Detailed Course Outline
Module 1: One Network – Building the Wired Foundation
- Cisco Unified Access Architecture Overview
- High Availability (HA) Features Implemented in the Unified Access Wired Access Architecture
- Introduction to Cisco Catalyst Smart Operations
- Cisco SmartPorts Macros
- Cisco Smart Install
- Cisco AutoQoS
- Cisco Easy Virtual Network (EVN)
Module 2: One Management Foundation: Implementing Prime Infrastructure 2.0
- Unified management of wired and wireless access, branch, and wide area networks
- Comprehensive network life cycle management, including user access visibility, inventory, configuration management, plug and play, radio frequency planning, and best practices reporting
- End-to-end application and service assurance visibility to quickly isolate and troubleshoot performance issues
- Relational, multidimensional view of users, applications, and network to simplify the diagnostics and remediation of network and service impacting issues
- Easy deployment and management of Cisco advanced technologies
Module 3: Policy Foundation: Basic ISE AAA Setup and Guest Server Setup for Wired and Wireless Networks
- Requirements for installing Cisco ISE
- ISE installation process
- Overview of Cisco ISE new Setup Assistant, GUI, and features
- Using the new ISE Setup Assistant for configuration
- Requirements for configuring Authentication through AD
- Configuring Authorization Rules Using AD and dACLs
- Requirements for PI Integration with ISE
- Configuring integration
- Configuring Monitor Mode for Wired dot1x
- Configuring Authentication rules
- Configuring Downloadable Access Lists (dACLs) based on Policies
- Configuring Authorization Profiles that include dACLs
Module 4: Wireless Reference Architecture using Various Cisco Wireless LAN Platforms and Prime Infrastructure
- Wireless Features Overview
- Radio Resource Management (RRM)
- Cisco CleanAir
- Cisco ClientLink Optimization for Mixed-Client Networks Scenarios
- Cisco AP Stateful Switchover (SSO) HA Solution
- List of Cisco Secure Wireless LAN Features
- Use SSIDs for Network Segmentation
- User Policy Overview Using Prime Infrastructure
- Implementation of Special Services Using QoS
- ACLs Configuration on the WLC
- WLC Dynamic Interfaces and VLAN Configuration
- Manipulate Authentication Process of the Client
Module 5: Advanced Wireless Features
- Introduction to Cisco AVC and its benefits
- Cisco VideoStream Technology
- Wireless LAN Apple Bonjour Overview
- Cisco connected Mobile Experience
Module 6: Converged Access Solution
- Review of Current Deployment Model
- Converged Access Overview
- Wireless Features for Converged Access
- Interoperability concerns in a hybrid network environment
- Switch Features for Converged Access
- “One-Policy” using SA-NET and ISE
- Steps for Migration
- Using PI to configure 5760 for deployment
- Configuring the 5760 as the Mobility Controller
- Implementing the 3850 in a Converged Access network through PI
- Establishing policies in ISE for clients connecting to Converged Access networks
- Configuring Identity Control Policies for Session Aware Networking
Module 7: Securing Any Access
- Implementing Authentication for BYOD through ISE
- BYOD On-boarding through ISE
- Using Auto SmartPort Macros for BYOD
- Profiler Service Overview
- ISE Profiler with IOS Device Sensor
- Overview Security Group Access in ISE
- Group Access requirements for BYOD
- At CLI, Configuring the NADs to support SGA and SXP
- Configuring Security Group Tagging (SGT) in the wired and wireless infrastructure
- Overview of Identity Port Mapping? (IPM)
- AT ISE: Configuring SGT eXchange Protocol (SXP) for wired and wireless environment
- Configuring Security Groups, SGACLs, and Security Group Matrix
Module 8: SmartOperations
- EEM Overview
- EEM Configuration on Catalyst Series Switches
- Automated Diagnostic Features
- Cisco Generic Online Diagnostics (GOLD) Overview
- Understanding IP SLA Benefits
- Cisco IP SLA Best Practices
Module 9: Application Visibility and Control For Wired Networks
- Application Visibility and Control Overview
- Cisco Medianet
- Cisco Mediatrace
- Cisco Flexible NetFlow Overview and Implementation
- Cisco Packet Capture Technologies Wireshark/Mini-protocol analyzer (MPA)
Module 10: Wired and Wireless High Availability Solutions
- Cisco Catalyst Switch Architecture
- Stateful Switchover (SSO)
- Cisco Nonstop Forwarding (NSF) Implementation
- Cisco Non Stop Routing (NSR)
- Cisco VSS Solution
- Cisco Catalyst Switch ISSU Solution
- WLAN High Availability Features Overview
- Cisco AP SSO Implementation
- Power over Ethernet (PoE) Considerations
Module 11: Monitoring and Troubleshooting
- Monitoring Wired and Wireless network devices with PI
- Monitoring using ISE Dashboard
- ISE Alarms
- Implementing Logging
- PI monitoring in Troubleshooting
- Built in Client Troubleshooting tool to Support Step-by-Step Problem Analysis
- Working with NetFlow (configuring, best practice)
- Troubleshooting the network with ISE
- ISE Search Capability
- Troubleshooting Network Access Issues
- Using Live Logs for troubleshooting
- ISE discoverable authentication issues
- Diagnostic Troubleshooting Tools
- Cisco ISE Reports
Module 12: Advanced BYOD Solution Wrap-Up
- Overview of the Any Connect BYOD Experience for Windows 7 PC
- Implementing AnyConnect
- Configuring AnyConnect with MACsec and 802.1x supplicant
- ISE client provisioning
- ISE Device registration
- ISE MDM integration ***include video
- Configuring ISE profiler for BYOD use case
Labs
Module 1 Lab: One Network Foundation: Building the Wired Reference Architecture
Module 2 Lab: Building the One Management Foundation with Prime Infrastructure
Module 3 Lab: Add ISE and Client Access Services to Network Management Architecture
Module 4 Lab: Build Wireless Reference Architecture – One Network Mobility Foundation
Module 5 Lab: Build One Network Advanced Mobility Solution for Wireless network
Module 6 Lab: Implementing a Converged Access Network
Module 7 Lab: Build Management Foundation - Add 802.1x security for BYOD network and Secure Group Access using ISE
Module 8 Lab: Build SmartOperations Foundation
Module 9 Lab: Build Application Mobility and Control foundation
Module 10 Lab: Implement High Availability (HA) and Scaling Features in the Network
Module 11 Lab: Unified Access Monitoring with PI and ISE
Module 12 Lab: Advanced BYOD Solution