Cisco Security certifications focus on the growing need of knowledgeable network professionals who can implement complete security solutions. Cisco ASA Specialist takes your knowledge and skills on configuring, maintaining, and operating Cisco Adaptive Security Appliance 5500 series to the next level.
Cisco ASA Specialist Boot Camp adds depth to the existing Cisco-developed Hands-on labs for Firewall v1.0 and VPN v1.0. VPN v1.0 takes over where Firewall v1.0 leaves off, covering VPN topics of the Adaptive Security Appliance.
ADS’s advanced hands-on labs, delivered on enhanced topology designed to simulate a typical production network, guide you through exercises such as executing general maintenance commands, configuring ACLs, configuring VPN on the Security Appliance, managing digital certificates for IPsec and SSL VPNs (ASA specific), deep packet inspection and using the 5510 in the SOHO environment.
ADS labs utilize ASA 5510 security appliances, though this course and lab content is applicable across the ASA and PIX families of security appliances. Cisco ASA Specialist Boot Camp covers the features and syntax of Cisco Security Appliance Software v8.4. Following modules are covered in the Cisco ASA Specialist Boot Camp:
Firewall v2.0 (642-618)
Technology and features of the Cisco ASA
Cisco ASA product family
How ASAs and Cisco PIX Security Appliances protect network devices from attacks
Bootstrap the security appliance
Prepare the security appliance for configuration via the Cisco Adaptive Security Device Manager (ASDM)
Launch and navigate ASDM
Perform essential security appliance configuration using ASDM and the CLI
Configure dynamic and static address translations
Configure access policy based on Access Control Lists (ACLs)
Use object groups to simplify ACL complexity and maintenance
Use the Modular Policy Framework to provide unique policies to specific data flows
Handle advanced protocols with application inspection
Deep packet inspection of application layer traffic
Troubleshoot with Syslog, Packet Tracer, and packet capture
Configure access-control based on authenticated users
Configure threat detection to meet security policy requirements
Configure the security appliance to run in transparent firewall mode
Enable, configure, and manage multiple contexts to meet security policy requirements
Select and configure the type of failover that best suits the network topology
Monitor and manage an installed security appliance
Initialize ASA Security Service Modules including the AIP-SSM and CSC-SSM
VPN v2.0 (642-648)
Implement site-to-site IPsec VPN
Implement remote access IPsec and SSL VPNs
Work with both the Cisco IPsec VPN client software and the hardware client built into the ASA 5505
Deploy clientless SSL VPN access, including portal customization, smart tunnel access, and web-type ACLs
Implement single sign-on for clientless VPN access to internal resources
Deploy full tunnel SSL VPN using the Cisco AnyConnect VPN Client
Determine and enhance the security posture of remote SSL VPN systems using Cisco Secure Desktop
Use digital certificates and PKI infrastructure for peer identity management in all classes of VPN
Configure the ASA as a Certificate Authority for SSL VPN access
Configure access control policies to implement your security policy across all classes of VPN
Use Dynamic Access Policies (DAP) to adapt a remote user's VPN policy to the user's current situation
Implement High Availability and scalability features for Cisco ASA VPN solutions
Course Content / Exam(s)
Schedule for Cisco ASA Specialist Boot Camp Training
Course Contents (Reference Books covering the required contents)