CANAC v2.1 - Implementing Cisco NAC Appliance
Revision: TE5505_20100304
- Course Length:
- 3 Days
- Course Description:
- The Cisco NAC Appliance is an easily deployed software NAC solution that can automatically detect, isolate, and clean infected or vulnerable devices that attempt to access your network. The Implementing Cisco NAC Appliance (CANAC) v2.1 course provides learners with the skills and knowledge needed to implement the Cisco NAC Appliance solution.
- Who Should Attend:
- This course is for those who need to learn how to implement the Cisco NAC Appliance solution.
- Benefits of Attendance:
-
Upon completion of this course, students will be able to:
- Given client network security requirements, explain how a Cisco NAC Appliance deployment scenario will meet or exceed network security requirements
- Configure the common elements of a Cisco NAC Appliance solution
- Configure the Cisco NAC Appliance in-band and out-of-band implementation options
- Implement a highly available Cisco NAC Appliance solution to mitigate network threats and facilitate network access for those users that meet corporate security requirements
- Maintain a highly available Cisco NAC Appliance deployment in medium and enterprise network environments
- Prerequisites:
- Students should have the following: *Certification as a CCSP or the equivalent knowledge, * Basic knowledge of the Microsoft Windows operating system, * Familiarity with networking and security terminology and concepts, * Fundamental knowledge of implementing network security or CCSP or Cisco Security CSQ, * BCMSN or working knowledge of VLANs, * SNRS or working knowledge of digital certificates, and * BCSI or working knowledge of HSRP.
- Course Outline:
-
- Module 1: Cisco NAC Endpoint Security Solutions
- Introducing Cisco Self-Defending Networks
- Introducing Cisco NAC Appliance
- Introducing In-Band and Out-of-Band Deployment Options
- Lab 1-1: Preparing the Cisco NAM to Support Web-Based Administration Console Configuration
- Module 2: Cisco NAC Appliance Common Elements Configuration
- Configuring User Roles
- Configuring External Authentication
- Configuring DHCP on the Cisco NAS
- Lab 2-1: Configuring User Roles
- Module 3: Cisco NAC Appliance Implementation
- Implementing Cisco NAC Appliance In-Band Deployment
- Implementing the Microsoft Windows SSO Feature on the Cisco NAC Appliance
- Implementing the Cisco VPN SSO Feature on the Cisco NAC Appliance
- Implementing Cisco NAC Appliance Out-of-Band Deployment
- Managing Switches
- Lab 3-1: Adding an In-Band Virtual Gateway Cisco NAS to the Cisco NAM
- Lab 3-2: Configuring the Microsoft Windows Active Directory SSO Feature on the Cisco NAC Appliance
- Lab 3-3: Configuring the Cisco VPN SSO Feature on the Cisco NAC Appliance
- Lab 3-4: Adding an Out-of-Band Virtual Gateway Cisco NAS to an HA Cisco NAC Appliance Deployment
- Lab 3-5: Configuring SNMP, Switch, and Port Profiles for an Out-of-Band Cisco NAC Appliance Deployment
- Module 4: Cisco NAC Appliance Implementation Options
- Implementing Cisco NAC Appliance on a Network
- Implementing Network Scanning
- Configuring the Cisco NAM to Implement the Cisco NAA on User Devices
- Configuring Cisco NAM High Availability
- Configuring Cisco NAS High Availability
- Lab 4-1: Configuring Cisco NAA
- Lab 4-2: Configuring a High Availability In-Band VPN Cisco NAC Appliance Solution
- Module 5: Cisco NAC Appliance Monitoring and Administration
- Monitoring a Cisco NAC Appliance Deployment
- Administering the Cisco NAM
- Module 1: Cisco NAC Endpoint Security Solutions