Credentials theft is a big issue for the enterprise and sadly many enterprises don't have dual factor authentication for their users when they VPN in. This opens a big door for hackers that would easily play man in the middle on users, get their username and password. Often times, this username and password is the same one they use to VPN in.
Hackers get into the network using VPN with the stolen credentials and have free reign on the network. This is a big risk for organization. This class shows you have to configure Cisco clientless VPN using the privacy idea solution to authenticate the users using Multi Factor Authentication. The beauty of this solution is it doesn't cost a dime..
Imagine going to your boss and fixing their Dual Factor Auth for free - You will be a hero in everyones' eyes. Hope you enjoy.
This lecture shows the environment setup using Unetlab to do a Proof Of Concept for MFA using PrivacyIdea.
This lecture shows the steps needed to setup PrivacyIdea for the user to enroll and authenticate using Tokens
This lecture shows the students how to provide group mapping from LDAP and send it in the Radius authentication response for user to be placed in the correct group.
Classes offered by instructor with industry proven experience. He started his career as a help desk technician and progressed to desktop support then systems administration. With interest into networking, he obtained his CCNA and CCNP - 15 years ago. After obtaining his certification he moved to a technical manager position managing both systems and network infrastructure. He shifted his focus to security as his specialization and obtained the CISSP certification. The CISSP is the industry leading information security certification.
Technical hands-on passion led him to move back to the ranks and become an engineer honing his skills in the network security field. He mastered the Cisco ASA firewalls and Cisco security components and obtained the CCIE security, CCNP security and other security specialization certification.
For the past several years he has been working for a value added re-seller supporting Cisco, PaloAlto, and Fortinet security solutions. He became PaloAlto certified and sourcefire SSFIPS and SSFAMP certified.
"It is difficult and expensive to get hands on material covering the latest products like Sourcefire, PaloAlto, and Fortinet. I am making those classes to give students the education they need at a reasonable cost - with practical experience backing it."