ccielab.net
Home
CCIE Enterprise Infrastructure CCIE Enterprise Wireless DevNet Expert Cisco SD-Access
Login

Cisco SD-Access Training

Master Software-Defined Access — design, deploy, and troubleshoot Cisco SD-Access fabrics with hands-on lab practice. Covers underlay, overlay, segmentation, and automation.

Get Started
lan

Course Highlights

account_tree

SD-Access Architecture

Deep dive into fabric components: control plane nodes, border nodes, edge nodes, and fabric wireless controllers.

layers

Fabric Design

Design single-site, multisite, and FIAB fabrics. Understand underlay options including manual, LAN Automation, and PnP.

router

Underlay & Overlay

Master LISP control plane, VXLAN data plane, BGP/OSPF underlay routing, and TrustSec policy plane integration.

security

Macro & Micro Segmentation

Configure Virtual Networks (VNs) for macro-segmentation and Scalable Group Tags (SGTs) with SGACLs for micro-segmentation.

settings_suggest

Automation & Assurance

Use Cisco DNA Center for automated fabric provisioning, host onboarding, and AI-driven network assurance.

computer

Hands-On Lab

Practice on a dedicated SD-Access lab topology with DNA Center, ISE, border nodes, edge nodes, and fabric edge devices.

Technologies Covered

  • check_circle LISP (Locator/ID Separation Protocol)
  • check_circle VXLAN (Virtual Extensible LAN)
  • check_circle Cisco TrustSec & SGTs
  • check_circle SGACLs (Security Group ACLs)
  • check_circle Cisco DNA Center
  • check_circle Cisco ISE (Identity Services Engine)
  • check_circle LAN Automation & PnP
  • check_circle Border Handoff (SDA Transit / IP Transit / SD-WAN)
  • check_circle Fusion Router Integration
  • check_circle Host Onboarding & Auth Templates
  • check_circle Fabric Wireless Integration
  • check_circle Multisite Fabric & FIAB

Training Package

SD-Access Training + 10 Lab Hours

Complete training with hands-on lab practice

$400
  • ✓ Comprehensive SD-Access training curriculum
  • ✓ 10 hours of dedicated lab access
  • ✓ Real Cisco DNA Center & ISE environment
  • ✓ Pre-configured fabric scenarios
  • ✓ 24/7 remote lab availability
  • ✓ Training schedule confirmation via email
LOGIN TO PURCHASE

Lab hours are valid for 6 months from purchase date.

SD-Access Learning Path

menu_book
1. Fundamentals

Learn SD-Access architecture, components, and fabric roles.

design_services
2. Fabric Design

Design underlay and overlay networks for single and multisite fabrics.

build
3. Deployment

Deploy fabrics using DNA Center, configure borders and edge nodes.

verified
4. Advanced Topics

Segmentation, border handoff, automation, and troubleshooting.

Course Syllabus

  • 1.1 SD-Access Overview and Business Drivers
  • 1.2 Fabric Components: Control Plane, Border, Edge, Intermediate Nodes
  • 1.3 Underlay Network Design Principles
  • 1.4 Overlay Network: LISP Control Plane and VXLAN Data Plane
  • 1.5 Cisco DNA Center Architecture and Integration
  • 1.6 Cisco ISE Role in SD-Access (Policy Plane)
  • 2.1 Single-Site Fabric Design
  • 2.2 Multisite Fabric Design and Transit Networks
  • 2.3 Fabric in a Box (FIAB) Design
  • 2.4 LAN Automation for Underlay Provisioning
  • 2.5 Plug and Play (PnP) for Fabric Devices
  • 2.6 Extended Node and Policy Extended Node Design
  • 3.1 Authentication Templates and Policies
  • 3.2 802.1X and MAB in SD-Access
  • 3.3 Critical VLAN and AAA Failover
  • 3.4 Host Onboarding Workflows in DNA Center
  • 3.5 Anycast Gateway Configuration
  • 3.6 L2 Flooding and ARP Handling in the Fabric
  • 4.1 Virtual Networks (VNs) for Macro-Segmentation
  • 4.2 Scalable Group Tags (SGTs) and SGT Classification
  • 4.3 Security Group ACLs (SGACLs) for Micro-Segmentation
  • 4.4 SGT Propagation Methods (Inline Tagging, SXP)
  • 4.5 Cross-VN Communication and Route Leaking
  • 4.6 TrustSec Policy Matrix Design
  • 5.1 Border Node Roles and Placement
  • 5.2 SDA Transit (SD-Access to SD-Access)
  • 5.3 IP-Based Transit (SD-Access to Traditional Networks)
  • 5.4 SD-WAN Transit Integration
  • 5.5 Fusion Router Design and Configuration
  • 5.6 Internet Edge and Guest Access
  • 6.1 DNA Center Automation Workflows
  • 6.2 Network Assurance and Analytics
  • 6.3 Fabric Health Monitoring
  • 6.4 Common SD-Access Troubleshooting Scenarios
  • 6.5 REST APIs for SD-Access Management
  • 6.6 Best Practices and Design Considerations

Frequently Asked Questions

What are the prerequisites for this training?

Basic understanding of routing and switching (CCNP-level) is recommended. Familiarity with Cisco ISE and DNA Center is helpful but not required — we cover the fundamentals.

How do I book my lab sessions?

After purchase, your 10 lab hours will appear in your dashboard under "My Lab Balance". Use the schedule button to book time slots on our full-mesh SD-Access topology.

What equipment do I have access to?

You get access to a dedicated pod with Cisco DNA Center, ISE, and fabric devices (border nodes, edge nodes, control plane). All devices run real Cisco IOS-XE images.

Can I save my lab configurations?

Your configurations persist within your scheduled session. We recommend exporting your configs before the session ends. Lab devices are wiped on session termination.

Is this training aligned with CCIE EI v1.1?

Yes. SD-Access is a core topic in the CCIE Enterprise Infrastructure v1.1 exam blueprint (Section 2.1 — 25% of the exam). This training provides comprehensive coverage.