• Classroom
Course Description

Learn to configure, maintain, and operate VPN solutions based on the Cisco ASA 5500 Series Adaptive Security Appliance (ASA) including:
• Site—to—site IPSec VPN
• Remote access IPSec VPN
• Remote access SSL VPN with AnyConnect 3.0
• Load balancing VPN clusters
• AAA for VPNs using Cisco ACS 5.2

We have enhanced the standard Cisco labs to run on our expanded topology to better simulate a typical production network. Using an ASA 5520, our expert instructors will guide you through exercises such as:
• Managing digital certificates for IPSec and SSL VPNs
• Implementing both site—to—site and remote access VPN
• Implementing VPN access policies for corporate employees, contractors, and partners

Learning Objectives

Implement site—to—site IPSec VPN
Implement remote access IPSec and SSL VPNs
Work with both the legacy Cisco IPSec VPN client and the AnyConnect 3.0 VPN client
Deploy clientless SSL VPN access, including portal customization, smart tunnel access, and web—type ACLs
Implement single sign—on for clientless VPN access to internal resources
Deploy full tunnel SSL VPN using the Cisco AnyConnect VPN Client
Determine and enhance the security posture of remote SSL VPN systems using Cisco Secure Desktop
Use digital certificates and PKI infrastructure for peer identity management in all classes of VPN
Configure the ASA as a Certificate Authority for SSL VPN access
Configure the ASA as a SCEP proxy for remote access VPN
Configure access control policies to implement your security policy across all classes of VPN
Use Dynamic Access Policies (DAP) to adapt a remote user’s VPN policy to the user’s current situation
Implement High Availability and scalability features for Cisco ASA VPN solutions

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.