Course Overview
This class provides theory and hands-on experience in deploying Cisco Identity-Based Networking Services (IBNS) and implementing 802.1X authentication for secure network access control. The class covers Cisco Identity Services Engine (ISE) configuration, integration with Active Directory, policy creation, and implementation of 802.1X on both wired and wireless networks including IBNS 2.0. Additionally, it includes advanced authentication techniques such as MAB (MAC Authentication Bypass), TEAP (Tunnelled EAP), and TLS (Transport Layer Security), along with guest access configuration, troubleshooting, and monitoring.
Who should attend
- Security architects
- Design engineers
- Network engineers
Prerequisites
To fully benefit from this course, you should have knowledge of these topics:
- Basic Cisco wireless LAN controllers
- Basic command-line configuration of Cisco Catalyst switches
Here are some recommended Cisco learning offerings that can help you meet these prerequisites:
Course Objectives
By completing this class students will be able to:
- Set up and configure Cisco ISE – including certificate enrollment, and RADIUS settings.
- Integrate Cisco ISE with Active Directory – enabling centralized identity management and policy enforcement.
- Implement 802.1X authentication policies for wired and wireless networks using Cisco ISE and network devices.
- Deploy Cisco IBNS 2.0 for enhanced security and automation in access control.
- Enable Guest Access using Cisco ISE’s Hotspot Portal for managed guest connectivity.
- Configure MAC Authentication Bypass (MAB) for non-802.1X capable devices.
- Monitor and troubleshoot network access with Cisco ISE’s diagnostic tools and session tracing.
- Plan and deploy an IBNS-based network, ensuring certificate-based authentication, policy sets, and secure access control.
- Implement advanced security mechanisms such as TLS and TEAP for wired and wireless authentication.
English