Course

Advanced Juniper Networks Secure Access
Vendor: Juniper Networks
Course: Secure Access SSL VPN / Advanced Juniper Networks Secure Access
Time: 22.04.2009 - 23.04.2009. Course day start at 09.00 and end at 16.00
Duration: 2 days
Course price:
Material price:
Target audience: System Administrators
Course materials: From Vendor
Location: Spektri Business Park/Duo, Metsänneidonkuja 6, 02130 Espoo
Instructor:


Course Registration

Course Description

This two-day Advanced Juniper Networks Secure Access AJSA course discusses the advanced configuration of Secure Access (SA) products. Key topics include PKI support, additional authentication/authorization servers, complex policies, customizations, virtual systems, high availability, and Secure Meeting. Through demonstrations and hands-on labs, students will gain experience in configuring, testing, and troubleshooting advanced features of the SA products.

After succesfully completing this course, you should be able to deploy the SA products to support common environments. Specific topics include:

  • Advanced Access Management
  • Public Key Infrastructure (PKI) support
  • Certificate Revocation Lists (CRL)
  • Virtual Hosting
  • Single Sign On (SSO)
  • Advanced Authentication
  • Certificate
  • Anonymous
  • Netegrity
  • SAML
  • Advanced Policies
  • Rewriting Policies
  • Authetication Policies
  • Role Mapping
  • Resource Policies
  • Password Management
  • Administrative Delegation
  • Custom User Interface (UI)
  • Clustering
  • Instant Virtual Systems (IVS)
  • Secure Meeting.

    Prerequisites

    This course is intended for network engineers, support personnel, reseller support, and anyone responsible for implementing SA products.

This course assumes that students have successfully attended the Configuring Juniper Networks Secure Access (CJSA) course or have the equivalent experience with the Juniper Networks NetScreen Secure Access products. Specifically, students need to be familiar with the configuration of
  • Roles
  • Realms
  • Resource Policies
  • Authentication Servers.

    Instructor's comments



    Course Content

    Course Introduction

Review
* Review IVE Terminology
* Discuss advanced license features

Authentication Options
* Create multiple sign-in URLs
* Explain multiple sign-on credential configuration
* Configure anonymous authentication
* Discuss password mediation
* Discuss SSO options
* Configure Remote SSO
* Configure SAML
* Configure Netegrity Site Minder

Certificates
* Discuss digital certificates and PKI components
* Configure the IVE for certificate use, such as
- User authentication
- Role mapping and restriction
- Server authentication

Complex Policies
* Discuss the language for writing detailed resource policy rules
* Write detailed rules using the policy editor
* Write custom expressions for use in role mapping
* Configure role sets
* Configure other advanced policies such as
- Compression
- Web proxy
- Web rewriting

Client/Server
* Discuss Network Connect connection profile advanced settings, including
- Proxy support
- Multiple DNS settings
* Avoid the need fopr administrator rights on Windows by using the
- Windows stand-alone installers
- Windows installer service
* Use the Telnet/SSH launcher
* Use the W-SAM launcher

Administration
* Discuss the uses of XML import/export
* Configure backend SSL certificate verification
* Discuss applications for delegated administration
* Configure delegated administration
* Create custom log filters
* Export log data
* Discuss client-side logging

Juniper Endpoint Defense Initiative
* Discuss J.E.D.I. components
* Configure Host Checker
- Process checking
- File version checking
- Port checking
- Registry setting checking
* Discuss endpoint solutions
- Using the Host Check Client Interface
- Using the Host Check Server Integration Interface

Instant Virtual Systems
* Explain the purpose and applications of Instant Virtual Systems (IVS)
* Configure IVS, including VLANs

Clustering
* Discuss the various cluster modes and deployment methods
* Discuss the functions of Central Manager
* Configure an active/passive cluster pair
* Upgrade a cluster

Secure Meeting
* Explain the purpose of Secure Meeting
* Set up the IVE to support Secure Meeting
* Use the Secure Meeting feature as an end user to
- Schedule meetings
- Attend meetings
- Use Secure Meeting client features.

Pricing

The course fee is 1 450 ¤ including breakfast, lunch and coffee throughout the course date. Course material will be forfeited separately. The material fee is 250 ¤. VAT will be added on these rates.

Tests about the course

Juniper Networks Certified Internet Specialist (JNCIS-SSL) exam is designed for experienced networking professionals with intermediate knowledge of the Juniper Networks Secure Access products and their deployment.

The JNCIS-SSL is valid for two years. Re-certification is achieved by passing the current version of the JNCIS-SSL exam.

Exam topics include:

Authentication Options, Certificates, Complex Policies, Advanced Client and Server, Administration, Juniper Endpoint Defense Initiative, Instant Virtual Systems, Clustering, and Secure Meeting.

Exam Details
* Exam code: JN0-570
* Written exam administered at Prometric testing centers worldwide (www.prometric.com)
* Exam length: 90 minutes
* Exam type: 75 multiple-choice questions
* Passing grade: 70%
* Scoring and pass/fail status is available immediately
* Prerequisite certification: none


Course registration