Security

The video continues with our bookmark configuration on Cisco ASA SSL clientless VPN by extending application supports to Telnet, SSH, RDP and VNC in a form of java plugins. We will also attempt to enable SSO on these applications and see which will succeed and fail.

The video walks you through configuration of bookmarks on Cisco ASA SSL clientless VPN. We will look at three application protocol services; HTTP, CIFS and FTP that are available by default with bookmark, and their abilities to support Auto-Sign On that will save users from having to enter their credentials multiple times.

The video explains and demonstrates the relationship between tunnel-group and group-policy on Cisco ASA SSL VPN and compare them to the IPSec counterpart. You will learn different ways to land a user on a tunnel-group and either statically or dynamically assign them to a group-policy. Both pros and cons of each method will be discussed so you can decide which is best suited for your deployment. 

The video explains and demonstrates the relationship between tunnel-group and group-policy on Cisco ASA SSL VPN and compare them to the IPSec counterpart. You will learn different ways to land a user on a tunnel-group and either statically or dynamically assign them to a group-policy. Both pros and cons of each method will be discussed so you can decide which is best suited for your deployment. 

The video gets you started on SSL VPN on Cisco ASA with certificate installation. You will learn how to generate a Certificate Signing Request (CSR) on the ASA, submit it to your Certificate Authority (CA), and import the signed certificate back to the ASA. Installing a trusted certificate should be your first step of implementing SSL VPN to save users from unnecessarily encountering certificate warnig.

The video walks you through wireless sponsor and guest access configuration on Cisco ISE 1.2. We will take the same lab we did back in ISE 1.1 and rebuild our guest authentication so you can see how guest portal has changed in ISE 1.2 as well as preparing ourselves for full HTML custom guest portal in the second half of the video. We will show you how to create a custom guest login page so a background on HTML coding and CSS is recommended as a pre-requisite. 

The video walks you through wireless sponsor and guest access configuration on Cisco ISE 1.2. We will take the same lab we did back in ISE 1.1 and rebuild our guest authentication so you can see how guest portal has changed in ISE 1.2 as well as preparing ourselves for full HTML custom guest portal in the second half of the video. We will show you how to create a custom guest login page so a background on HTML coding and CSS is recommended as a pre-requisite. 

The video walks you through Cisco ISE 1.2 integration with MobileIron MDM. You will be able to see all required configuration on both ISE and MDM to complete the integration process, and how user onboarding experience changes now that they need to register their devices to the MDM system. We will enforce MDM security policy using PIN lock as our example and allow differentiated level of access according to device posture information. At the end, we will review actions available to users on the MyDevices portal and demonstrate initiation of screen lock and corporate-wipe to iPhone and Android.

The video walks you through Cisco ISE 1.2 integration with MobileIron MDM. You will be able to see all required configuration on both ISE and MDM to complete the integration process, and how user onboarding experience changes now that they need to register their devices to the MDM system. We will enforce MDM security policy using PIN lock as our example and allow differentiated level of access according to device posture information. At the end, we will review actions available to users on the MyDevices portal and demonstrate initiation of screen lock and corporate-wipe to iPhone and Android.