Configuring Unified Access Control
Course No: EDU-JUN-CUAC
Course Overview
This two-day course discusses the configuration of the Unified Access Control solution offered by Juniper Networks. Students will work with the solution elements—the Infranet Controller, the Infranet Enforcer, and the Infranet Agent—to configure secured access to network resources. Key topics include Unified Access Control deployment, basic implementation, and element configuration. Students will have the opportunity to apply their knowledge in several hands-on labs.
Objectives
After successfully completing this course, you should be able to deploy the Infranet Controller and Infranet Enforcer to support common environments. Specific topics include:
- Introduction to Unified Access Control
- Typical deployment scenarios
- Terminology
- Infranet Controller configuration elements
- Roles
- Authentication realms
- Authentication servers
- Resource policies
- Sign-in policies
- Infranet Enforcer configuration elements
- Infranet Agent configuration elements
- Host Checker
- Host Enforcer
- Troubleshooting
Intended Audience
The intended audience for this course includes network engineers, support personnel, reseller support, and anyone responsible for implementing the Unified Access Control products.
Prerequisites
Completion of Configuring Juniper Networks Firewall/IPSec VPN Products (CJFV) or equivalent experience with ScreenOS firewalls is required. The course also assumes that students understand internetworking basics, basic security concepts, network administration, application support, and basic remote access concepts.
Course contents
Day 1
Chapter 1: Course Introduction
Chapter 2: The UAC Solution
- Need for Unified Access Control
- UAC Components
- UAC Component Interaction
- Sample UAC Deployments
Chapter 3: Initial Configuration
- Infranet Controller Initial Configuration: Console
- Infranet Controller Initial Configuration: Admin UI
- Lab 1: Initial Configuration
Chapter 4: Access Control
- Using the Infranet Enforcer
- Lab 2: Access Control
Day 2
Chapter 5: Access Control Using 802.1X
- RADIUS Overview
- Infranet Controller as RADIUS Server
- Switch Configuration Requirements
- Configure Infranet Enforcer as RADIUS Client
- Lab 3: Policy Configuration Using 802.1X
Chapter 6: Management and Troubleshooting
- Logging
- Policy Trace
- Configuration File Management
- Lab 4: Logging and Troubleshooting
Chapter 7: Authentication Options
- The Authentication Process
- Configuring Authentication Servers
- Configuring Authentication Realms
- Configuring Sign-In Policy
- Configuring Guest Access and Anonymous Authentication
- Lab 5: Authentication Options
Chapter 8: Endpoint Defense
- What Is Juniper Endpoint Defense Initiative?
- What Is Host Checker?
- Host Checker Configuration
- Odyssey Access Client and Host Checker Installation Options
- Client-Side Logging
- Lab 6: Endpoint Defense
|
