CUAC Configuring Unified Access Control

The three-day CUAC course discusses the configuration of the Unified Access Control solution. Students will work with the solution elements—the Infranet Controller, the Infranet Enforcer, and the Infranet Agent to configure secured access to network resources. Key topics include Unified Access Control deployment, basic implementation, and element configuration.

Students will have the opportunity to configure these devices in a variety of lab scenarios. By the end of this course, students will be able to install, configure and maintain Juniper Infranet Controller devices in common environments.

• Configure basic interconnectivity among UAC components
• Configure Infranet Controller access management elements
• Configure the Infranet Enforcer
• Describe and configure the Infranet Controller to use RADIUS for 802.1X enforcement
• Describe switch configuration requirements
• Describe using an Infranet Enforcer as an 802.1X RADIUS client
• Use the integrated logging functions to verify user connectivity and policy assignment
• Use policy tracing to troubleshoot user policy assignment
• Manage configuration files
• Enable available user authentication options
• Configure authentication options using:
• AD/NT
• RADIUS
• LDAP
• Single sign-on
• Configure guest access and anonymous authentication
• Discuss endpoint defense options
• Configure Host Checker
• Configure remediation options
• Configure Odyssey Access Client options
• Configure agentless connectivity

Network engineers, technical support personnel, reseller support engineers, and others responsible for implementing and or maintaining the Juniper Networks products covered in this course.

Day 1

Chapter 1: Course Introduction

Chapter 2: The UAC Solution

• Need for Unified Access Control
• UAC Components
• UAC Component Interaction
• Sample UAC Deployments

Chapter 3: Initial Configuration

• Infranet Controller Initial Configuration: Console
• Infranet Controller Initial Configuration: Admin UI
• Overlay Enforcer Initial Configuration
• Verification and Troubleshooting

Chapter 4: The Access Management Framework

• Access Management Framework Elements

Day 2

Chapter 5: Overlay Enforcement

• Layer 3 Secure Access Options
• Policy Type

Chapter 6: Configuring Overlay Enforcement

• Overlay Enforcement Configuration
• Verifying Operations
• Configuring Additional Features

Chapter 7: Endpoint Security

• Host Checker Configuration
• Remediation Options

Chapter 8: Layer 2 Enforcement

• 802.1X Operations
• RADIUS Elements
• MAC Authentication

Day 3

Chapter 9: Configuring Layer 2 Enforcement

• Configuring an 802.1X Authenticator
• Configuring 802.1X Support on the IC
• Configuring MAC Authentication

Chapter 10: Management and Troubleshooting

• Logging
• Monitoring
• Troubleshooting Component Communications
• Troubleshooting User Interactions
• Configuration File Management

Chapter 11: Authentication Options

• The Authentication Process
• Configuring Authentication Servers
• Configuring Authentication Realms

Chapter 12: Integration

• IC Clustering
• NSM Integration
• STRM Integration
• IDP Integration
• Firewall Options
• NAP Interoperability

This course is available as open-enrollment Classroom event, instructor-led Live Virtual Class, REAL-ILT™ or as part of a custom Onsite Training for up to 16 students.

Completion of Configuring Juniper Networks Firewall/VPNs (CJFV) or equivalent experience with Juniper Networks firewalls is required.

The course also assumes that students have moderate background in internetworking basics, security concepts, network administration, and application support.