Deploying Security in Cisco ACI-DSACI

COURSE OUTLINE:

Description

You learn a brief overview of Cisco ACI architecture, including an examination of the Cisco Nexus 9000 Series Switches for data centers. Also, you have the opportunity to discover how to implement security mechanisms in the operational infrastructure with the Cisco ACI environment. You also explore the process for provisioning security services in Cisco ACI, including external Cisco Adaptive Security Appliance (ASA), Adaptive Security Virtual Appliance (ASAv) instances, and Cisco Firepower capabilities.

This course combines lecture materials and hands-on labs throughout to make sure you are able to successfully deploy, configure, and maintain Cisco ACI security.

Audience

  • Data center engineers
  • Technical support personnel
  • Network engineers
  • Security specialists

Prerequisites

  • Complete knowledge of Cisco networking
  • Data center and virtualization knowledge
  • Network and data center security skills

Learning Objectives

  • Basic Cisco ACI architecture and operation
  • Tenant security
  • Security domains
  • Secure fabric operation
  • Authentication, authorization, and accounting (AAA) integration
  • Microsegmentation
  • �L4�L7 service graphs
  • �Function profiles
  • External ASA device integration
  • ASAv appliance integration
  • Cisco Firepower Next-Generation Intrusion Prevention System (NGIPS) integration

Module 1: Basics of Cisco ACI

  • Lesson 1: Cisco APIC Architecture and Operation
  • Lesson 2: Cisco ACI Logical Elements

Module 2: Security Built In to Cisco ACI

  • Lesson 1: Inherent Cisco ACI Security Mechanisms
  • Lesson 2: Securing the Cisco ACI Environment from Threats

Module 3: Security Services in Cisco ACI

  • Lesson 1: L4�L7 Services Key Concepts
  • Lesson 2: Security Appliances in Cisco ACI
  • Lesson 3: Deploying Cisco ASA in Cisco ACI
  • Lesson 4: Deploying Cisco ASAv in Cisco ACI
  • Lesson 5: Deploying Cisco FirePOWER NGIPS in Cisco ACI