MyGK
Support
USA USA - English
Checkout

Cart () Loading...

    • Quantity:
    • Delivery:
    • Dates:
    • Location:

    $

Subtotal

$

Checkout

or Continue Shopping

Contact Sales
Course  
Contact Sales

C2C - Cisco DoD Comply-to-Connect v1.1

The Cisco DoD Comply-to-Connect (C2C) training teaches you how to implement and deploy a Department of Defense (DoD) Comply-to-Connect network architecture using Cisco Identity Services Engine (ISE). This training covers implementation of 802.1X for both wired and wireless devices and how Cisco ISE uses that information to apply policy control and enforcement. Additionally, other topics like supplicants, non-supplicants, ISE profiler, authentication, authorization, and accounting (AAA) and public key infrastructure (PKI) support, reporting and troubleshooting are covered. Finally, C2C specific use case scenarios are covered.

This training also earns you 32 Continuing Education (CE) credits toward recertification.

GK# 860002 Vendor# C2C 1.1
Vendor Credits:
  • Global Knowledge Delivered Course
  • Training Exclusives
No matching courses available.
Start learning as soon as today! Click Add To Cart to continue shopping or Buy Now to check out immediately.
Access Period:
Scheduling a custom training event for your team is fast and easy! Click here to get started.
$
Your Selections:
Location:
Access Period:
No available dates
Add To Cart

BUY NOW

Request a quote

Who Should Attend?

This training is a Department of Defense mandate, ensuring compliance with cybersecurity protocols and procedures. The target audience includes individuals seeking the knowledge and skills involved in deploying, operating, and verifying Cisco DoD C2C network architecture, such as:

  • Network Security Engineers
  • Network Administrators
  • Security Administrators

What You'll Learn

At the end of the course, you should be able to:

  • Define DoD C2C, including its steps and alignment with ISE features/functions and Zero Trust
  • Describe Cisco Identity-Based Networking Services
  • Describe the Cisco Identity Services Engine
  • Explain Cisco ISE deployment
  • Describe Cisco ISE policy enforcement components
  • Describe Cisco ISE policy configuration
  • Explain PKI fundamentals, technology, components, roles, and software supplicants
  • Describe the Cisco ISE profiler service
  • Configure endpoint compliance
  • Configure client posture services
  • Describe profiling best practices and reporting
  • Describe the four main use cases within C2C
  • Explain the purporse and the configuration of integrating Cisco ISE with Tenable
  • Describe the purpose and benefits of integrating Cisco ISE with MECM
  • Describe the purpose and benefits of integrating Cisco ISE with Trellix
  • Troubleshoot Cisco ISE policy and third-party NAD support
  • Describe Cisco ISE TrustSec configurations
  • Configure Cisco ISE device administration

Course Outline

Section 1: C2C Fundamentals

  • Comply to Connect Overview
  • From C2C to ZTA
  • Steps to Implement C2C

Section 2: Cisco Identity-Based Networking Services

  • Cisco IBNS Overview
  • AAA Role in Cisco IBNS
  • Compare Cisco IBNS and Cisco ISE Solutions
  • Explore Cisco IBNS Architecture Components

Section 3: Introducing Cisco ISE Architecture

  • Cisco ISE as a Network Access Policy Engine
  • Cisco ISE Use Cases
  • Cisco ISE Functions

Section 4: Introducing Cisco ISE Deployment

  • Cisco ISE Deployment Models
  • Cisco ISE Licensing and Network Requirements
  • Cisco ISE Context Visibility Features
  • New Features in Cisco ISE 3.X

Section 5: Introducing Cisco ISE Policy Enforcement Components

  • 802.1X for Wired and Wireless Access
  • MAC Authentication Bypass for Wired and Wireless Access
  • Identity Management
  • Active Directory Identity Source
  • Additional Identity Sources
  • Certificate Services

Section 6: Introducing Cisco ISE Policy Configuration

  • Cisco ISE Policy
  • Cisco ISE Authentication Rules
  • Cisco ISE Authorization Rules

Section 7: PKI and Advanced Supplicants

  • Public Key Infrastructure (PKI)
  • TEAP in Comply to Connect (C2C)
  • Secure Client ISE features and Configuration for C2C

Section 8: Introducing the Cisco ISE Profiler

  • Web Access with Cisco ISE
  • ISE Profiler
  • Cisco ISE Probes
  • Profiling Policy
  • Custom Attributes in Profile

Section 9: Introducing Cisco ISE Endpoint Compliance Services

  • Endpoint Compliance Services Overview

Section 10: Configuring Client Posture Services and Compliance

  • Client Posture Services and Provisioning Configuration

Section 11: Introducing Profiling Best Practices and Reporting

  • Profiling Best Practices

Section 12: C2C Use Cases

  • Cisco CX ISE Reporting Tool
  • ISE Reporting
  • ISE Hardening
  • Profiling Best Practices for C2C

Section 13: C2C Third-Party Integrations-Tenable

  • Tenable Use Case
  • Tenable Overview and Capabilities
  • Tenable Integration Prerequisites
  • Tenable Integration Configuration
  • Policy Design
  • Policy Enforcement
  • Enforcement Verification

Section 14: C2C Third-Party Integrations-MECM

  • MECM Use Case
  • MECM Overview and Capabilities
  • MECM Integration Prerequisites
  • MECM Integration Configuration
  • Policy Design
  • Policy Enforcement
  • Enforcement Verification

Section 15: C2C Third-Party Integrations-Trellix

  • Trellix Use Case
  • Trellix Overview and Capabilities
  • Trellix Integration Prerequisites
  • Trellix Integration Configuration
  • Policy Enforcement
  • Enforcement Verification

Section 16: Troubleshooting Cisco ISE Policy and Third-Party NAD

  • Cisco ISE Third-Party Network Access Device Support
  • Troubleshooting Cisco ISE Policy Configuration

Section 17: Exploring Cisco TrustSec

  • Cisco TrustSec Overview
  • Cisco TrustSec Enhancements
  • Cisco TrustSec Configuration

Section 18: Working with Network Access Devices

  • Reviewing AAA
  • Cisco ISE TACACS+ Device Administration
  • Configuring TACACS+ Device Administration
  • TACACS+ Device Administration Guidelines and Best Practices
BUY NOW

Labs Outline
  • Lab 1: Initial Configuration and Certificate Usage
  • Lab 2: Integrate Cisco ISE with Active Directory
  • Lab 3: AAA Policy for, MAB
  • Lab 4: AAA Policy for 802.1X
  • Lab 5: TEAP on Windows
  • Lab 6: Cisco ISE Profiling Configuration
  • Lab 7: Profiling Customization
  • Lab 8: Cisco ISE Compliance Services
  • Lab 9: Client Provisioning
  • Lab 10: Posture Policies
  • Lab 11: Compliance-Based Access
  • Lab 12: Profiling Reports
  • Lab 13: DISA Reports
  • Lab 14: Certificate-Based Authentication for Cisco ISE Administration
  • Lab 15: Cisco ISE to Tenable Integration Simulation
  • Lab 16: Cisco ISE to MECM Integration Simulation
  • Lab 17: Cisco ISE to Trellix Integration Simulation
  • Lab 18: Cisco TrustSec
  • Lab 19: TACACS+ Basic Device Administration
  • Lab 20: TACACS+ Command Authorization
BUY NOW

Prerequisites

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

  • Familiarity with 802.1X
  • Familiarity with Microsoft Windows Operating Systems
  • Familiarity with Cisco IOS CLI for wired and wireless network devices
  • Familiarity with Cisco Identity Service Engine

These skills can be found in the following Cisco course:

Vendor Credits

This course can be purchased with Cisco Learning Credits (CLCs).

BUY NOW