Implementing Cisco Secure Access Control System Version 5.6 (ACS)

Course Description Schedule
 

Who should attend

Network administrators, network operators, and system administrators responsible for securing their networks to assure authorized access only by authenticated users, with accounting of their activities.

Prerequisites

CCNA certification or equivalent knowledge

Course Objectives

This course teaches you how to provide secure access to your network using the Cisco® Secure Access Control Server (ACS) 5.6, interoperating with security features in Cisco IOS® Software. You will gain a thorough understanding of the operation of the Cisco Secure ACS to control access to network services and devices. Course subjects include the principles of authentication, to restrict user access to networks, services, and devices; authorization, to restrict the functions users can perform on services and devices; and accounting, to track the activities of users. The RADIUS, TACACS+, Extensible Authentication Protocol (EAP), and 802.1x protocols are discussed in theory and practice as the basis of network security. Specific methods and configurations are shown that can be used in your production networks to achieve targeted and detailed restrictions. The course includes hands-on labs to provide personal experience in configuring Cisco ACS and Cisco network devices.

Course Content

Introduction

  • What is RADIUS: TLV, RADIUS packets, differentiation to TACACS+
  • The portfolio: ACS versions, licenses, ACS View

Installation

  • Installation steps
  • Overview of the GUI and CLI

Basic configuration

  • Setup of devices, groups and user
  • AAA configuration (Switch, Access Point, ASA)

Authentication and Authorization

  • Behind the scenes: internal Authentication Flow
  • External databases: LDAP, AD, NAC Server
  • Proxy Authentication
  • Identity and Authorization Policies
  • Example: Command Authorization

Operation and Maintenance

  • Software Upgrade
  • Logging, Logging Relay
  • Reports / Reporting / MARS
  • Cluster
  • CLI

Scenarios

  • IP Phones
  • WLAN (AP, Controller)
  • VPN Group / Policy Mapping
  • Downloadable ACLs
  • DOT1X

Labs

  • ACS basic configuration
  • Updating ACS to 5.5
  • Creating AAA clients and Device Groups
  • Administrating internal and external application database
  • Creating Policies for Authentication and Authorization
  • Create and use monitoring, reporting and logging functions
  • Implementation of IEEE 802.1X Solutions: Switches, IP Phones, WLAN (AP, Controller), MARS, NAC Server, Access Point
  • Supporting the WLAN Security
  • LDAP Integration
Classroom Training
Modality: C

Duration 3 days

Price (excl. VAT)
  • Eastern Europe: 2,190.- €
Enroll now
Online Training
Modality: L

Duration 3 days

Price (excl. VAT)
  • Eastern Europe: 2,190.- €
Enroll now
 
Click on the location to go directly to the booking page Schedule
Slovenia

Currently there are no local training dates scheduled.  For enquiries please write to info@fastlane.si.

Europe
Italy
26/11/2018 - 28/11/2018 Rome Enroll
Portugal
27/03/2019 - 29/03/2019 Lisbon Enroll
09/09/2019 - 11/09/2019 Lisbon Enroll
Spain
20/03/2019 - 22/03/2019 Madrid Enroll
02/09/2019 - 04/09/2019 Madrid Enroll
Middle East
Qatar
03/03/2019 - 05/03/2019 Doha Course language: English Enroll
22/09/2019 - 24/09/2019 Doha Course language: English Enroll
United Arab Emirates
03/03/2019 - 05/03/2019 Dubai Course language: English This course is being delivered by iTLS. Enroll
16/06/2019 - 18/06/2019 Dubai Course language: English This course is being delivered by iTLS. Enroll
22/09/2019 - 24/09/2019 Dubai Course language: English This course is being delivered by iTLS. Enroll
24/11/2019 - 26/11/2019 Dubai Course language: English This course is being delivered by iTLS. Enroll
Africa
Egypt
03/03/2019 - 05/03/2019 Cairo Course language: English Enroll
16/06/2019 - 18/06/2019 Cairo Course language: English Enroll
22/09/2019 - 24/09/2019 Cairo Course language: English Enroll
24/11/2019 - 26/11/2019 Cairo Course language: English Enroll
 

Accessing our website tells us you are happy to receive all our cookies. However you can change your cookie settings at any time. Find out more.   Got it!