Oversikt
In this course designed to help you prepare for the professional-level CCNP Wireless certification, you will learn to secure wireless networks from security threats using appropriate security policies and best practices. The implementation of security standards and the configuration of security components are a major component of this course and the hands-on labs are incorporated to help underline the concepts, policies, and practices that are necessary for securing a wireless network.
Forkunnskaper
Attendees should meet the following prerequisites:
- CCNA in Wireless ( ICND1 and ICND2 plus IUWNE )
Innhold
Organizational and Regulatory Security Policies
- Describing Regulatory Compliance
- Segmenting Traffic
- Configuring Administrative Security
- Managing Autonomous AP, WLAN Controller, and Cisco WCS Alarms
- Identifying Security Audit Tools
- Understanding the Cisco End-to-End Security Solutions
Secure Client Devices
- Configuring EAP Authentication
- Configuring Certificate Services
- Describing the Impact of Security on Application and Client Roaming
- Configuring H-REAP Client Authentication
- Configuring Cisco OEAP
- Configuring Cisco AnyConnect Secure Mobility Client
- Implementing Access Control Lists
- Implementing Identity Based Networking
- Troubleshooting Wireless Connectivity Related to EAP Authentication
Design and Implement Guest Access Services
- Describing Guest Access Architecture
- Configuring the WLAN to Support Guest Access
- Configuring Guest Access Accounts
- Troubleshooting Guest Access
Design and Integrate Wireless Network with NAC Appliance
- Introducing the Cisco NAC Appliance Solution
- Configuring the Controller for Cisco NAC Appliance for Out-of-Band Operations
Internal and Integrated External Security Mitigations
- Mitigating Wireless Vulnerabilities
- Configuring Management Frame Protection
- Integrating the WLAN Infrastructure with IPS
Labs
- Lab 1-1: Segmenting Traffic
- Lab 1-2: Configuring Administrative Security
- Lab 2-1: Configuring Local Authentication on the Autonomous AP and the WLAN Controller
- Lab 2-2: Configuring Certificate Services and Secure Authentication
- Lab 2-3: Configuring H-REAP for WLAN Failure
- Lab 2-4: Configuring Cisco OEAP
- Lab 2-5: Implementing ACLs
- Lab 2-6: Implementing Identity Based Networking
- Lab 2-7: Troubleshooting Wireless Connectivity Related to EAP Authentication
- Lab 3-1: Configuring the WLAN to Support Guest Access
- Lab 3-2: Configuring a Controller to Use Cisco the NAC Guest Server for Authentication
- Lab 3-3: Troubleshooting Guest Access Issues
- Lab 5-1: Managing Rogue Access Points
- Lab 5-2: Configuring Management Frame Protection
- Lab 5-3: Configuring wIPS
Mål
After you complete this course, you will be able to:
- Translate organizational and regulatory security policies and enforce security compliances
- Integrate security on client devices.
- Design and implement guest access services on the WLAN controller
- Design and integrate a wireless network with Cisco NAC Appliance
- Implement secure wireless connectivity services on the WLAN controller
- Use the internal security features on the WLAN controller and integrate the WLAN controller with advanced security platforms to isolate and mitigate security threats to the WLAN
Målgruppe
Wireless network professionals whoare required to define the security requirements for various deployment models.
Individuals wishing to attain the CCNP Wireless Certification
Sertifisering
Recommended preparation for exam(s):
- 642-737 IAUWS - Implementing Advanced Cisco Unified Wireless Security
This exam is one of the four exams required to achieve the Cisco CCNP Wireless Certification.
Påfølgende kurs
The following courses are recommended for further study:
- Conducting Cisco Unified Wireless Site Survey - (CUWSS)
- Implementing Cisco Unified Wireless Mobility Services (IUWMS)
- Implementing Cisco Unified Wireless Voice Networks (IUWVN)
All of the above courses are required for those delegates looking to achieve their Cisco CCNP Wireless Certification.
Ytterligere informasjon
Recertification
Cisco professional level certifications (CCDP, CCNP, CCSP, CCIP, CCVP, CCNP SP Operations, CCNP Wireless) are valid for three years.
To recertify, pass ONE of the following before the certification expiration date:
- Pass any current 642-XXX Professional level exam, or
- Pass any current CCIE Written Exam, or
- Pass the current CCDE Written Exam OR current CCDE Practical Exam, or
- Pass the Cisco Certified Architect (CCAr) interview AND the CCAr board review to extend lower certifications.
Achieving or recertifying any of the certifications above automatically extends your active Associate and Professional level certification(s) up to the point of expiration of the last certification achieved. For more information, access the Cisco About Recertification page.
