Cisco TrustSec LiveLessons

Video description

5 hours of video instruction

5 hours of video tutorial for understanding, deploying, configuring, and troubleshooting Cisco TrustSec.

Learn the ins and outs of Cisco TrustSec in this practical video tutorial. Hands-on theory and demos will include configuration and troubleshooting information and tips based on the network access to data center end-to-end use case. Follow configuration steps to implement a solution in your own networks. This course is also perfect for certification candidates preparing for the CCNP Security and CCIE Security exams.

This video series covers topics relevant to TrustSec and will also include references to some new features recently made available on devices like the Cisco ASA. This is a key resource for understanding how Cisco TrustSec differs from traditional methods for securing network access and also to understanding the benefits this brings to an organization from both a cost-effectiveness standpoint as well as meeting ease of use, centralized policy management, and compliance goals.

Major topics are as follows:

  1. Understanding and Positioning Cisco TrustSec
  2. Cisco TrustSec Functions: Classification, Propagation, and Enforcement
  3. Implementing TrustSec on Cisco ISE
  4. Implementing TrustSec on Wired and Wireless Devices
  5. Implementing Cisco TrustSec on Cisco Firewalls
  6. Implementing Cisco TrustSec with Cisco VPN Solutions
  7. TrustSec Deployment Considerations

Skill Level

  • Intermediate to advanced

What You Will Learn

  • How to enhance network security through data flow segmentation.
  • How TrustSec enables consistent enforcement of security policy across a wide range of Cisco products.
  • Using Cisco ISE for centralized policy management and distribution in a TrustSec domain.
  • How TrustSec is a data segmentation method that provides adherence to compliance standards such as PCI.
  • The benefits of applying security policy based on Role Based Access Control (RBAC), which is not dependent on IP addresses, VLANs, or other topology related constructs.
  • How TrustSec easily integrates with other network security methods and techniques.
  • Implementing TrustSec to several use cases including campus and WAN.
  • How TrustSec can be implemented in a step-by-step manner that facilities migration strategies.
  • Understand how TrustSec provides uniform support for IPv4 and IPv6 networks.

Who Should Take This Course

  • Primary audience: Those currently involved in the IT industry as security or networking professionals looking to gain knowledge in the area of deploying Cisco TrustSec to replace or enhance traditional methods for securing network access and protecting key resources. This topic is also relevant to those that are charged with meeting organizational and industry compliance requirements.
  • Secondary audience: Prospective candidates for CCNP, CCIE or other Cisco certifications seeking a definitive reference guide for Cisco TrustSec as it pertains to possible exam content.

Course Requirements

  • A good understanding of security basics and familiarity with general networking concepts, infrastructure, and communication.
  • Some exposure to configuring Cisco equipment including routers, Catalyst and Data Center switches, and the Cisco ASA and Cisco ISE.
  • Familiarity with security protection methods.

About LiveLessons Video Training

LiveLessons Video Training series publishes hundreds of hands-on, expert-led video tutorials covering a wide selection of technology topics designed to teach you the skills you need to succeed. This professional and personal technology video series features world-leading author instructors published by your trusted technology brands: Addison-Wesley, Cisco Press, IBM Press, Pearson IT Certification, Prentice Hall, Sams, and Que. Topics include: IT Certification, Programming, Web Development, Mobile Development, Home and Office Technologies, Business and Management, and more. View all LiveLessons on InformIT at:

Table of contents

  1. Introduction
    1. Cisco TrustSec LiveLessons: Introduction
  2. Lesson 1: Understanding and Positioning Cisco TrustSec
    1. Learning Objectives
    2. 1.1 TrustSec Problem Space
    3. 1.2 TrustSec Versus Legacy Network Access
    4. 1.3 TrustSec Domains
    5. 1.4 TrustSec Functions
    6. Lesson 1 Summary
  3. Lesson 2: Understanding Cisco TrustSec Functions--Classification
    1. Learning Objectives
    2. 2.1 Classification Overview
    3. 2.2 Dynamic Classification
    4. 2.3 Static Classification Types and Methods
    5. 2.4 Static Classification Implementation
    6. Summary
  4. Lesson 3: Understanding Cisco TrustSec Functions--Propagation
    1. Learning Objectives
    2. 3.1 Inline Propagation
    3. 3.2 SXP Propagation
    4. 3.3 Propagation Using SGT Caching
    5. Summary
  5. Lesson 4: Understanding Cisco TrustSec Functions--Enforcement
    1. Learning Objectives
    2. 4.1 Enforcement Methods
    3. 4.2 Enforcement with Security Group ACLs
    4. 4.3 IOS Switch Configuration for Enforcement
    5. 4.4 Enforcement on Firewalls
    6. 4.5 Enforcement Verification
    7. Summary
  6. Lesson 5: Implementing TrustSec on Cisco ISE
    1. Learning Objectives
    2. 5.1 TrustSec Domains
    3. 5.2 Security Group Tags
    4. 5.3 SGACLS and Egress Policies
    5. Summary
  7. Lesson 6: Implementing TrustSec on Cisco Wired and Wireless Devices
    1. Learning Objectives
    2. 6.1 Design Considerations
    3. 6.2 Wired Classification
    4. 6.3 Wired Propagation and Enforcement
    5. 6.4 Extending TrustSec
    6. 6.5 Wireless Networks
    7. 6.6 Verifying Deployment
    8. Summary
  8. Lesson 7: Implementing Cisco TrustSec on Cisco Firewalls
    1. Learning Objectives
    2. 7.1 Design Considerations
    3. 7.2 Cisco Adaptive Security Appliance
    4. 7.3 Cisco Zone-Based Firewall
    5. Summary
  9. Lesson 8: TrustSec with Cisco VPN Solutions
    1. Learning Objectives
    2. 8.1 IKEv2 and IPsec VPNs
    3. 8.2 GETVPN
    4. 8.3 AnyConnect VPNs
    5. Summary
  10. Lesson 9: TrustSec Deployment Considerations
    1. Learning Objectives
    2. 9.1 Platform Guidelines
    3. 9.2 SXP Design Guidelines
    4. 9.3 Incorporating Non-TrustSec Devices
    5. 9.4 User-to-Data Center Use Case
    6. Summary
  11. Summary
    1. Cisco TrustSec LiveLessons: Summary

Product information

  • Title: Cisco TrustSec LiveLessons
  • Author(s):
  • Release date: May 2015
  • Publisher(s): Cisco Press
  • ISBN: 0134034198