Juniper Networks Certified Internet Associate - SSL

Designed for experienced networking professionals with beginner-intermediate knowledge of the Juniper Networks Secure Access products and their deployment. JNCIA-SSL exam topics are based on the content of the Configuring Juniper Networks Secure Access instructor led training course.

IVE Technology

• Identify Platform Differences
• Describe Deployment Options for the IVE
• Describe SSL, TLS and Digital Certificates as they relate to the IVE
• Compare SSL VPN to IPSEC VPN
• Explain strengths and weaknesses in the 3 access methods
• Define the functions of the IVE
• Perform Initial Configuration with Console and GUI
• Describe the Role of Cookies in the IVE
• Describe the Order of Operation from Sign-in to Resource Policy Enforcement

Sign In pages and Policy

• Identify functions defined on the sign in page
• Describe Sign In Policy Options and Restrictions

User Roles

• Identify Functions Provided by User Roles
• Configure User Role: UI, Session and General Settings
• Create and Configure Web Bookmarks
• Define and implement Web Options
• Define and Implement File Bookmarks and Options

Authentication Servers

• Identify the Servers Provided with the Basic License
• Configuration of Local Users and server options
• Configuring Radius Server Settings
• Configuring connectivity for AD/NT Authentication
• Configuring LDAP Server Connection Settings
• Defining filters and criteria for LDAP User and Group matching

Realms and Role Mapping

• Identify the settings configured in a Realm
• Identify Server combinations that can be used for Authentication, Directory and Accounting in a Realm
• Describe Role Mapping Order and the effects of Stop Rules
• Configure User name and Group Based Role Mapping
• Configure LDAP and RADIUS Attribute Role Mapping

Resource Policy

• Policy Basics
  • Define Resources for different policy types
  • Configure Access Policies
  • Identify implications of Policy Order
• Web Policy
  • Defining Web Policy for features other then resource access
• Auto Allow
  • Identify and determine appropriate use of Auto Allow policies

Application Support.

• Define the key differences of JSAM and WSAM
• Configure Applications and Host Based Application Support for SAM
• Identify SAM Limitations
• Define the Client Privileges required for WSAM
• Configure NC Split Tunneling Options
• Create appropriate NC Connection Policies
• Identify Reasons for using Network Connect
• Create terminal session bookmarks

Logging and Troubleshooting

• Identify Log types available on the IVE
• Create Log Filters
• Identify tools for troubleshooting
• Troubleshoot Authentication and Authorization issues
• Perform Troubleshooting of the SAM

End System Security

• Identify the functionality of cache cleaner
• Identify the functionality of host checker

Resource Profile

• Resource Profile Basics

60 multiple-choice questions

90 minutes