In preparation of your CCNA Security 640-553 exam, we want to make sure we cover the topics that you will encounter on your CCNA exam. So to assist you, below we will discuss the CCNA Security concept, Secure Cisco routers using the SDM Security Audit feature. As you progress through your CCNA exam studies, I am sure with repetition you will find that all the topics become much easier. So even though this may be a difficult concept initially, keep at it as no one said getting your Cisco certification would be easy!

Once Cisco SDM installs, the Cisco SDM home page appears. Cisco SDM is an intuitive, Web-based device-management tool for Cisco IOS^® Software-based routers. The Cisco SDM simplifies router and security configuration through smart wizards, which help customers and Cisco partners quickly and easily deploy, configure, and monitor a Cisco router without requiring knowledge of the command-line interface (CLI). The Cisco SDM is supported on a wide range of Cisco routers and Cisco IOS Software releases. Refer to Table 3 for specific model numbers supported by the Cisco SDM.

The Security Audit Wizard can be reached by choosing Configure->Security Audit from the Cisco SDM homepage.

Security Audit Wizard. Once vulnerabilities are discovered, the wizard gives you a choice as to which vulnerabilities you want to secure. Press the Perform security audit button if you want this.

Cisco SDM Security Audit Wizard

Cisco SDM Security Audit Wizard to determine whether they are present and give us the option to remedy them.

To perform a security audit, follow these steps from the Cisco SDM homepage:

1. Choose Configure->Security Audit.

2. Click the Perform Security Audit button. The Welcome Page of the Security Audit Wizard appears.

3. Click Next to bring up the Security Audit Interface Configuration page

4. Before the audit proceeds, the Security Audit Wizard needs to know which interfaces connect to the outside and which interfaces connect to the inside. Beside each interface listed, check the Inside or Outside check box. (This makes sense because some of the vulnerabilities listed previously depend on whether the interface is connected to a hostile network or not.)

5. Click Next.

The Security Audit report window appears, which runs an audit, finishing with an itemized report detailing the number, item name, and status of the potential vulnerabilities. A check mark will appear if the item has passed. An X will appear if the item has not passed.

6. If you want to save the report to a file, click Save Report.

7. To continue with fixing the identified security issues, click Close.

8. The Security Audit Wizard window appears, If you want to fix the security problems identified, you can either check the Fix it check box in the Action column beside each identified security problem you want to fix, or you can click the Fix All button, which checks all the boxes for you.

9. Click Next.

10. Depending on which security vulnerabilities you have chosen to fix, you might be asked to enter more information on the subsequent screens. Enter the required information and click Next as indicated until you arrive at the Summary screen.

11. Click Finish to deliver the changes to the router.

Hopefully you found this Cisco CCNA Security 640-533 article helpful as you progress toward your CCNA certification. You will find that the hands-on experience you gain with our CCNA certification kits is the best way to really solidify the various CCNA concepts in your brain. So please check out our various kits and other free CCNA certification material.