Cisco Software Define Access (SDA) Use Case Implementation, Operating and Troubleshooting (SDAOTS)

Price
$4,495.00 USD

Duration
5 Days

Cisco Learning Credit (CLC) Eligible

 

Delivery Methods
Virtual Instructor Led
Private Group

Course Overview

This 5-day deep dive training course explores the capabilities of the Cisco Software-Defined Access (SDA) solution. Students will learn how to implement SDA for different solution verticals. It also addresses the details of how to operate and troubleshoot the different capabilities of the underlying solution components.

Course Objectives

  • Articulate the value of Cisco SDA Use Cases including, for example: saving operational and management cost to maintain and support ever growing network infrastructure; central security policy to comply to regional or global regulatory requirements and enterprise security policy; deliver best-in-class services to end-users; leveraging networking insights and trends to optimize business process and workflows. Some real scenarios such as supporting multi-mode collaboration within shared workspaces in life sciences; accelerating the deployment of “pop-up” sites for emergency medical purposes; creating integrated building management solutions; zero-touch day 0 network turn-up of additional sites, rapid response to network threat and vulnerabilities, and similar.
  • Describe the technical capabilities of Cisco DNA Center and how they are applied in SDA Use Cases. This includes the lifecycle stages of network device discovery, assigning network devices to sites, network design options, provisioning, software image management, building a fabric, segmentation design, assurance, application policy, etc.
  • Set up an SDA environment, integrating Cisco Identity Services Engine (ISE) and other solution components as required.
  • Apply troubleshooting methods, processes, tips to resolve implementation and maintenance issues of the following aspects of the technical solution:
  • Device Onboarding, including device discovery, Plug-and-Play and LAN Automation
  • Network design settings, including sites, AAA, SNMP, Syslog, IP address pools, image management, network profiles, and authentication templates
  • Policies for access control, applications and virtual networks
  • Provisioning, including template-based provisioning for day 0 and day N operations
  • Network Segmentation, including the application of Cisco TrustSec security with Scalable Group Tags (SGTs) and Virtual Networks
  • Assurance to monitor network, endpoint, and applications to ensure best user experience
  • Integration of ServiceNow for an integrated IT service management lifecycle
  • Integration of InfoBlox for integrated IPAM
    • Top-rated instructors: Our crew of subject matter experts have an average instructor rating of 4.8 out of 5 across thousands of reviews.
    • Authorized content: We maintain more than 35 Authorized Training Partnerships with the top players in tech, ensuring your course materials contain the most relevant and up-to date information.
    • Interactive classroom participation: Our virtual training includes live lectures, demonstrations and virtual labs that allow you to participate in discussions with your instructor and fellow classmates to get real-time feedback.
    • Post Class Resources: Review your class content, catch up on any material you may have missed or perfect your new skills with access to resources after your course is complete.
    • Private Group Training: Let our world-class instructors deliver exclusive training courses just for your employees. Our private group training is designed to promote your team’s shared growth and skill development.
    • Tailored Training Solutions: Our subject matter experts can customize the class to specifically address the unique goals of your team.

    Course Prerequisites

  • Implementation of Enterprise LAN networks
  • Basic understanding of Enterprise switching, and wireless connectivity
  • Basic understanding of Enterprise routing connectivity
  • Basic understanding of AAA (authentication, authorization, and accounting) process and workflow
  • Programming knowledge such as Python, RestAPI is useful
  • Agenda

    1 - Introduction to Cisco’s Software Defined Access (SD-Access)

    • Understanding Cisco Intent-Based Networking
    • Understanding Cisco SDA Use Cases customer’s benefits including business and technical outcomes and capabilities
    • Cisco DNA Center Introduction
    • SD-Access Overview
    • SD-Access Benefits
    • SD-Access Key Concepts
    • SD-Access Main Components
    • Fabric Control Plane Node
    • Fabric Border Node
    • Fabric Edge Node
    • Fabric Wireless LAN Controller and Fabric Enabled Access Points
    • Cisco DNA Center Automation
    • Cisco ISE (Policy)
    • Cisco StealthWatch (Traffic Analysis)
    • DNA Center Assurance

    2 - Deployment and Initial setup for the Cisco DNA-Center

    • Cisco DNA-Center Appliances
    • Cisco DNA-Center Deployment Models
    • Single Node Deployment
    • Clustered Deployment
    • Installation Procedure
    • Initial Setup and Configuration
    • GUI Navigation

    3 - SDA - Design

    • Network design options
    • Sites
    • Creating Enterprise and Sites Hierarchy
    • Configuring General Network Settings
    • Loading maps into the GUI
    • IP Address Management
    • Software Image Management
    • Network Device Profiles
    • AAA
    • SNMP
    • Syslog
    • IP address pools
    • Image management
    • Creating Enterprise and Guest SSIDs
    • Creating the wireless RF Profile
    • Cresting the Guest Portal for the Guest SSIDs
    • Network profiles
    • Authentication templates

    4 - SDA - Policy

    • 2-level Hierarchy
    • Macro Level: Virtual Network (VN)
    • Micro Level: Scalable Group (SG)
    • Policy
    • Policy in SD-Access
    • Access Policy: Authentication and Authorization
    • Access Control Policy
    • Application Policy
    • Extending Policy across domains
    • Preserving Group Metadata across Campus, WAN and DC
    • Enforcing policy in Firewall domains
    • Cross Domain Policies

    5 - SDA - Provision

    • Devices Onboarding
    • Lifecycle stages of network device discovery
    • Discovering Devices
    • Assigning Devices to a site
    • Provisioning device with profiles
    • Plug-and-Play
    • LAN Automation
    • Templates
    • Templates for day 0
    • Templates for day N operations
    • IP Transits
    • How to connect the Fabric Sites to the external network
    • Creating the IP Transit
    • Considerations for a SD-Access Border Node Design
    • BGP Hand-Off Between Border and Fusion
    • Fabric Domains
    • Understanding Fabric Domains and Sites
    • Using Default LAN Fabric Domain
    • Creating Additional Fabric Domains and Sites
    • Adding Nodes
    • Adding Fabric Edge Nodes
    • Adding Control Plane Nodes
    • Adding Border Nodes

    6 - SDA - Assurance

    • Overview of DNA Assurance
    • Cisco DNA Center Assurance- Use Cases Examples
    • Network Health & Device 360
    • Client Health & Client 360
    • Application Health & Application 360
    • Cisco SD- Application Visibility Control (AVC) on DNA-Center
    • Proactive troubleshooting using Sensors

    7 - Cisco SD-Access Distributed Campus Design

    • Introduction to Cisco SD-Access Distributed Campus Design – The Advantage?
    • Fabric Domain vs Fabric Site
    • SD-Access Transits:
    • IP-Based Transit
    • Cisco SD-Access Transit
    • Cisco SD-WAN Transit
    • Deploying the Cisco Distributed Campus with SD-Access Transit
    • Site considerations
    • Internet connectivity considerations
    • Segmentation considerations
    • Role of a Cisco Transit Control Plane
    • Cisco SD-Access Fabric in a Box
    • The need for FiaB
    • Deploying the FiaB

    8 - Cisco SD-Access Brownfield Migration

    • Cisco SD-Access Migration Tools and Strategies
    • Two Basic Approaches:
    • Parallel Deployment Approach
    • Incremental Deployment Approach
    • Integration with existing Cisco ISE in the network – Things to watch out for!
    • Choosing the correct Fusion Device
    • Existing Core as Fusion
    • Firewall as Fusion
    • When do you need the SD-Access Layer-2 Border?
    • L2 Border – Understanding the requirement
    • Designing and Configuring the L2 Border
    • L2 Border – Not a permanent solution

    9 - Cisco DNA Center Automation- Use Cases Examples

    • DAY0: Onboarding new devices using Zero Touch Deployment
    • DAY1: Configurations using Templates
    • DAYN: Security Advisories based on Machine Reasoning Engine
    • DAYN: Simplified Software Management based on Golden Images
    • DAYN: Defective Device Replacement - RMA

    10 - 3rd Party Integrations

    • ServiceNow
    • Integration
    • Management
    • InfoBlox IPAM
    • Integration
    • Management

    11 - Specific Use Cases

    • Use Case: STACK LAN Automation
    • Use Case: Silent Hosts
    • Use Case: Wake on LAN
    • Use Case: The need for L2 flooding
    • Use Case: Multicast in the SD-Access Fabric

    12 - Cisco SD-Access Multi-Domain Integrations

    • Cisco SD-Access to ACI Integrations
    • Phase-1: Policy Plane Integration
    • Phase-2: Data Plane Integration
    • Cisco SD-Access to Cisco SD-WAN Integrations
    • What is possible today? SD-WAN Transit setup.
    • Phase-1: The one box solution
    • Phase-2: The two box solution

    13 - Troubleshooting

    • Fabric
    • Layer 3 forwarding
    • Layer 2 forwarding
    • Multicast Forwarding
    • Security in the Fabric
    • Troubleshooting Multi-Site Deployments
     

    Upcoming Class Dates and Times

    Apr 22, 23, 24, 25, 26
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    May 20, 21, 22, 23, 24
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Jun 17, 18, 19, 20, 21
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Jul 29, 30, 31, Aug 1, 2
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Aug 12, 13, 14, 15, 16
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Sep 16, 17, 18, 19, 20
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Oct 7, 8, 9, 10, 11
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Nov 18, 19, 20, 21, 22
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
    Dec 2, 3, 4, 5, 6
    9:00 AM - 5:00 PM
    ENROLL $4,495.00 USD
     



    Do You Have Additional Questions? Please Contact Us Below.

    contact us contact us 
     
    Contact Us about Starting Your Business Training Strategy with New Horizons