What certification is this Cisco administration course associated with?

This course covers the skills and knowledge needed to deploy and use the Cisco Identity Services Engine (ISE), which is what you need to know to pass the CCNP Security concentration exam 300-715 SISE. CCNP Security has two exams – the first is the core exam, related to core security technologies, including security for networks, cloud, and content. Then you choose one of seven concentration exams to specialize your skills and experience.

What is an Identity Services Engine?

Cisco's Identity Services Engine is a security policy management platform focused on controlling network access. The ISE is a total identity and access solution, protecting networks by authenticating users, devices and connections. The Identity Services Engine manages attributes like user identity, device type, and location. Implementing and configuring the ISE properly ensures secure network access, mitigates threats, and streamlines compliance while improving network visibility and contributing to overall efficiency.

What is the Cisco DNA Center and what does it have to do with the Identity Services Engine?

Cisco's DNA (Digital Network Architecture) Center is a centralized network management platform. The DNA Center automates network operations and maintenance while generating analytics for human review and provides oversight and assurance capabilities. Cisco DNA Center's main task is network management and orchestration, but it can integrate with Cisco ISE to enhance security by incorporating ISE's identity-based access controls and policy enforcement into the network infrastructure under management.

What are the benefits of Cisco DNA & ISE integration?

Cisco's Identity Services Engine can operate independently of their Digital Network Architecture manager, but the greatest benefits to network efficiency and security oversight come from integrating the two management tools. For example, with ISE properly configured, it's possible to seamlessly enforce identity-based access policies. On the other side, the generation of operational analytics by the DNA can be automated when it's incorporated with ISE's authentication and authorization capabilities.

Who should take this course on implementing and configuring Cisco ISE?

Since it's designed to prepare you for one of the CCNP Security's seven concentration exams, anyone who hopes to earn their CCNP Security in the near future should plan on taking this course. In addition to that, security technicians and security engineers who are responsible for network access control solutions and identity-based security policies should take this course. Learning to implement and automate advanced Cisco security settings will drastically improve your job.

Implementing and Configuring Cisco Identity Services Engine v1.1 (300-715) Online Training

This CCNP Security training teaches you how to deploy and configure Cisco Identity Services Engine (ISE) to secure wired, wireless and VPN access. You’ll integrate ISE with Active Directory, LDAP, PKI and multifactor stores, enforce 802.1X policies, implement Mac Authentication Bypass and Cisco TrustSec, and build authentication and authorization profiles. You’ll also configure web and guest portals, enable BYOD onboarding and certificates, and manage endpoint posture and compliance. Prepare for the 300‑715 exam with hands-on virtual labs and gain practical skills to secure modern networks.

Kelvin TranNetworking & Network Security

Bob SalmansCybersecurity & Governance, Risk, and Compliance (GRC)

Updated January 2026

Request a Demo Preview a sample lesson

94Skills

576Videos

45Virtual Labs

98h 48mTotal

576 videos45 labs98h 48m

Who This Course Is For

This Cisco ISE course is designed for network engineers, security professionals, and IT administrators preparing for the CCNP Security (300-715) exam. It’s a great fit if you want hands-on skills in deploying Cisco ISE, securing wired and wireless access, and managing identity-based network policies.

Course Curriculum

Premium skill.Explain Network Access Control (NAC)1h 4m
Premium skill.Explore the Architecture of Cisco ISE58m
Premium skill.Explore Cisco ISE Deployment Options53m
Premium skill.Build a Cisco ISE Environment: Preparation1h 8m
Premium skill.Build a Cisco ISE Environment: Deploying Services1h 36m
Premium skill.Build a Cisco ISE Environment: DHCP and Endpoints56m
Premium skill.Build a Cisco ISE Environment: Network Config1h 7m
Premium skill.Build a Cisco ISE Environment: Deploying ISE1h 21m
Premium skill.Explore Identities in Cisco ISE1h 6m
Premium skill.Integrate AD and Cisco ISE with LDAP1h 1m
Premium skill.Utilize the Native AD Integration in Cisco ISE56m
Premium skill.Describe Policy Structure in Cisco ISE1h 2m
Premium skill.Explore the Policy Workflow in Cisco ISE1h 8m
Premium skill.Describe AAA Protocols1h 1m
Premium skill.Configure Network Devices in ISE53m
Premium skill.Describe Port-Based Network Access Control (PNAC)1h 14m
Premium skill.Choose an EAP Method1h 2m
Premium skill.Prepare for an 802.1X Deployment1h 9m
Premium skill.Configure ISE for Wired 802.1X1h 9m
Premium skill.Configure IOS Switches for Wired 802.1X52m
Premium skill.Implement Wireless 802.1X on Cisco WLCs1h 5m
Premium skill.Configure the Native Windows 802.1X Supplicant1h 4m
Premium skill.Enhance the Windows Native 802.1X Supplicant58m
Premium skill.Configure Mobile 802.1X Supplicants48m
Premium skill.Configure Additional Desktop 802.1X Supplicants47m
Premium skill.Configure 802.1X on Cisco IP Phones45m
Premium skill.Use Externally-Signed LSCs for Cisco Phone 802.1X47m
Premium skill.Manage Endpoint Identities48m
Premium skill.Create Internal Endpoint Identities1h 4m
Premium skill.Create Endpoint Identities in AD/LDAP1h 23m
Premium skill.Implement Wired and Wireless MAB1h 26m
Get Started with IBNS 2.0 for Wired 802.1XFree1h 3m
Premium skill.Examine C3PL Configuration Options1h 6m
Premium skill.Customize IBNS 2.0/C3PL Policies1h 17m
Premium skill.Prepare to Deploy Local WebAuth (LWA)58m
Premium skill.Configure Wired Local WebAuth (LWA)55m
Premium skill.Configure Wireless Local WebAuth (LWA)1h 6m
Premium skill.Describe Central WebAuth (CWA)45m
Premium skill.Configure Central WebAuth (CWA) on ISE1h 1m
Premium skill.Configure Central WebAuth (CWA) on NADs1h 12m
Premium skill.Configure 3rd Party Redirection for CWA in ISE1h 22m
Premium skill.Design Guest Access with ISE1h 2m
Premium skill.Get Started with Guest Identities in ISE1h 11m
Premium skill.Customize Guest Types in ISE1h 1m
Premium skill.Configure Sponsor Groups and Other Settings1h 6m
Premium skill.Customize Basic Portal Settings in ISE55m
Premium skill.Customize Portal Registration Settings in ISE50m
Premium skill.Configure Advanced Portal Settings in ISE1h 14m
Premium skill.Configure Guest Portal Appearance1h 36m
Premium skill.Configure Sponsor Portal Appearance1h 9m
Premium skill.Configure Guest Portal Certificates54m
Premium skill.Configure Guest Portal Notifications1h 10m
Premium skill.Configure Federated Authentication for ISE Portals1h 21m
Premium skill.Control VPN Access with ISE1h 5m
Premium skill.Integrate ISE with Duo MFA52m
Premium skill.Design Device Administration AAA with ISE1h 10m
Premium skill.Configure Basic Device Admin Policies in ISE1h 7m
Premium skill.Configure Privilege Authorization in ISE1h 3m
Premium skill.Explore Additional Authorization Types in ISE48m
Premium skill.Build TACACS+ Command Set Rules in ISE1h 7m
Premium skill.Configure Advanced TACACS+ Features1h 17m
Premium skill.Configure IOS Privilege Authorization with ISE1h 23m
Premium skill.Configure IOS Command Authorization with ISE1h 2m
Premium skill.Configure WLC Authentication with ISE1h 8m
Premium skill.Describe Cisco TrustSec (CTS)1h 3m
Premium skill.Explore the Phases of CTS1h 14m
Premium skill.Explore Traditional NAD Onboarding in CTS1h 29m
Premium skill.Explore Additional NAD Configurations in CTS57m
Premium skill.Configure ISE for CTS NAD Onboarding1h 26m
Premium skill.Onboard IOS-XE NADs onto a CTS Domain55m
Premium skill.Onboard Other NAD Types onto a CTS Domain1h 10m
Premium skill.Create TrustSec Security Groups in ISE58m
Premium skill.Create TrustSec SGACL and SGFW Policies1h 29m
Premium skill.Create TrustSec SGT Mappings in ISE/IOS-XE52m
Premium skill.Configure Inline Tagging on TrustSec NADs50m
Premium skill.Configure TrustSec SXP in ISE1h 8m
Premium skill.Configure TrustSec SXP in the IOS-XE CLI53m
Premium skill.Configure Advanced TrustSec SXP Features1h 7m
Premium skill.Tune Advanced TrustSec Settings in ISE1h 27m
Premium skill.Verify TrustSec Deployments in ISE1h 17m
Premium skill.Configuring Profiling & Anomalous Behavior46m
Premium skill.RADIUS Profiling Probe & ACIDex47m
Premium skill.DHCP/SPAN & SNMPTRAP Probes53m
Premium skill.SNMPQUERY, NMAP & DNS Probes51m
Premium skill.NetFlow, HTTP, AD and PxGride Probes44m
Premium skill.Intro To ISE BYOD46m
Premium skill.Configure BYOD For Wired Endpoint Pt.144m
Premium skill.Configure BYOD For Wired Endpoint Pt.254m
Premium skill.Configure Single SSID Wireless BYOD56m
Premium skill.Configure Dual SSID Wireless BYOD50m
Premium skill.Intro To Endpoint Compliance & Posturing52m
Premium skill.Configuring Wired Posture Assessment Pt.155m
Premium skill.Configuring Wired Posture Assessment Pt.252m
Premium skill.Configuring Wireless & VPN Posture Assessment57m

Part of the Network Modernization training initiative

Platform Features

For IT leaders

What IT leaders need to know before assigning this course

Organizations standardizing Cisco ISE need consistent access control across users, endpoints, guests, wired networks, wireless networks, and network devices. This intermediate, professional-level course fits network security engineers with roughly 3–5 years of enterprise security experience, plus experienced Team Leads who need a shared implementation baseline for Cisco ISE and the 300-715 SISE exam path.

The course is a substantial assignment: listed modules run about 45–96 minutes each and cover 90+ skills, so IT Directors should plan it as a multi-week enablement track rather than a one-time onboarding session. It is most relevant for teams responsible for NAC, 802.1X, AAA, AD/LDAP integration, guest access, endpoint identity, and Cisco device configuration.

For change management, assign modules in phases: ISE architecture and deployment first, then identities and policy workflow, then wired/wireless 802.1X, MAB, WebAuth, and endpoint use cases. CBT Nuggets Playlists can sequence those phases, and Team Reporting helps Training Managers track completion across the team.

Team Impact

How this training helps your team succeed

IT teams complete this training to reduce access-control inconsistency and build a repeatable Cisco ISE implementation approach across enterprise networks. The course maps to practical deployment work rather than only theory.

Standardize NAC design: Teams learn Cisco ISE architecture, deployment options, service deployment, endpoint profiling considerations, and network configuration before production rollout.
Integrate identity sources: Engineers work through internal identities, LDAP identity stores, and native Active Directory join integration to support policy decisions.
Deploy wired and wireless access control: Teams cover 802.1X on IOS switches, Cisco WLCs, Windows, mobile devices, desktop supplicants, Cisco IP phones, and MAB scenarios.
Improve guest and web access workflows: Training includes Local WebAuth and Central WebAuth concepts and configuration across ISE and network access devices.

After completion

Knowledge & ability your team will gain

Knowledge

Network Access Control concepts and how Cisco ISE supports identity-based access.
Cisco ISE architecture, deployment options, and service deployment considerations.
Identity source options, including internal identities, AD/LDAP, and native Active Directory integration.
Cisco ISE policy structure, policy workflow, and AAA protocol fundamentals.
802.1X, EAP method selection, MAB, IBNS 2.0/C3PL, Local WebAuth, and Central WebAuth concepts.

Ability

Prepare and build a Cisco ISE environment with supporting DHCP, endpoint, and network configuration.
Configure network devices in ISE for policy enforcement.
Implement wired 802.1X on Cisco IOS switches and wireless 802.1X on Cisco WLCs.
Configure native Windows, mobile, desktop, and Cisco IP phone supplicants for 802.1X use cases.
Create and manage endpoint identities in ISE, AD, and LDAP.
Configure wired and wireless MAB plus Local WebAuth and Central WebAuth workflows.