Overview/Description
The Cisco ASA adaptive security appliance supports site-to-site IP Security (IPsec) VPN deployments, which can be used to protect traffic between remote and central sites. Basic deployments of site-to-site IPsec VPNs use pre-shared keys (PSKs) for authentication, which is recommended for smaller deployments. This course demonstrates how to configure, verify, and troubleshoot basic site-to-site IPsec VPNs. The Cisco ASA adaptive security appliance supports certificate-based authentication in site-to-site VPNs, together with rich public key infrastructure (PKI) integration options. You can use certificates to provide secure and scalable authentication among multiple sites in large site-to-site IPsec VPNs. How to enroll the Cisco ASA security appliance into a PKI and how to enable certificate-based authentication for site-to-site IPsec VPNs is also covered in the course.
Target Audience
Anyone wishing to obtain the Cisco Certified Network Professional CCNP Security designation. Cisco Network Security Engineers responsible for the selection, configuration, and the troubleshooting of the majority of Cisco ASA adaptive security appliance perimeter security features to reduce risk to IT infrastructure and its applications within their networking environments.
Established IT professionals with a good understanding of networking and Cisco technology, installation, troubleshooting and monitoring of devices used to maintain integrity, confidentiality and availability of data and network devices that Cisco uses in its security infrastructure, as well as working knowledge of the Microsoft Windows operating system.
Candidates who have completed the Cisco Certified Network Associate (CCNA), the Cisco Certified Network Associate Security (CCNA Security), the Securing Networks with Cisco Routers and Switches (SECURE) v1.0, and the Deploying Cisco ASA Firewall Solutions (FIREWALL 2.0) Certifications.