This one day workshop covers the configuration and operation of negotiating IKE/IPSec Security Association (SA) between Cisco IOS devices. The devices will authenticate using certificates provided through enrollment with a Windows 2008 R2 Certification Authority. The Windows 2008 R2 server will run the Simple Certificate Enrollment Process (SCEP) using the Network Device Enrollment Service (NDES).
Suitable for network planners, engineers or anyone interested in operation of Cisco IOS devices running IPSec using certificate authentication.
Review the operation of IPSec SA negotiation.
Configure Cisco Router/ASA to authenticate and enroll with a Windows 2008 R2 CA.
Configure Windows 2008 R2 Server to perform network device enrollment using NDES.
Test successful operation of IPSec with certificate authentication.
Equipment used in Practical Sessions:
Cisco IOS devices running v12 of IOS and Windows 2008 R2 server acting as an enterprise CA and running NDES and certificate enrollment.
user access control
user credential management
regular review and logwatch
Computer system rules
tighten up firewall
DMZ design and deployment
port knocking protection
classify client-side users/devides
collabration models for multiple sysadmins
mobile devices / storage media
certificates, encryption keys, passwords, passphrases
data intergrity and verification
auto-detecting of intrusions
alert and alarm
log tracking and accountability
IP Security Schulung, IP Security boot camp, IP Security Abendkurse, IP Security Wochenendkurse
, IP Security Seminar,IP Security Kurs, IP Security Coaching, IP Security Lehrer
, IP Security Privatkurs, IP Security Training