Privée

Ce cours est disponible en session privée ou personnalisée. Il peut être offert à l’un de nos centres de formation ou directement à vos bureaux. Appelez l’un de nos conseillers ou faites une demande de soumission en ligne.

Appelez maintenant au 1 877 624.2344

  • Durée: 5 jours
  • Prix régulier: Sur demande

CISCO - Securing Cisco Wireless Enterprise Networks (WISECURE) v1.0

Reference : © CISCO WISECURE v1.0

Duration : 5 days

This course provides students with the guidelines for implementing Wi-Fi security architectures through proper configuration of Cisco wireless components. WISECURE provides students hands-on labs to reinforce concepts. Concepts taught include deploying Cisco AireOS 8.0, Prime Infrastructure release 2.2, and Identity Services Engine release 1.3 features.
Learning credits44
LanguagesThese scheduled public sessions are offered in English or in French (FR). The educational material is in English.
CertificationThis course prepares to the 300-375 WISECURE exam

Audience

  • Network engineers and technicians
  • Test Engineers
  • Network Designers, Administrators and Managers
  • Mid-level Wireless Support Engineers
  • Project Managers

Prerequisites

It is recommended that you have a basic knowledge of the following:
  • Cisco Prime Infrastructure
  • Cisco ISE
  • Metageek Channelizer Software
  • Voice Signaling protocols
  • Basic QoS
  • Cisco Application Visibility Control
  • LAN Switching

Objectives

Upon completion of the course, students will have the knowledge and skills to:
  • Define security approaches in a Wi-Fi design
  • Describe how to design and deploy end point and client security
  • Describe how to design and deploy ISE in a Wi-Fi network
  • Explain how to secure the Wi-Fi infrastructure
  • Design and deploy Wi-Fi access control
  • Describe management and monitoring capabilities in the Wi-Fi environment

Content

Module 1 Define Security Approaches in a Wi Fi Design
  • Security Areas in a Wi-Fi Design
  • Security Challenges for IT Organizations
  • Security Approaches in Wi-Fi Designs
  • Policy Enforcement
  • Cisco Prime Infrastructure
  • Cisco ISE/ISE as a Policy Platform
  • Network Access Challenges and Secure Access Control
  • Network Monitoring
  • Prime Infrastructure Converged Approach and Security Dashboard
  • Cisco ISE Dashboard and ISE Alarms

Module 2 Design and Deploy Endpoint and Client Security

  • Defining Endpoint, Client Standards and Features
  • X.509 v3
  • PKI
  • IEEE 802.1X
  • EAP, EAP-TLS and PKI with EAP-TLS
  • PEAP and PEAP Deployment
  • EAP-FAST
  • RADIUS
  • Configure WPA and WPA2 in a Wi-Fi Environment
  • Security Mobility and Roaming
Module 3 Design and Deploy Cisco ISE and Management Platforms
  • Cisco Network Security Architecture
  • User Access Trends
  • Cisco ISE Architecture, Components and Licensing
  • End Device Analysis with Cisco ISE Profiling
  • Create Policies in Cisco ISE
  • Configure Guest Access
  • Cisco CMX Visitor Connect
  • Secure BYOD/BYOD Management and Monitoring
  • Cisco ISE and ISE GUI
Module 4 Secure Wi Fi Infrastructure
  • Current Standards and Features
  • Client and Infrastructure Mode and MFP
  • MFP vs IEEE802.11w
  • VLANs vs ACLs
  • MFP Configuration
  • IEEE 802.11w PMF
  • Identity-Based Networking
  • SMNPv3 in Wi-Fi environment
Module 5 Design and Deploy Wi Fi Access Control
  • Wi-Fi access control standards and features
  • ACLs and Firewall Functionality
  • Configure ACLs in Wi-Fi environment
Module 6 Design and Deploy Monitoring Capabilities
  • Threat and Interference Mitigation Approaches in Wi-Fi
  • Primary Security Concerns
  • Rogue Detection and Mitigation in Wi-Fi Environment
  • Management, Monitoring and Configuring Parameters
  • Cisco CleanAir
  • Cisco Prime Infrastructure Air Quality Monitoring and Reporting
  • Monitoring RRM
Labs:
  • Configuring WPA2 Access
  • Configuring 802.1X Access
  • Configuring RADIUS Integration
  • Configuring a Basic Access Policy
  • Configuring a Contractor2 Authentication Policy
  • Configuring Hotspot Guest Access
  • CWA and Self-Registered Guest Operations
  • Implementing SNMP v3
  • Configuring and Verifing Cisco MFP
  • Monitoring Rogue AP
  • Configuring Secure Administrative Access
  • Configuring a Basic Authentication Policy for an AP
  • Implementing Profiling
  • Profiling and Device Onboarding
  • Cisco ISE Profiling Reports
  • Guest Reports
  • Live Logs and Client 360 View
  • Security Report Operations
  • Using System Security Verification Tools

Savoir s’entourer des meilleurs

Simon Bourassa
Simon Bourassa
Formateur et conseiller en TI
Simon est passionné par le développement logiciel et le développement de produits, mais avant tout par l’ensemble des gens cachés derrière ces codes, qui travaillent main dans la main pour développer des solutions innovantes.
Pierre-Edouard Brondel
Pierre-Edouard Brondel
Formateur et conseiller en bureautique
Expert en pédagogie dans le domaine des technologies et de la bureautique cumulant plus de 25 ans d’expérience, Pierre-Édouard est d’abord et avant tout un passionné de capital humain.
Valère Drainville
Valère Drainville
Formateur et conseiller en efficacité professionnelle
Expert en collaboration et en efficacité professionnelle, Valère Drainville saura vous accompagner dans l’adoption et la gestion de vos outils de travail collaboratifs.
Frédéric Paradis
Formateur certifié et architecte en solutions infonuagiques
Formateur certifié Microsoft, Frédéric se décrit comme un magicien de l’infonuagique, cet espace mythique entre technologie et réalité.