Register your product to gain access to bonus material or receive a coupon.
Cisco ISE for BYOD and Secure Unified Access, 2nd Edition
- By Aaron Woland, Jamey Heary
- Published Jun 16, 2017 by Cisco Press. Part of the Networking Technology: Security series.
Best Value Purchase
Book + eBook Bundle
- Your Price: $75.59
- List Price: $125.98
- Includes EPUB, MOBI, and PDF
- About eBook Formats
This eBook includes the following formats, accessible from your Account page after purchase:
EPUB
The open industry format known for its reflowable content and usability on supported mobile devices.
MOBI
The eBook format compatible with the Amazon Kindle and Amazon Kindle applications.
PDF
The popular standard, used most often with the free Adobe® Reader® software.
This eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.
More Purchase Options
eBook (Watermarked)
- Your Price: $44.79
- List Price: $55.99
- Includes EPUB, MOBI, and PDF
- About eBook Formats
This eBook includes the following formats, accessible from your Account page after purchase:
EPUB
The open industry format known for its reflowable content and usability on supported mobile devices.
MOBI
The eBook format compatible with the Amazon Kindle and Amazon Kindle applications.
PDF
The popular standard, used most often with the free Adobe® Reader® software.
This eBook requires no passwords or activation to read. We customize your eBook by discreetly watermarking it with your name, making it uniquely yours.
Description
- Copyright 2017
- Dimensions: 7-3/8" x 9-1/8"
- Pages: 912
- Edition: 2nd
- Book
- ISBN-10: 1-58714-473-5
- ISBN-13: 978-1-58714-473-8
Fully updated: The complete guide to Cisco Identity Services Engine solutions
Using Cisco Secure Access Architecture and Cisco Identity Services Engine, you can secure and gain control of access to your networks in a Bring Your Own Device (BYOD) world.
This second edition of Cisco ISE for BYOD and Secure Unified Accesscontains more than eight brand-new chapters as well as extensively updated coverage of all the previous topics in the first edition book to reflect the latest technologies, features, and best practices of the ISE solution. It begins by reviewing today’s business case for identity solutions. Next, you walk through ISE foundational topics and ISE design. Then you explore how to build an access security policy using the building blocks of ISE. Next are the in-depth and advanced ISE configuration sections, followed by the troubleshooting and monitoring chapters. Finally, we go in depth on the new TACACS+ device administration solution that is new to ISE and to this second edition.
With this book, you will gain an understanding of ISE configuration, such as identifying users, devices, and security posture; learn about Cisco Secure Access solutions; and master advanced techniques for securing access to networks, from dynamic segmentation to guest access and everything in between.
Drawing on their cutting-edge experience supporting Cisco enterprise customers, the authors offer in-depth coverage of the complete lifecycle for all relevant ISE solutions, making this book a cornerstone resource whether you’re an architect, engineer, operator, or IT manager.
· Review evolving security challenges associated with borderless networks, ubiquitous mobility, and consumerized IT
· Understand Cisco Secure Access, the Identity Services Engine (ISE), and the building blocks of complete solutions
· Design an ISE-enabled network, plan/distribute ISE functions, and prepare for rollout
· Build context-aware security policies for network access, devices, accounting, and audit
· Configure device profiles, visibility, endpoint posture assessments, and guest services
· Implement secure guest lifecycle management, from WebAuth to sponsored guest access
· Configure ISE, network access devices, and supplicants, step by step
· Apply best practices to avoid the pitfalls of BYOD secure access
· Set up efficient distributed ISE deployments
· Provide remote access VPNs with ASA and Cisco ISE
· Simplify administration with self-service onboarding and registration
· Deploy security group access with Cisco TrustSec
· Prepare for high availability and disaster scenarios
· Implement passive identities via ISE-PIC and EZ Connect
· Implement TACACS+ using ISE
· Monitor, maintain, and troubleshoot ISE and your entire Secure Access system
· Administer device AAA with Cisco IOS, WLC, and Nexus
Sample Content
Sample Pages
Download the sample pages (includes Chapter 18 and index)
Table of Contents
- Introduction
- Section I: Identity Enabled Network: Unite!
- Chapter 1: Fundamentals of AAA
- Chapter 2: The Evolution of Network Access
- Chapter 3: Introducing Cisco Secure Access and the Identity Services Engine
- Section II: The Blueprint, Designing an ISE Enabled Network
- Chapter 3: What are the building blocks in ISE Design?
- Chapter 4: Making Sense of all the ISE Design Options
- Chapter 5: The Basics: Principal Configuration Tasks for ISE
- Section III: The Foundation, Building a Context-Aware Security Policy
- Chapter 6: Creating Authentication and Authorization Policies
- Chapter 7: Building a Device Security Policy
- Chapter 8: Building an Accounting and Audit Policy
- Section IV: Let's Configure
- Chapter 9: Profiling Basics and Initial Configuration
- Chapter 10: Bootstrapping Network Access Devices
- Chapter 11: The Building Blocks: Roles and Authorization Results
- Chapter 12: Authentication and Authorization Policies
- Chapter 13: Guest Lifecycle Management
- Chapter 14: Device Posture Assessments
- Chapter 15: Supplicant Configuration
- Chapter 16: BYOD: Self Service Onboarding and Registration
- Chapter 17: Setting up a Distributed ISE Deployment
- Chapter 18: Remote Access VPN with ASA and Cisco ISE
- Chapter 19: Deploying in Phases
- Section V: Advanced Secure Access Features
- Chapter 20: Advanced Profiling Configuration
- Chapter 21: Cisco TrustSec AKA:Security Group Access
- Chapter 22: High Availability & Disaster Scenario
- Chapter 23: ISE Ecosystems: the platform exchange Grid
- Section VI: Monitoring, Maintenance, and Troubleshooting for Network Access AAA
- Chapter 24: Understanding Monitoring and Alerting
- Chapter 25: Troubleshooting
- Chapter 26: Backup, Upgrading
- Section VII: Device Administration
- Chapter 27: Device Admin AAA Fundamentals & Design
Updates
Errata
We've made every effort to ensure the accuracy of this book and its companion content. Any errors that have been confirmed since this book was published can be downloaded below.
Download the errata (45 KB .doc)