Security

The video looks at posture assessment on Cisco ISE 1.3. We will continue from the wired EAP-TLS video and add configuration for Cisco NAC agent, and then later replace it with Cisco AnyConnect ISE posture module. Antivirus installation, and signature definition update checks using ClamWin Antivirus will be performed before allowing a domain user onto the network. Using wired Windows 7, we will step through the posture assessment process, starting with Posture Agent download, and, along the way, try to bring our test machine to a compliant state to gain full network access. 

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video shows you how to perform system backup and restore on Cisco FireSight System and its managed devices. We will perform an on-demand manual backup, and well as showing you configuration for regular scheduled backup. We will then validate our backup by performing a restore and make sure all configurations are reverted back to the backup point.

The video shows you how to leverage an existing Active Directory database for administrative user login on Cisco ASA FireSight System. We will go through configuration of LDAP integration, and usergroup-to-role mapping. You will be able to limit access to FireSight web interface based on your user job function.

The video demonstrates capability of Cisco ASA FirePower to detect anomalous traffic pattern. We will be configuring the FireSight System to monitor HTTP traffic to our servers, create traffic profile, and have it generate alert upon significant traffic pattern deviation. A HTTP packet generation tool will be used to generate HTTP requests at different rate to test our traffic profile.

The video demonstrates Cisco ASA FirePower capability to correlate system events and generate appropriate remediation responses. We will go through two example scenarios; one with a basic event matching and responding, and the other continues to track the connection and apply a more complex conditions before issuing response. Specifically, we will configure NMAP scan and IP shun remediations. 

The video demonstrates Cisco ASA FirePower capability to correlate system events and generate appropriate remediation responses. We will go through two example scenarios; one with a basic event matching and responding, and the other continues to track the connection and apply a more complex conditions before issuing response. Specifically, we will configure NMAP scan and IP shun remediations. 

The video walks you through a process of creation and customization of Cisco ISE 1.3 non-guest portals. Unlike the previous ISE version, ISE 1.3 allows you to make changes to appearances of almost all web portals including: Blacklist, BYOD, Client Provisioning, MDM and MyDevices. We will not only show you customization as simple as changing logo and banner, but also the advance method of creating custom page theme using CSS. We will be testing with Windows computer and iPad. Basic knowledge of HTML and CSS is recommended for this video.