JPAC Junos Pulse Access Control

This three-day course provides detailed coverage of the configuration of the Junos Pulse Access Control Service (JPACS) offered by Juniper Networks. Students will work with the solution elements—the JPACS, the SRX Series Services Gateways firewall enforcer, Junos Pulse, and the Odyssey Access Client (OAC)—to configure secured access to network resources.

Key topics include JPACS deployment, basic implementation, and element configuration. Students will have the opportunity to apply their knowledge in several hands-on labs. After successfully completing this course, students should be able to deploy the JPACS and firewall enforcer to support common environments.

For a limited time, students attending the JPAC course will receive a free Prometric test voucher for the JNCIS-AC certification exam.

Students that attend this course will be eligible to receive a FREE Pearson-VUE test voucher that can be used to take the associated Juniper Networks JNCIS-AC Certification Exam

The topics listed are subject to change

• Introduction to JPACS
• Typical deployment scenarios
• Terminology
• JPACS configuration elements
  • Roles
  • Authentication realms
  • Authentication servers
  • Resource policies
  • Sign-in policies
• Firewall enforcer configuration elements
  • Infranet policies
• Junos Pulse configuration elements
  • Connections
  • Location Awareness
  • Host Checker Integration
• Odyssey Access Client configuration elements
  • Host Checker Integration
  • Host Enforcer
• Troubleshooting

Day 1

Chapter 1: Course Introduction

Chapter 2: Junos Pulse Access Control Service

• Need for Access Control
• JPACS Components
• JPACS Component Interaction
• Sample JPACS Deployments

Chapter 3: Initial Configuration

• JPACS Initial Configuration: Console
• JPACS Initial Configuration: Admin UI
• Firewall Enforcer Initial Configuration
• Verification and Troubleshooting

Chapter 4: The Access Management Framework

• Access Management Framework Elements

Chapter 5: Roles

• Configuring User Roles
• Role Mapping
• Configure Sign-in Policies

Chapter 6: Client Access Methods

• Client Access Methods
• Configure Agent Access
• Configure Agentless Access

Day 2

Chapter 7: Firewall Enforcement

• Resource Policy Overview
• Discuss Firewall Enforcement
• Configure Firewall Enforcement
• Captive Portal

Chapter 8: Layer 2 Enforcement

• 802.1X Operations
• RADIUS Elements
• MAC Authentication

Chapter 9: Configuring Layer 2 Enforcement

• Configure an 802.1X Authenticator
• Configure 802.1X Support on the JPACS
• Configure MAC Authentication

Chapter 10: Endpoint Security

• What Is Host Checker?
• Host Checker Configuration
• Enhanced Endpoint Security (EES) Configuration
• Remediation Options

Day 3

Chapter 11: Authentication Options

• The Authentication Process
• Configuring Authentication Servers
• Configuring Authentication Realms

Chapter 12: Management and Troubleshooting

• Logging
• Monitoring
• Troubleshooting Component Communications
• Troubleshooting User Interactions
• Configuration File Management

Chapter 13: High Availability

• HA Concepts
• JPACS Cluster Configuration
• SRX HA Configuration

Chapter 14: Integration

• IF-MAP Federation
• NSM Integration
• STRM Integration
• IDP Integration

Appendix A: Junos Pulse Gateway Chassis Management Appendix B: ScreenOS Enforcer Configuration

Students should have experience with the TCP/IP protocol suite, including addressing and routing, and Ethernet experience, including addressing, basic switching operations, and virtual LANs (VLANs). In addition, students should have knowledge of basic security and access management concepts, including 802.1x and RADIUS.

Attendance of the Introduction to the Junos Operating System (IJOS) and Junos Security (JSEC) courses, or equivalent experience with Junos devices and SRX Series firewalls is recommended.

This course is available as open-enrollment Classroom event, instructor-led Live Virtual Class, REAL-ILT™ or as part of a custom Onsite Training for up to 16 students.