Juniper Networks Certified Internet Associate - Unified Access Control

Designed for experienced networking professionals with beginner to intermediate knowledge of the Juniper Networks Unified Access Control products and their deployment. JNCIA-AC exam topics are based on the content of the Configuring Unified Access Control instructor led training course.

UAC Overview

• List the key elements of the UAC solution
• Describe the functionality of UAC solution elements
• Describe the problems addressed by the UAC solution
• List UAC deployment options

Initial Configuration

• Perform initial configuration with the console and GUI
• Configure initial connectivity between the IC and the Overlay Enforcer
• Verify UAC connectivity

Access Management Framework

• List the access management framework elements
• Explain how the access management framework elements interact
• Configure user roles, UI and Session settings
• List the types of restrictions available at the role level
• Identify and configure agent access options
• Identify the settings configured in a realm
• Describe role mapping order and the effects of stop rules
• Describe pre and post authentication policies
• Identify the elements associated with an authentication realm
• Describe sign-in policies and options
• Configure multiple sign-in policies in the desired order

Overlay Enforcement

• Identify policy options and associate them with the correct device type
• Describe the policy enforcement process
• Distinguish between resource control and management policies
• Describe Host Enforcer functionality
• Configure resource access policies
• Configure IPsec routing policies
• Configure policies on the overlay enforcer

Layer 2 Enforcement

• Describe Layer 2 enforcement protocols
• Distinguish between outer and inner authentication
• Identify RADIUS elements
• Configure network access policies
• Configure the Infranet Controller as a RADIUS server
• Identify elements that must be pre-configured on an 802.1x access device
• Describe/configure location groups

Endpoint Security

• Identify the functionality of host checker
• Create Host Checker policies
• Implement Host Checker at the realm and role level
• Describe and manage integrated scan components (ESAP updates)

Authentication Options

• Configure Radius servers settings
• Configure connectivity for AD/NT authentication
• Configure connectivity for LDAP authentication
• Role Mapping with External Servers
• Identify server combinations that are used for authentication and directory.
• Configure username- and groups-based role mapping
• Configure LDAP attribute-role mapping

System Management and Troubleshooting

• Discuss process to upgrade Infranet Controller
• Identify configuration backup options
• Logging and Monitoring
• Identify log types available
• Create log filters
• Troubleshooting
• Identify tools for troubleshooting
• Troubleshoot authentication issues

Integration

• Describe IC HA functionality and options
• Discuss overlay enforcer integration issues
• Discuss interoperability with third-party endpoint clients
• Discuss integration with IDP

60 multiple-choice questions

90 minutes