This list is intended to provide a general view of the skill set required to successfully complete the specified certification exam. Topics listed are subject to change.
- UAC Overview
- Initial Configuration
- Access Management Framework
- Overlay Enforcement
- Layer 2 Enforcement
- Endpoint Security
- Authentication Options
- System Management and Troubleshooting
- Integration
UAC Overview
- List the key elements of the UAC solution
- Describe the functionality of UAC solution elements
- Describe the problems addressed by the UAC solution
- List UAC deployment options
Initial Configuration
- Perform initial configuration with the console and GUI
- Configure initial connectivity between the IC and the Overlay Enforcer
- Verify UAC connectivity
Access Management Framework
- List the access management framework elements
- Explain how the access management framework elements interact
- Configure user roles, UI and Session settings
- List the types of restrictions available at the role level
- Identify and configure agent access options
- Identify the settings configured in a realm
- Describe role mapping order and the effects of stop rules
- Describe pre and post authentication policies
- Identify the elements associated with an authentication realm
- Describe sign-in policies and options
- Configure multiple sign-in policies in the desired order
Overlay Enforcement
- Identify policy options and associate them with the correct device type
- Describe the policy enforcement process
- Distinguish between resource control and management policies
- Describe Host Enforcer functionality
- Configure resource access policies
- Configure IPsec routing policies
- Configure policies on the overlay enforcer
Layer 2 Enforcement
- Describe Layer 2 enforcement protocols
- Distinguish between outer and inner authentication
- Identify RADIUS elements
- Configure network access policies
- Configure the Infranet Controller as a RADIUS server
- Identify elements that must be pre-configured on an 802.1x access device
- Describe/configure location groups
Endpoint Security
- Identify the functionality of host checker
- Create Host Checker policies
- Implement Host Checker at the realm and role level
- Describe and manage integrated scan components (ESAP updates)
Authentication Options
- Configure Radius servers settings
- Configure connectivity for AD/NT authentication
- Configure connectivity for LDAP authentication
- Role Mapping with External Servers
- Identify server combinations that are used for authentication and directory.
- Configure username- and groups-based role mapping
- Configure LDAP attribute-role mapping
System Management and Troubleshooting
- Discuss process to upgrade Infranet Controller
- Identify configuration backup options
- Logging and Monitoring
- Identify log types available
- Create log filters
- Troubleshooting
- Identify tools for troubleshooting
- Troubleshoot authentication issues
Integration
- Describe IC HA functionality and options
- Discuss overlay enforcer integration issues
- Discuss interoperability with third-party endpoint clients
- Discuss integration with IDP
