Securing Cisco Wireless Enterprise Networks

Duration: 
5 days
Codes: 
WISECURE
Versions: 
NULL

Overview

Securing Cisco Wireless Enterprise Networks (WISECURE) is a 5 day instructor-led class with hands on labs where you will learn how to secure Cisco wireless networks. You will also gain a firm command of the critical guidelines for implementing Wi Fi security architectures though proper configuration of Cisco wireless components. This course provides a hands-on lab environment and teaches concepts in deploying Cisco AireOS 8.0, Cisco Prime Infrastructure Release 2.2, and Cisco Identity Services Engine Release 1.3.

Who should attend

  • Network engineers and technicians
  • Test Engineers
  • Network Designers, Administrators and Managers
  • Mid-level Wireless Support Engineers
  • Project Managers

Certifications:

This course is part of the following certification track:

  • Cisco Certified Network Professional Wireless (CCNP Wireless)

Audience

Individuals involved in the deployment and securing of a Cisco Wireless Network

Skills Gained

After completing this course you should be able to:

  • Identify common security issues influencing modern Wi-Fi designs
  • Define security approaches in a Wi-Fi design
  • Describe how to design and deploy end point and client security
  • Describe how to design and deploy Cisco Identity Services Engine (ISE) in Wi-Fi network
  • Explain how to secure the Wi-Fi infrastructure
  • Design and deploy Wi-Fi access control
  • Describe management and monitoring capabilities in the Wi-Fi environment

Prerequisites

It is recommended, but not required, that students have the following knowledge and skills before attending this course

  • Interconnecting Cisco Network Devices Part 1 Version 2.0 (ICND1)
  • Implementing Cisco Wireless Network Fundamentals (WIFUND)

Basic knowledge of:

  • Cisco Prime Infrastructure
  • Cisco Identity Services Engine
  • Metageek Channelizer Software
  • Voice Signaling Protocol
  • Basic QoS
  • Application Visibility and Control
  • Control LAN switching

Course Outline

Module 1 Define Security Approaches in a Wi Fi Design

  • Security areas in a Wi Fi design
  • Security challenges for IT organizations
  • Security approaches in Wi Fi designs
  • Policy enforcement
  • Cisco Prime Infrastructure
  • Cisco ISE/ISE as a policy platform
  • Network access challenges and secure access control
  • Network monitoring
  • Prime Infrastructure Converged approach and security dashboard
  • Cisco ISE Dashboard and ISE alarms

Module 2 Design and Deploy Endpoint and Client Security

  • Defining endpoint and client standards and features
  • X.509 v3
  • PKI
  • IEEE 802.1X
  • EAP, EAP-TLS and PKI with EAP-TLS
  • PEAP and PEAP deployment
  • EAP-FAST
  • RADIUS
  • Configure WPA and WPA2 in a Wi Fi environment
  • Security mobility and roaming

Module 3 Design and Deploy Cisco ISE and Management Platforms Cisco network security architecture

  • User access trends
  • Cisco ISE architecture, components and licensing
  • End device analysis with Cisco ISE profiling
  • Create policies in Cisco ISE
  • Configure guest access
  • Cisco CMX Visitor Connect
  • Secure BYOD/BYOD management and monitoring
  • Cisco ISE and ISE GUI

Module 4 Secure Wi Fi Infrastructure

  • Current standards and features
  • Client and Infrastructure Mode and MFP
  • MFP vs IEEE802.11w
  • VLANs vs ACLs
  • Configure MFP
  • Configure IEEE 802.11w PMF
  • Configure identity-based networking
  • Configure SMNPv3 in Wi Fi environment

Module 5 Design and Deploy Wi Fi Access Control

  • Define Wi Fi access control standards and features
  • ACLs and firewall functionality
  • Configure ACLs in Wi Fi environment

Module 6 Design and Deploy Monitoring Capabilities

  • Defining threat and interference mitigation approaches in Wi Fi
  • Primary security concerns
  • Configure rogue detection and mitigation in Wi Fi environment
  • Management and monitoring and configuring parameters
  • Cisco CleanAir
  • Cisco Prime Infrastructure Air Quality Monitoring and Reporting
  • Monitoring RRM

Thinking about Onsite?

If you need training for 3 or more people, you should ask us about onsite training. Putting aside the obvious location benefit, content can be customised to better meet your business objectives and more can be covered than in a public classroom. It's a cost effective option.

Submit an enquiry from any page on this site, and let us know you are interested in the requirements box, or simply mention it when we contact you.

Upcoming Dates

  • GREEN This class is Guaranteed To Run.
  • SPVC - Self-Paced Virtual Class.
  • Click a Date to Enroll.
Course Location Days Cost Date
London
London5 2767 £2767 2019-01-28
London
London5 2500 £2500 2019-01-28
Istanbul
Istanbul5 2500 £2500 2019-01-28
London
London5 2767 £2767 2019-01-28
London
London5 2500 £2500 2019-01-28
Hamburg
Hamburg5 2500 £2500 2019-02-04
Wallisellen
Wallisellen5 2500 £2500 2019-02-18
Bavaria
Garching5 2500 £2500 2019-02-18
Madrid
Madrid5 2500 £2500 2019-02-18
Lazio
Rome5 2500 £2500 2019-02-25
Lisboa
Lisbon5 2500 £2500 2019-02-25
Wien
Vienna5 2500 £2500 2019-02-25
Canton of Zurich
Zurich5 4600 £4600 2019-03-11
Nordrhein-Westfalen
Dusseldorf5 2500 £2500 2019-03-11
London
London5 2545 £2545 2019-03-11
Bucharest
Bucharest5 2500 £2500 2019-03-18
Berlin
Berlin5 2500 £2500 2019-03-25
London
London5 2500 £2500 2019-04-08
Eschborn
Eschborn5 2500 £2500 2019-04-08
Onsite
Onsite5 2500 £2500 2019-04-23
London
London5 2767 £2767 2019-05-20
London
London5 2767 £2767 2019-05-20
Canton of Zurich
Zurich5 4600 £4600 2019-06-17