Over 400 of free Cisco lab videos with complete step-by-step

SEC0247 - FTD 6.1 ISE Remediation (Part 2)

The video walks you through configuration of ISE and FTD 6.1 pxGrid integration to perform endpoint quarantine. We will use correlation rule to detect a malware event and pxGrid mitigation module to trigger Endpoint Protection function on ISE. We will show two ways to quarantine endpoint using DACL and SGT.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag:

Read more about SEC0247 - FTD 6.1 ISE Remediation (Part 2)
Log in or register to post comments

SEC0247 - FTD 6.1 ISE Remediation (Part 1)

The video walks you through configuration of ISE and FTD 6.1 pxGrid integration to perform endpoint quarantine. We will use correlation rule to detect a malware event and pxGrid mitigation module to trigger Endpoint Protection function on ISE. We will show two ways to quarantine endpoint using DACL and SGT.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag:

Read more about SEC0247 - FTD 6.1 ISE Remediation (Part 1)
Log in or register to post comments

SEC0246 - FTD 6.1 Inline SGT (Part 2)

The video demonstrates inline SGT support on Cisco FTD 6.1. FTD has an ability to read native SGT from packets so here we will use SGT assigned to user from 802.1x authentication to match traffic on access control rule and enforce differentiate access. FTD is now be an integral part of Cisco TrustSec.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag:

Read more about SEC0246 - FTD 6.1 Inline SGT (Part 2)
Log in or register to post comments

SEC0246 - FTD 6.1 Inline SGT (Part 1)

The video demonstrates inline SGT support on Cisco FTD 6.1. FTD has an ability to read native SGT from packets so here we will use SGT assigned to user from 802.1x authentication to match traffic on access control rule and enforce differentiate access. FTD is now be an integral part of Cisco TrustSec.

Rating:

No votes yet

Difficulty Level:

Tag:

Read more about SEC0246 - FTD 6.1 Inline SGT (Part 1)
Log in or register to post comments

RS0095 - Prime 3.1 User Group and Virtual Domain (Part 2)

The video looks at user and group management for administering Cisco Prime Infrastructure 3.1. We will be assigning different user roles to local users, and remote users on AAA servers using both RADIUS and TACACS+. We will then look at virtualizing management domain using virtual domain feature.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag:

Read more about RS0095 - Prime 3.1 User Group and Virtual Domain (Part 2)
Log in or register to post comments

RS0095 - Prime 3.1 User Group and Virtual Domain (Part 1)

The video looks at user and group management for administering Cisco Prime Infrastructure 3.1. We will be assigning different user roles to local users, and remote users on AAA servers using both RADIUS and TACACS+. We will then look at virtualizing management domain using virtual domain feature.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag:

Read more about RS0095 - Prime 3.1 User Group and Virtual Domain (Part 1)
Log in or register to post comments

Quick Tip: ISE 2.x Unquarantine EPS Endpoint

Submitted by admin on Wed, 10/05/2016 - 17:49

Since Cisco announced an intention to unify software version across routing and switch platforms, we have already seen the first software release of Denali 16.1 on Cisco IOS XE switches. Subsequently, Cisco has also released the first common software version between router and switch with Denali 16.2.1. While you can upgrade a switch as you normally would, upgrading a router requires a closer attention. In this article, we will show you how to upgrade an ISR 4000 to Denali 16.2.1. We will be using ISR 4321 running IOS XE 3.6.

Tags:

Read more about Quick Tip: ISE 2.x Unquarantine EPS Endpoint
Log in or register to post comments

SEC0223 - ISE 2.0 Adaptive Network Control (ANC) (Part 2)

The video looks at Adaptive Network Control (ANC) feature on Cisco ISE 2.0 and how it can be used to quarantine endpoint devices similarly to its legacy feature called Endpoint Protection Service (EPS). This lab exercise includes creating and testing ANC policies with various type of actions. At the end, we will demonstrate the use of SGT with ANC to leverage SGACL to limit quarantined device network access.

Rating:

Average: 5 (2 votes)

Difficulty Level:

Tag:

Read more about SEC0223 - ISE 2.0 Adaptive Network Control (ANC) (Part 2)
16 comments
Log in or register to post comments

SEC0223 - ISE 2.0 Adaptive Network Control (ANC) (Part 1)

The video looks at Adaptive Network Control (ANC) feature on Cisco ISE 2.0 and how it can be used to quarantine endpoint devices similarly to its legacy feature called Endpoint Protection Service (EPS). This lab exercise includes creating and testing ANC policies with various type of actions. At the end, we will demonstrate the use of SGT with ANC to leverage SGACL to limit quarantined device network access.

Rating:

Average: 5 (2 votes)

Difficulty Level:

Tag:

Read more about SEC0223 - ISE 2.0 Adaptive Network Control (ANC) (Part 1)
21 comments
Log in or register to post comments

SEC0222 - ISE 2.0 pxGrid with ASA Firepower (Part 3)

The video shows a functional integration of ASA Firepower with ISE 2.0 pxGrid service. We will have the Firepower join pxGrid using certificate-based authentication and subscribe for user contextual information. We will create and test Firepower access policies to restrict user traffic based on their AD group membership and assigned Security Group Tag.

Rating:

Average: 5 (1 vote)

Difficulty Level:

Tag: