This is a self-study technical course that is designed for senior engineers and IT professionals. It shows you how to deploy the Cisco® Identity Services Engine (ISE) to support the Software-Defined Access (SD-Access) solution within your enterprise networks. You will gain an understanding of how Cisco ISE is utilized by the SD-Access solution to provide security policies across the organization. You will learn Cisco ISE fundamentals and get hands-on practice configuring ISE, policies, AAA client configuration, VPN access, integration, wireless guest access, and more.
After completing this course, you should be able to:
- Describe Cisco ISE policies and authentication and authorization process
- Understand different AAA protocols
- Understand how Cisco ISE fits into Cisco DNA Center architecture
- Provide configuration examples of Cisco ISE and TrustSec solutions
- Describe Cisco ISE integration with Cisco DNA Center and policy enforcement using Security Groups
- Provide configuration examples for wired, wireless, and VPN network access
- Understand how inline tagging and SGT Exchange Protocol (SXP) works