SISE - Implementing and Configuring Cisco Identity Services Engine v5.0

The Implementing and Configuring Cisco Identity Services Engine (SISE) course teaches you to deploy, configure, and operate Cisco Identity Services Engine (ISE) as the central platform for identity-based access control. Learning begins with the core architecture and installation and progresses through network access control, identity stores, policy design, and day-to-day operations. You will learn how to configure authentication and authorization policies, create scalable guest onboarding workflows, integrate network devices, and apply identity-based access decisions across wired and wireless environments. It also covers endpoint profiling, posture assessment, Terminal Access Controller Access Control Server (TACACS+) device administration, TrustSec concepts, certificate management, lifecycle operations, and advanced administration practices. The labs provide you with practical experience in Cisco ISE personas, certificate-based authentication, TEAP (EAP Chaining), Bring Your Own Device (BYOD) onboarding, device profiling, guest services, and policy enforcement in real-world environments. A wide range of use cases are covered, including 802.1X, MAB, and certificate provisioning. As a result of this training, you will be able to design, implement, and operate a Cisco ISE deployment that meets modern enterprise requirements for identity, security, visibility, and access control.

This course prepares you for 300-715 SISE exam. If passed, you earn the Cisco Certified Specialist Security Identity Management Implementation certification and satisfy the concentration exam requirement for the Cisco Certified Network Professional (CCNP) Security certification.

This training also earns you 32 Continuing Education (CE) credits toward recertification.

• Cisco ISE Evolution, Foundation, and Role
• Architecture and Design
• Cisco ISE Installation and Initial Config
• 802.1X in Cisco ISE
• MAB in Cisco ISE
• Network Device Integration with Cisco ISE
• Identity Sources and Authentication Types
• Active Directory and LDAP Integration
• Identity Selection and Resolution Logic
• Cisco ISE Policy Framework
• Authentication Policies
• Authorization Policies
• Troubleshoot Policies and Sessions
• Guest Access Overview
• Guest Access Policies and Settings
• Guest Portals and Lifecycle Operations
• Sponsor Portals
• BYOD Architecture and Use Cases
• BYOD Onboarding with Native Supplicant Provisioning
• BYOD Lifecycle Operations
• Profiling Architecture and Capabilities
• Probes and Data Collection
• Profile Policies and Authorization
• Profile Monitoring and Design
• Posture Service Flow and Agents
• Posture Updates and Client Provisioning
• Posture Policies and Compliance-Based Access
• Posture Testing and Monitoring
• AAA and TACACS+
• TACACS+ Device Administration
• TACACS+ Command Authorization
• Cisco TrustSec Overview
• Cisco TrustSec in Cisco ISE
• Cisco ISE Administration

There are no prerequisites for this training. However, the knowledge and skills you are recommended to have before attending this training are:

• Familiarity with the Cisco IOS Software Command-Line Interface (CLI) for wired and wireless devices
• Familiarity with Cisco Secure Client
• Familiarity with Microsoft Windows operating systems
• Familiarity with 802.1X

These skills can be found in the following Cisco Learning Offering:

• Network Security Engineers
• Network Administrators
• Consulting Security Engineers
• Technical Solutions Architects
• Network Managers
• Sales Engineers
• Account Managers