Cisco : Implementing Cisco Secure Access Control System

13 September 2018 @ 8:00 am - 17 September 2018 @ 3:30 pm

Velisa Africa is the official Global Knowledge partner in Sub-Saharan Africa. Course details : https://www.globalknowledge.ae/courses/cisco/security/iins.html

This is a five-day instructor-led course that focuses on the design, implementation and monitoring of a comprehensive security policy, using Cisco IOS security features and technologies. All IOS examples and hands on experience is done using the IOS CLI.  IPS is covered at the theoretical level from the perspective of FirePower technologies. Site-to-Site VPN configuration is covered on both IOS and the Cisco ASA . Modern malware examples are provided, cryptographic techniques use stronger hashing and encryption algorithms, and current versions of IOS, Cisco ASA and Cisco AnyConnect are highlighted.

More labs have been incorporated  to ensure the maximum amount of hands on experience possible. There are two types of labs: Discovery and Challenge. A discovery is a guided lab exercise. Explicit directions are provided to the student to guide them through the activity. Along with the directions are scenarios and explanations specifying why the student is implementing the subject technology and the results after configuration are demonstrated.

Challenges, on the other hand, are evaluation labs. The set of tasks is provided to the student, but directions are not provided. There are job aids which the student may utilize, providing information such as IP addresses and command syntax, but no specific description of procedures. An answer key is available for students who wish to verify their techniques. The instructors will of course be on hand to revisit any areas that may need further clarification.

Pre-Requisites

Attendees should meet the following prerequisites:

  • ICND1 – Interconnecting Cisco Network Devices Part 1 is required.

Security Concepts

  • Threatscape
  • Threat Defense Technologies
  • Security Policy and Basic Security Architectures
  • Cryptographic Technologies

Secure Network Devices

  • Implementing AAA
  • Management Protocols and Systems
  • Securing the Control Plane

Layer 2 Security

  • Securing Layer 2 Infrastructure
  • Securing Layer 2 Protocols

Firewall

  • Firewall Technologies
  • Introducing the Cisco ASA v9.2
  • Cisco ASA Access Control and Service Policies
  • Cisco IOS Zone Based Firewall

VPN

  • IPsec Technologies
  • Site-to-Site VPN
  • Client Based Remote Access VPN
  • Clientless Remote Access VPN

Advanced Topics

  • Intrusion Detection and Protection
  • Endpoint Protection
  • Content Security
  • Advanced Network Security Architectures

Labs

  • Challenge Lab 1: Configure AAA and Secure Remote Administration
  • Challenge Lab 2: Configure Secure Network Management Protocols
  • Challenge Lab 3: Configure Secure EIGRP Routing
  • Challenge Lab 4: Configure Secure Layer 2 Infrastructure
  • Challenge Lab 5: Configure DHCP Snooping and STP Protection
  • Challenge Lab 6: Configure Interfaces and NAT on the Cisco ASA
  • Challenge Lab 7: Configure Network Access Control with the Cisco ASA
  • Challenge Lab 8: Configure Site-to-Site VPN on IOS
  • Challenge Lab 9: Configure AnyConnect Remote Access VPN on ASA
  • Challenge Lab 10: Configure Clientless SSL VPN on the ASA

After you complete this course you should be able to:

  • Describe the current threat landscape
  • Secure the management and control planes of network devices
  • Describe threat defense technologies
  • Secure the management and control planes of network devices
  • Configure AAA on Cisco IOS devices
  • Implement secure management for the Cisco ASA and Cisco IOS routers and switches
  • Secure the control plane
  • Secure the management and control planes of network devices
  • Implement layer 2 infrastructure security
  • Implement layer 2 protocol security
  • Configure management access and NAT on the Cisco ASA
  • Configure access control and service policies on the Cisco ASA
  • Describe IPsec
  • Implement a client-based remote access VPN
  • Implement a clientless remote access VPN
  • Describe IDS and IPS
  • Describe endpoint protection
  • Describe content security
  • Describe advanced network security architectures

This course is aimed at individuals wishing to gain an understanding of Cisco Security on the network or those looking to obatin the Cisco Certified Network Associate for Security Cerification.

Recommended preparation for exams:

  • 210-260 – IINS Implementing Cisco Network Security

Delegates wishing to obtain the CCNA Security Certification will also need to have passed the ICND1 exam or the CCNA Routing and Switching composite exam.

Delegates looking to progress their Cisco Security Certification should consider the following courses.

  • SENSS -Implementing Cisco Edge Network Security Solutions
  • SIMOS – Implementing Cisco Secure Mobility
  • SISAS  – Implementing Cisco Secure Access Solutions
  • SITCS  – Implementing Cisco Threat Control Systems

For more information please contact us:

Enquiries in Johannesburg and Cape Town : pauli@velisaafrica.co.za

International Enquiries : hema.chugh@globalknowledge.ae

BACK TO COURSES

Share this on social media

FacebookTwitterRedditLinkedInEmail