About Exam

Exam number/code: JN0-140
Exam name: Certified Internet Associate (JNCIA-AC) 140
Exam no. of questions: 60 Questions
Duration: 90 minutes
Passing score: 70%
Question types: Multiple choice questions (MCQ's), Multiple choice single answer, Multiple choice multiple answer, Drag and drop & Simulations (optional)

Designed for experienced networking professionals with beginner to intermediate knowledge of the Juniper Networks Unified Access Control products and their deployment. JNCIA-AC exam topics are based on the content of the Configuring Unified Access Control instructor led training course.

The JNCIA-AC certification is valid for two years. Recertification is achieved by passing the current version of the JNCIA-AC exam.

• UAC Overview
• Access Management Framework
• Endpoint Defense

Exam Objectives

UAC Overview

• List the key elements for the UAC solution
• Describe how the elements interact with each other
• Describe user access deployment methods
• List UAC deployment options
• Perform initial configuration with the console and GUI
• Configure the Infranet Enforcer
• Describe methods used to verify UAC connectivity

Access Management Framework

• Discuss Dynamic policy evaluation
• Configure user roles, UI and Session settings
• List the types of restrictions available at the role level
• Configure agent access for a role
• Configure Source IP enforcerment policy
• Configure IPSec enforcement policy
• Describe the relationship between the access method and resource policy
• Describe Host Enforcer policy
• Configure Radius servers settings
• Configure connectivity for AD/NT authentication
• Configure connectivity for LDAP authentication
• Identify the settings configured in a realm
• Identify server combinations that are used for authentication and directory.
• Describe role mapping order and the effects of stop rules
• Configure user name and groups based role mapping
• Configure LDAP attribute role mapping
• Discuss pre and post authentication policies
• Describe Sign-in Policy options and Restrictions
• Describe how to enable and disable a Sign-in policy
• Discuss preconfiguring the Odyssey Access Client
• Configure the Infranet Controller as a Radius Server
• Configure Location Group policies
• Configure Radius client policies
• Configure Radius attribute policies
• Describe how to used the Infranet Enforcer as a Radius Client
• Discuss deployment options used with 802.1x

Endpoint Defense

• Identify the functionality of host checker
• Create Host Checker global policies
• Implement Host Checker at the realm and role level
• Discuss process to upgrade Infranet Controller
• Create a device certificate
• Explain the importance of timing between the UAC components
• Configure certificate validation
• Discribe where CA certificates are required to be installed
• Describe how to archive the IC binary files
• Explain which methods are used to import and export files
• Describe how to push configurations from one IC to another
• Indentify log types available
• Create log filters
• Identify tools for troubleshooting
• Troubleshoot authentication issues