640-553 IINS

640-553 IINS

Implementing Cisco IOS Network Security

Exam Number:	640-553
Associated Certifications:	CCNA Security
Duration:	90 minutes (55-65 questions)
Available Languages:	English, Japanese, Chinese, Russian, Portuguese, Korean, French, Spanish
Click Here to Register:	Pearson VUE
Exam Policies:	Read current policies and requirements
Exam Tutorial:	Review type of exam questions
Register for Course:	IINS course and other offerings

Exam Description

The 640-553 Implementing Cisco IOS Network Security (IINS) exam is associated with the CCNA Security certification. This exam tests a candidate's knowledge of securing Cisco routers and switches and their associated networks. It leads to validated skills for installation, troubleshooting and monitoring of network devices to maintain integrity, confidentiality and availability of data and devices and develops competency in the technologies that Cisco uses in its security infrastructure.

Candidates can prepare for this exam by taking the Implementing Cisco IOS Network Security (IINS) course.

Exam Topics

The following topics are general guidelines for the content likely to be included on the Implementing Cisco IOS Network Security exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

640-553 IINS Exam Topics

Recommended Training

The following course is the recommended training for this exam:

• Implementing Cisco IOS Network Security (IINS) v1.0

The course listed is offered by Cisco Learning Partners, the only authorized source for Cisco IT training delivered exclusively by Certified Cisco Instructors. Check the Global Learning Partner Locator for a Cisco Learning Partner near you.

Additional Resources

A variety of Cisco Press titles may be available for this exam. These titles can be purchased through the Cisco Marketplace Bookstore,or directly from Cisco Press.

640-721 CCNA-Wireless

640-721 IUWNE Exam Topics (Blueprint)

Exam Description

The 640-721 Implementing Cisco Unified Wireless Network Essential (IUWNE) exam is the exam associated with the CCNA Wireless certification. This exam tests a candidate's knowledge of installing, configuring, operating, and troubleshooting small to medium-size WLANs. Candidates can prepare for this exam by taking the Implementing Cisco Unified Wireless Network Essential (IUWNE) course.

Exam Topics

The following information provides general guidelines for the content likely to be included on the Implementing Cisco Unified Wireless Networking Essentials (IUWNE) exam. However, other related topics may also appear on any specific delivery of the exam.

Describe WLAN fundamentals

• Describe basics of spread spectrum technology (modulation, DSS, OFDM, MIMO, Channels reuse and overlap, Rate-shifting, CSMA/CA)
• Describe the impact of various wireless technologies (Bluetooth, WiMAX, ZigBee, cordless phone)
• Describe wireless regulatory bodies, standards and certifications (FCC, ETSI, 802.11a/b/g/n, WiFi Alliance)
• Describe WLAN RF principles (antenna types, RF gain/loss, EIRP, refraction, reflection, ETC)
• Describe networking technologies used in wireless (SSID --> WLAN_ID --> Interface -- >VLAN, 802.1q trunking)
• Describe wireless topologies (IBSS, BSS, ESS, Point-to-Point, Point-to-Multipoint, basic Mesh, bridging)
• Describe 802.11 authentication and encryption methods (Open, Shared, 802.1X, EAP, TKIP, AES)
• Describe frame types (associated/unassociated, management, control, data)

Install a basic Cisco wireless LAN

• Describe the basics of the Cisco Unified Wireless Network architecture (Split MAC, LWAPP, stand-alone AP versus controller-based AP, specific hardware examples)
• Describe the Cisco Mobility Express Wireless architecture (Smart Business Communication System -- SBCS, Cisco Config Agent -- CCA, 526WLC, 521AP - stand-alone and controller-based)
• Describe the modes of controller-based AP deployment (local, monitor, HREAP, sniffer, rogue detector, bridge)
• Describe controller-based AP discovery and association (OTAP, DHCP, DNS, Master-Controller, Primary-Secondary-Tertiary, n+1 redundancy)
• Describe roaming (Layer 2 and Layer 3, intra-controller and inter-controller, mobility groups)
• Configure a WLAN controller and access points WLC: ports, interfaces, WLANs, NTP, CLI and Web UI, CLI wizard, LAG AP: Channel, Power
• Configure the basics of a stand-alone access point (no lab) (Express setup, basic security)
• Describe RRM

Install Wireless Clients

• Describe client OS WLAN configuration (Windows, Apple, and Linux.)
• Install Cisco ADU
• Describe basic CSSC
• Describe CCX versions 1 through 5

Implement basic WLAN Security

• Describe the general framework of wireless security and security components (authentication, encryption, MFP, IPS)
• Describe and configure authentication methods (Guest, PSK, 802.1X, WPA/WPA2 with EAP- TLS, EAP-FAST, PEAP, LEAP)
• Describe and configure encryption methods (WPA/WPA2 with TKIP, AES)
• Describe and configure the different sources of authentication (PSK, EAP-local or -external, Radius)

Operate basic WCS

• Describe key features of WCS and Navigator (versions and licensing)
• Install/upgrade WCS and configure basic administration parameters (ports, O/S version, strong passwords, service vs. application)
• Configure controllers and APs (using the Configuration tab not templates)
• Configure and use maps in the WCS (add campus, building, floor, maps, position AP)
• Use the WCS monitor tab and alarm summary to verify the WLAN operations

Conduct basic WLAN Maintenance and Troubleshooting

• Identify basic WLAN troubleshooting methods for controllers, access points, and clients methodologies
• Describe basic RF deployment considerations related to site survey design of data or VoWLAN applications, Common RF interference sources such as devices, building material, AP location Basic RF site survey design related to channel reuse, signal strength, cell overlap
• Describe the use of WLC show, debug and logging
• Describe the use of the WCS client troubleshooting tool
• Transfer WLC config and O/S using maintenance tools and commands
• Describe and differentiate WLC WLAN management access methods (console port, CLI, telnet, ssh, http, https, wired versus wireless management)