Security

The video extends our previous Cisco ISE 1.3 posture assessment to remote VPN users. The goal is to have our VPN user subject to the same set of posture checks to enforce consistent network access experience regardless of user locations. Using the same posture policies with ClamWin Antivirus, we will concentrate on configuration on ASA, and authorization policy on ISE to support remote VPN authentication. We will be using AnyConnect client with ISE posture module on Windows for testing.

The video looks at posture assessment on Cisco ISE 1.3. We will continue from the wired EAP-TLS video and add configuration for Cisco NAC agent, and then later replace it with Cisco AnyConnect ISE posture module. Antivirus installation, and signature definition update checks using ClamWin Antivirus will be performed before allowing a domain user onto the network. Using wired Windows 7, we will step through the posture assessment process, starting with Posture Agent download, and, along the way, try to bring our test machine to a compliant state to gain full network access. 

The video looks at posture assessment on Cisco ISE 1.3. We will continue from the wired EAP-TLS video and add configuration for Cisco NAC agent, and then later replace it with Cisco AnyConnect ISE posture module. Antivirus installation, and signature definition update checks using ClamWin Antivirus will be performed before allowing a domain user onto the network. Using wired Windows 7, we will step through the posture assessment process, starting with Posture Agent download, and, along the way, try to bring our test machine to a compliant state to gain full network access. 

The video looks at posture assessment on Cisco ISE 1.3. We will continue from the wired EAP-TLS video and add configuration for Cisco NAC agent, and then later replace it with Cisco AnyConnect ISE posture module. Antivirus installation, and signature definition update checks using ClamWin Antivirus will be performed before allowing a domain user onto the network. Using wired Windows 7, we will step through the posture assessment process, starting with Posture Agent download, and, along the way, try to bring our test machine to a compliant state to gain full network access. 

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video walks through Cisco ISE 1.3 integration with Meraki Enterprise System Manager MDM. We will start by reviewing configuration on the System Manager, and then get into entering MDM information and configuring authorization policies on ISE. The idea is to make sure user devices are registered to MDM and in compliance with security policy before being allowed access to the network. We will be testing with an iPad and Android mobile devices. This lab is a continuation of our previous BYOD videos, specifically wireless with single SSID.

The video shows you how to perform system backup and restore on Cisco FireSight System and its managed devices. We will perform an on-demand manual backup, and well as showing you configuration for regular scheduled backup. We will then validate our backup by performing a restore and make sure all configurations are reverted back to the backup point.

The video shows you how to leverage an existing Active Directory database for administrative user login on Cisco ASA FireSight System. We will go through configuration of LDAP integration, and usergroup-to-role mapping. You will be able to limit access to FireSight web interface based on your user job function.

The video demonstrates capability of Cisco ASA FirePower to detect anomalous traffic pattern. We will be configuring the FireSight System to monitor HTTP traffic to our servers, create traffic profile, and have it generate alert upon significant traffic pattern deviation. A HTTP packet generation tool will be used to generate HTTP requests at different rate to test our traffic profile.