Implementing and Configuring Cisco Identity Services Engine
|
實現和設置Cisco身分識別服務引擎
課程代碼
SISE
課程天數
5 天
課程概要
本課程向您展示如何部署和使用 Cisco® Identity Services Engine (ISE) v2.4,這是一個身份和訪問控制政策平台,可簡化跨有線、無線和 VPN 連接,以提供持續且高度安全網路訪問與存取服務。課程包含實作練習,您將取得實施和使用 Cisco ISE 的知識和技能,包括策略實施 (policy enforcement)、分析服務 (profiling services)、 Web身份驗證和訪客訪問服務、BYOD、endpoint compliance services 和 TACACS+ 設備管理。通過專家指導和動手實踐,您將學習如何使用 Cisco ISE 來了解網絡中發生的情況,簡化安全策略管理並提高運營效率。
本課程可幫助您準備 Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) 考試,進而獲得 CCNP® Security 和 Cisco Certified Specialist - Security Identity Management Implementation 認證。
本課程可幫助您準備 Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) 考試,進而獲得 CCNP® Security 和 Cisco Certified Specialist - Security Identity Management Implementation 認證。
學習目標和取得技能
完成本課程後,您將能夠:
- Provide secure business and context-based access based on policies
- Centrally configure and manage profiler, posture, guest, authentication, and authorization services in a single web-based GUI console
- Provide a streamlined experience for implementing and customizing guest network access
- Gain leading-edge career skills for high-demand job roles and responsibilities focused on enterprise security
教學方式
CISCO認證講師指導
教材與實驗
CISCO原廠教材
課程適合對象
- Network security engineers
- ISE administrators
- Wireless network security engineers
- Cisco integrators and partners
前備知識
學生需曾學習以下課程或具備以下同等知識和技能:
- Cisco CCNP® Security Certification training
- Introduction to 802.1X Operations for Cisco Security Professionals (802.1X)
- Familiarity with the Cisco IOS® Software Command-Line Interface (CLI)
- Familiarity with Cisco AnyConnect® Secure Mobility Client
- Familiarity with Microsoft Windows operating systems
- Familiarity with 802.1X
課程大綱
- Introducing Cisco ISE Architecture and Deployment
- Using Cisco ISE as a Network Access Policy Engine
- Cisco ISE Use Cases
- Describing Cisco ISE Functions
- Cisco ISE Deployment Models
- Context Visibility
- Cisco ISE Policy Enforcement
- Using 802.1X for Wired and Wireless Access
- Using MAC Authentication Bypass for Wired and Wireless Access
- Introducing Identity Management
- Configuring Certificate Services
- Introducing Cisco ISE Policy
- Implementing Third-Party Network Access Device Support
- Introducing Cisco TrustSec
- Cisco TrustSec Configuration
- Easy Connect
- Web Authentication and Guest Services
- Introducing Web Access with Cisco ISE
- Introducing Guest Access Components
- Configuring Guest Access Settings
- Configuring Sponsor and Guest Portals
- Cisco ISE Profiler
- Introducing Cisco ISE Profiler
- Profiling Deployment and Best Practices
- Cisco ISE BYOD
- Introducing the Cisco ISE BYOD Process
- Describing BYOD Flow
- Configuring the My Devices Portal
- Configuring Certificates in BYOD Scenarios
- Cisco ISE Endpoint Compliance Services
- Introducing Endpoint Compliance Services
- Configuring Client Posture Services and Provisioning in Cisco ISE
- Working with Network Access Devices
- Review TACACS+
- Cisco ISE TACACS+ Device Administration
- Configure TACACS+ Device Administration
- TACACS+ Device Administration Guidelines and Best Practices
- Migrating from Cisco ACS to Cisco ISE
推薦課程