Network Security Fundamentals (ANSF) (NH)

The Aruba Network Security Fundamentals course covers foundational security concepts and prepares candidates to take the exam to achieve Aruba Certified Networking Security Associate (ACNSA) certification. The course describes common security threats and vulnerabilities and provides an overview of important security technologies. It teaches how to create a trusted network infrastructure with Aruba mobility solutions and switches. In addition to discussing device hardening, the course discusses implementing security at the edge with AAA, basic roles and firewall policies, dynamic segmentation, and endpoint classification. The course will further explain basic threat detection technologies and how to collect logs and alarms and use them to initiate an investigation.

Agenda

1 - Security Threats and Aruba Security Strategy

• Threats Overview
• Attack Stages
• Aruba Security Strategy

2 - Security Technologies

• Regulatory Compliance
• Secure Communications: Symmetric Encryption and Hash-Based Authentication
• Secure Communications: Asymmetric Encryption and Digital Certificates
• Secure Communications: TLS
• Authentication, Authorization, Accounting (AAA)

3 - Harden Aruba Switches

• Hardening Overview
• Set Up Out-of-Band Management
• Authenticate Managers Securely
• Ensure Physical Security and Other Hardening Actions

4 - Harden ArubaOS Wireless Devices

• Lock Down Administrative Access
• Lock Down Services
• Use CPSec

5 - Enhance LAN Security

• Spanning Tree Protections
• DHCP Snooping and ARP Protection
• Secure Routing Technologies

6 - Network Authentication Technologies

• Network Authentication
• WLAN Security—Encryption + Authentication

7 - Enforce Edge Security with an Aruba Infrastructure

• Enforce WPA3-Enterprise
• Enforce 802.1X on the Wired Network

8 - Enforce Role-Based Authentication and Access Control

• Aruba Role-Based Firewall Policies
• Dynamic Segmentation

9 - Identify and Classify Endpoints

• Endpoint Classification Introduction
• DHCP Fingerprinting with ArubaOS Mobility Devices
• Aruba ClearPass Policy Manager Device Profiler
• ClearPass Device Insight

10 - Branch Security

• Introduction to Aruba SD-Branch Solutions

11 - Implement Threat Detection and Forensics

• Understand Forensics
• Analyze ArubaOS WIP Events

12 - Troubleshoot and Monitor

• Introduction to Troubleshooting Authentication Issues
• Using ClearPass Tools to Troubleshoot Some Common Issues
• Packet Captures
• Monitoring