Securing Cisco Digital Network Architecture (DNA) (DNASEC)
More Information:
- Learning Style: Virtual
- Provider: Cisco
- Difficulty: Intermediate
- Course Duration: 5 Days
- CLC: 45 Units
- Course Info: Download PDF
- Certificate: See Sample
Need Training for 5 or More People?
Customized to your team's need:
- Annual Subscriptions
- Private Training
- Flexible Pricing
- Enterprise LMS
- Dedicated Customer Success Manager
Course Information
About this course:
Many challenges exist managing modern networks on a day to day basis. The problems are intensified when manual configuration changes using fragmented tool offerings result in non-centralized change and configuration management which leads to various naming, configuration, backup and security compliance issues. Manual configuration changes when compared to automated, policy-based approaches are slow and error-prone. Break and fix, new network builds and change requests in dynamic environments where user requirements, devices and applications are evolving at ever increasing rates fueled in many cases by the big data of IoT. The networks of today face deployment, support and security challenges mitigated with modern tools such as Digital Network Architecture Centre (DNAC), Cisco Identity Services Engine (ISE) and Stealthwatch. In this course, you use these tools to build a centrally managed, authenticated, authorized, monitored and security-policy compliant solution.
Course Objective:
Upon completing this course, the learner will be able to deploy and setup a network built on DNA and SDA concepts and components and be prepared for daily operation tasks associated to such networks. The learner will meet these overall objectives:
- Know and understand Cisco’s DNA and SD-Access concepts, features, benefits, terminology and the way this approach innovates common administrative tasks on today’s networks.
- Differentiate and explain each of the building blocks of SD-Access Solution
- Be familiar with fabric and node types
- Deploy and configure Fabric Edge Nodes, Control Plane nodes and Border Nodes
- Configure LISP in Control Plane for SD-Access Solution
- Configure VXLAN in Data Plane for SD-Access Solution
- Configure TrustSec for segmentation and Policy Enforcement
- Understand the role of DNA Center as solution orchestrator and Intelligent GUI
- Deploy DNA Center and perform initial setup
- Use workflow approach in DNA Center and its 4 Steps: Design, Policy, Provision and Assurance
- Deploy ISE and integrate it with DNA Center and SD-Access Solution
- Deploy StealthWatch and Integrate it with DNA Center and SD-Access Solution
- Monitor and Troubleshoot SDA operation
- Know and understand the migration strategies from traditional networks to SD-Access Solution
Audience:
The primary audience for this course is as follows:
- Anyone interested in knowing about DNA and SD-Access
- Personnel involved in SD-Access Design and Implementation
- Network Operations team with SD-Access solution
Prerequisite:
The knowledge and skills that a learner must have before attending this course are as follows:
- Cisco CCNA or Equivalent Experience
- Basic Knowledge of Software Defined Networks
- Basic Knowledge of network security including AAA, Access Control and ISE
- Basic Knowledge and experience with Cisco IOS, IOS XE and CLI
- Basic Knowledge of virtualization, Hypervisors and Virtual Machines