisco Nexus 7000 Switches Training (DCNX7K)
- Configuring Cisco Nexus 5000 Switches Training (DCNX5K)
- Configuring the Cisco Nexus 1000V Training (DCNX1K)
- Securing Cisco Networks with Threat Detection and Analysis Training (SCYBER) (v1.2)
- Implementing Cisco Edge Network Security Solutions Training (SENSS)
- Implementing and Configuring Cisco Identity Services Engine Training (SISE) (v2.3)
- Implementing Cisco Secure Mobility Solutions Training (SIMOS) (v1.0)
- Implementing Cisco Secure Access Solutions Training (SISAS) (v1.0)
- Implementing Cisco Threat Control Solutions Training (SITCS) (v1.5)
- Implementing Cisco Network Security Training (IINS) (v3.0)
- Implementing Cisco Cybersecurity Operations Training (SECOPS) (v1.0)
• If you are familiar with some aspects of this Implementing and Configuring Cisco Identity Services Engine Training (SISE) course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Implementing and Configuring Cisco Identity Services Engine Training (SISE) course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Implementing and Configuring Cisco Identity Services Engine Training (SISE) course in manner understandable to lay audiences.
Audience / Target Group:
The target audience for this Implementing and Configuring Cisco Identity Services Engine Training (SISE) course is defined here:
• Network security engineers
• ISE administrators
• Wireless network security engineers
• Cisco integrators and partners
The knowledge and skills that a learner must have before attending this Implementing and Configuring Cisco Identity Services Engine Training (SISE) course are:
• Familiarity with the Cisco IOS® Software command-line interface (CLI)
• Familiarity with Cisco AnyConnect® Secure Mobility Client
• Familiarity with Microsoft Windows operating systems
• Familiarity with 802.1X
After completing this Implementing and Configuring Cisco Identity Services Engine Training (SISE) course, attendees will be able to:
• Describe Cisco ISE deployments, including core deployment components and how they interact to create a cohesive security architecture. Describe the advantages of such a deployment and how each Cisco ISE capability contributes to these advantages.
• Describe concepts and configure components related to 802.1X and MAC Authentication Bypass (MAB) authentication, identity management, and certificate services.
• Describe how Cisco ISE policy sets are used to implement authentication and authorization, and how to leverage this capability to meet the needs of your organization.
• Describe third-party network access devices (NADs), Cisco TrustSec®, and Easy Connect.
• Describe and configure web authentication, processes, operation, and guest services, including guest access components and various guest access scenarios.
• Describe and configure Cisco ISE profiling services, and understand how to monitor these services to enhance your situational awareness about network-connected endpoints. Describe best practices for deploying this profiler service in your specific environment.
• Describe BYOD challenges, solutions, processes, and portals. Configure a BYOD solution, and describe the relationship between BYOD processes and their related configuration components. Describe and configure various certificates related to a BYOD solution.
• Describe the value of the My Devices portal and how to configure this portal.
• Describe endpoint compliance, compliance components, posture agents, posture deployment and licensing, and the posture service in Cisco ISE.
• Describe and configure TACACS+ device administration using Cisco ISE, including command sets, profiles, and policy sets. Understand the role of TACACS+ within the authentication, authentication, and accounting (AAA) framework and the differences between the RADIUS and TACACS+ protocols.
• Migrate TACACS+ functionality from Cisco Secure Access Control System (ACS) to Cisco ISE, using a migration tool.
Follow On Courses
• Implementing Cisco IP Routing v2.0 (ROUTE)
• Implementing Cisco Edge Network Security Solutions (SENSS)
• Implementing Cisco Secure Mobility Solutions (SIMOS)
• Implementing Cisco Secure Access Solutions (SISAS)
• Implementing Cisco Threat Control Solutions (SITCS)
Implementing and Configuring Cisco Identity Services Engine Training (SISE) – Course Outline:
Module 1: Introducing Cisco ISE Architecture and Deployment
Module 2: Cisco ISE Policy Enforcement
Module 3: Web Auth and Guest Services
Module 4: Cisco ISE Profiler
Module 5: Cisco ISE BYOD
Module 6: Cisco ISE Endpoint Compliance Services
Module 7: Working with Network Access Devices
Implementing and Configuring Cisco Identity Services Engine Training (SISE) – Labs:
Lab 1-1: Complete Cisco ISE GUI Setup
Lab 2-1: Integrate Cisco ISE with Active Directory
Lab 2-2: Basic Policy Configuration
Lab 3-1: Configure Guest Access
Lab 3-2: Guest Access Operations
Lab 3-3: Guest Reports
Lab 4-1: Configuring Profiling
Lab 4-2: Customizing the Cisco ISE Profiling Configuration
Lab 4-3: ISE Profiling Reports
Lab 5-1: BYOD Configuration
Lab 5-2: Device Blacklisting
Lab 6-1: Compliance
Lab 6-2: Configuring Client Provisioning
Lab 6-3: Configuring Posture Policies
Lab 6-4: Testing and Monitoring Compliance Based Access
Lab 6-5: Compliance Policy Testing
(Optional) Lab 7-1: Using Cisco ISE for VPN Access
(Optional) Lab 7-2: Configuring Cisco AMP for ISE
Lab 8-1: Configure TACACS+ for Cisco ISE for Basic Device Administration
Lab 8-2: Configure TACACS+ Command Authorization
(Optional) Lab 8-3: Configuring Backups and Patching
(Optional) Lab 8-4: Configuring Administrative Access
(Optional) Lab 8-5: Review of General Tools
(Optional) Lab 8-6: Report Operations
Whether you are looking for general information or have a specific question, we want to help!
Request More Information