This course is instructor-led training and includes instructor assisted, hands-on labs. The Implementing Advanced Cisco Unified Wireless Security training class is designed to help you prepare for the CCNPWireless certification. The goal of the IAUWS v1.0 is to provide network professional with information to prepare them to secure the wireless network from security threats via appropriate security policies and best practices, as well as ensure the proper implementation of security standards and proper configuration of security components. The IAUWS training class reinforces the instruction by providing you with numerous hands-on labs that range from configuring administrative security on the controller, configuring various EAP authentication options on Cisco Secure Services Client and troubleshooting client wireless connectivity issues, configuring the anchor and internal controllers to support guest access, isolating and resolving problems in a guest access wireless LAN (WLAN), configuring and verify wireless NAC out-of-band operations, configuring Hybrid Remote Edge Access Points (H-REAPs) to provide
connectivity if the WAN fails and troubleshoot H-REAP security issues, configuring the controller for management frame protection, implementing access control lists and Identity Based Networking (IBN), identifying, locating, and containing a rogue access point, observing Intrusion Detection System (IDS) alerts on the Cisco Wireless Control System (WCS), as well as configuring Cisco WCS to operate with the Cisco adaptive wireless IPS solution.
Prerequisites
- Obtained a Cisco Certified Networking Associate Wireless - CCNA-Wireless certification
- Implementing Cisco Unified Wireless Networking Essentials (IUWNE) v1.0
- Interconnecting Cisco Networking Devices Part 1 (ICND1)
What You'll Learn
- Translate organizational and regulatory security policies and enforce security compliances
- Integrate security on client devices
- Design and implement guest access services on the WLAN controller
- Design and integrate a wireless network with Cisco NAC Appliance
- Implement secure wireless connectivity services on the WLAN controller
- Use the internal security features on the WLAN controller and integrate the WLAN controller with advanced security platforms to isolate and mitigate security threats to the WLAN
Who Needs to Attend
- Wireless network professionals, including wireless network engineers, mid-level wireless support engineers, wireless test engineers, wireless network designers with 3-5 years experience, in the networking field who will be required to define the security requirements for various deployment models
Course Outline
1. Organizational and Regulatory Security Policies
- Regulatory Compliance
- Segmenting Traffic
- Configuring Administrative Security
- Managing WLAN Controller and Cisco WCS Alarms
- Security Audit Tools
2. Secure Client Devices
- Configuring EAP Authentication
- Impact of Security on Application and Roaming
- Configuring Cisco Secure Services Client
- Troubleshooting Wireless Connectivity
3. Design and Implement Guest Access Services
- Guest Access Architecture
- Configuring the WLAN to Support Guest Access
- Configuring Guest Access Accounts
- Troubleshooting Guest Access
4. Design and Integrate Wireless Network with NAC
- Cisco NAC Appliance Solution
- Configuring the Controller for Cisco NAC Out-of-Band Operations
5. Implement Secure Wireless Connectivity Services
- Configuring Authentication for the WLAN Infrastructure
- Configuring Management Frame Protection
- Configuring Certificate Services
- Implementing Access Control Lists
- Configuring Identity-Based Networking on the Controller Issues
- Troubleshooting Secure Wireless Connectivity
6. Internal and Integrated External Security Mitigations
- Mitigating Wireless Vulnerabilities
- Using Controller-Based IDS
- Cisco's End-to-End Security Solutions
- Integrating Cisco WCS with Wireless IPS
Labs
Lab 1-1: Segmenting Traffic Identifying
Lab 1-2: Configuring Administrative Security
Lab 2-1: Configuring EAP Authentication on the Clients
Lab 2-2: Configuring Cisco Secure Services Client
Lab 2-3: Troubleshooting Wireless Connectivity
Lab 3-1: Configure the WLAN to Support Guest Access
Lab 3-2: Configure a Controller to use the NAC Guest Server for Authentication
Lab 3-3: Troubleshooting Guest Access Issues
Lab 4-1: Configuring the Controller for Cisco NAC
Lab 5-1: Configuring Local Authentication on the WLAN Controller
Lab 5-2: Configuring H-REAP for WAN Failure
Lab 5-3: Configuring Management Frame Protection
Lab 5-4: Configuring Certificate Services
Lab 5-5: Implementing Access Control Lists
Lab 5-6: Implementing IBN
Lab 5-7: Troubleshooting H-REAP Security
Lab 5-8: Troubleshooting Secure Wireless Connectivity
Lab 6-1: Using Controller-Based IDS
Classroom Dates and Locations
Date |
Location Details |
|
| Aug 10 - 14, 2009 |
Detroit, MI |
Register |
| Sep 14 - 18, 2009 |
Seattle, WA |
Register |
| Sep 14 - 18, 2009 |
Cleveland, OH |
Register |
| Oct 12 - 16, 2009 |
Atlanta, GA |
Register |
| Oct 19 - 23, 2009 |
Seattle, WA |
Register |
| Oct 26 - 30, 2009 |
Charlotte, NC |
Register |
| Oct 26 - 30, 2009 |
San Antonio, TX |
Register |
| Nov 2 - 6, 2009 |
Sacramento, CA |
Register |
Don’t see the location or date you need? No problem – just use our By Request service.
Course Outline
1. Organizational and Regulatory Security Policies
- Regulatory Compliance
- Segmenting Traffic
- Configuring Administrative Security
- Managing WLAN Controller and Cisco WCS Alarms
- Security Audit Tools
2. Secure Client Devices
- Configuring EAP Authentication
- Impact of Security on Application and Roaming
- Configuring Cisco Secure Services Client
- Troubleshooting Wireless Connectivity
3. Design and Implement Guest Access Services
- Guest Access Architecture
- Configuring the WLAN to Support Guest Access
- Configuring Guest Access Accounts
- Troubleshooting Guest Access
4. Design and Integrate Wireless Network with NAC
- Cisco NAC Appliance Solution
- Configuring the Controller for Cisco NAC Out-of-Band Operations
5. Implement Secure Wireless Connectivity Services
- Configuring Authentication for the WLAN Infrastructure
- Configuring Management Frame Protection
- Configuring Certificate Services
- Implementing Access Control Lists
- Configuring Identity-Based Networking on the Controller Issues
- Troubleshooting Secure Wireless Connectivity
6. Internal and Integrated External Security Mitigations
- Mitigating Wireless Vulnerabilities
- Using Controller-Based IDS
- Cisco's End-to-End Security Solutions
- Integrating Cisco WCS with Wireless IPS
Labs
Lab 1-1: Segmenting Traffic Identifying
Lab 1-2: Configuring Administrative Security
Lab 2-1: Configuring EAP Authentication on the Clients
Lab 2-2: Configuring Cisco Secure Services Client
Lab 2-3: Troubleshooting Wireless Connectivity
Lab 3-1: Configure the WLAN to Support Guest Access
Lab 3-2: Configure a Controller to use the NAC Guest Server for Authentication
Lab 3-3: Troubleshooting Guest Access Issues
Lab 4-1: Configuring the Controller for Cisco NAC
Lab 5-1: Configuring Local Authentication on the WLAN Controller
Lab 5-2: Configuring H-REAP for WAN Failure
Lab 5-3: Configuring Management Frame Protection
Lab 5-4: Configuring Certificate Services
Lab 5-5: Implementing Access Control Lists
Lab 5-6: Implementing IBN
Lab 5-7: Troubleshooting H-REAP Security
Lab 5-8: Troubleshooting Secure Wireless Connectivity
Lab 6-1: Using Controller-Based IDS
Classroom Dates and Locations
Date |
Location Details |
|
| Aug 10 - 14, 2009 |
Detroit, MI |
Register |
| Sep 14 - 18, 2009 |
Seattle, WA |
Register |
| Sep 14 - 18, 2009 |
Cleveland, OH |
Register |
| Oct 12 - 16, 2009 |
Atlanta, GA |
Register |
| Oct 19 - 23, 2009 |
Seattle, WA |
Register |
| Oct 26 - 30, 2009 |
Charlotte, NC |
Register |
| Oct 26 - 30, 2009 |
San Antonio, TX |
Register |
| Nov 2 - 6, 2009 |
Sacramento, CA |
Register |
Don’t see the location or date you need? No problem – just use our By Request service.