About this Course

The Implementing Advanced Cisco Unified Wireless Security (IAUWS) is a 5 day ILT course, designed to help students prepare for the CCNP-Wireless certification, a professional level certification specializing in the wireless field. The goal of the IAUWS v2.0 is to provide network professional with information to prepare them to secure the wireless network from security threats via appropriate security policies and best practices, as well as ensure the proper implementation of security standards and proper configuration of security components. The IAUWS reinforces the instruction by providing students with hand-on labs to ensure students thoroughly understand how to secure a network.

At Course Completion

After completing this course, the student should be able to:

• Translate organizational and regulatory security policies and enforce security compliances
• Integrate security on client devices
• Design and implement guest access services on the WLAN controller
• Design and integrate a wireless network with Cisco NAC Appliance
• Implement secure wireless connectivity services on the WLAN controller
• Use the internal security features on the WLAN controller and integrate the WLAN controller with advanced security platforms to isolate and mitigate security threats to the WLAN

Prerequisites

• Interconnecting Cisco Networking Devices Part 1 (ICND1)
• Interconnecting Cisco Networking Devices Part 2 (ICND2)
• Implementing Cisco Unified Wireless Networking Essentials (IUWNE)

Course Outline

Module 0 -- Course Introduction

Module 1 – Organizational and Regulatory Security Policies

• Describing Regulatory Compliance
• Segmenting Traffic
• Configuring Administrative Security
• Managing Autonomous AP, WLAN Controller and Cisco WCS Alarms
• Identifying Security Audit Tools
• Understanding the Cisco End-to-End Security Solutions

Module 2 – Secure Client Devices

• Configuring EAP Authentication
• Configuring Certificate Services
• Describing the Impact of Security on Application and Client Roaming
• Configuring H-REAP Clients Authentication
• Configuring OEAP
• Configuring Cisco AnyConnect
• Implementing Access Control Lists
• Implementing Identity Based Networking
• Troubleshooting Wireless Connectivity Related to EAP Authentication

Module 3 – Design and Implement Guest Access Services

• Describing Guest Access Architecture
• Configuring the WLAN to Support Guest Access
• Configuring Guest Access Accounts
• Troubleshooting Guest Access

Module 4 – Design and Integrate Wireless Network with Cisco NAC Appliance

• Introducing the Cisco NAC Appliance Solution
• Configuring the Controller for Cisco NAC Out-of-Band Operations

Module 5 – Internal and Integrated External Security Mitigations

• Mitigate Wireless Vulnerabilities
• Configuring Management Frame Protection
• Integrating the WLAN Infrastructure with IPS