CCNA Certification
CCNA (Cisco Certified Network Associate) certification is a highly sought-after certification in the IT industry. It validates a candidate’s knowledge and skills in networking fundamentals and enables them to pursue various job roles in networking.
In terms of demand, CCNA certification remains quite popular as networking is an essential component of any IT infrastructure. Almost every organization, regardless of its size or industry, requires skilled professionals who can design, implement, and maintain network systems. Therefore, there is a constant demand for CCNA-certified professionals.
As for salary, the average salary for CCNA-certified professionals can vary depending on factors such as job role, experience, location, and industry. However, according to PayScale, the average salary for a CCNA-certified network engineer in the United States ranges from $50,000 to $100,000 per year. It is worth noting that higher-level certifications and additional experience can lead to higher salaries.
CCNA certification provides a solid foundation for a networking career and can open up job opportunities in various roles such as network administrator, network engineer, system engineer, and network technician. Industries that heavily rely on networks, such as telecommunications, IT services, banking, healthcare, and government, constantly seek CCNA-certified professionals.
Due to its industry recognition, CCNA certification can enhance job prospects and increase earning potential. However, it’s important to continuously update and enhance skills in order to stay competitive in the ever-evolving field of networking.
Possible job roles
Network Administrator
Network Engineer
System Administrator
System Engineer
Pre-requisites
No formal prerequisites but one or more years of experience implementing and administering Cisco solutions is recommended.
Active Status
All Cisco certifications are valid for 3 years.
Curriculum
- 6 Sections
- 111 Lessons
- 8 Weeks
- 1.0 Network Fundamentals42
- 1.01.1 Explain the role and function of network components
- 1.11.1.a Routers
- 1.21.1.b Layer 2 and Layer 3 switches
- 1.31.1.c Next-generation firewalls and IPS
- 1.41.1.d Access points
- 1.51.1.e Controllers (Cisco DNA Center and WLC)
- 1.61.1.f Endpoints
- 1.71.1.g Servers
- 1.81.1.h PoE
- 1.91.2 Describe characteristics of network topology architectures
- 1.101.2.a Two-tier
- 1.111.2.b Three-tier
- 1.121.2.c Spine-leaf
- 1.131.2.d WAN
- 1.141.2.e Small office/home office (SOHO)
- 1.151.2.f On-premise and cloud
- 1.161.3 Compare physical interface and cabling types
- 1.171.3.a Single-mode fiber, multimode fiber, copper
- 1.181.3.b Connections (Ethernet shared media and point-to-point)
- 1.191.4 Identify interface and cable issues (collisions, errors, mismatch duplex, and/or speed)
- 1.201.5 Compare TCP to UDP
- 1.211.6 Configure and verify IPv4 addressing and subnetting
- 1.221.7 Describe the need for private IPv4 addressing
- 1.231.8 Configure and verify IPv6 addressing and prefix
- 1.241.9 Describe IPv6 address types
- 1.251.9.a Unicast (global, unique local, and link local)
- 1.261.9.b Anycast
- 1.271.9.c Multicast
- 1.281.9.d Modified EUI 64
- 1.291.10 Verify IP parameters for Client OS (Windows, Mac OS, Linux)
- 1.301.11 Describe wireless principles
- 1.311.11.a Nonoverlapping Wi-Fi channels
- 1.321.11.b SSID
- 1.331.11.c RF
- 1.341.11.d Encryption
- 1.351.12 Explain virtualization fundamentals (server virtualization, containers, and VRFs)
- 1.361.13 Describe switching concepts
- 1.371.13.a MAC learning and aging
- 1.381.13.b Frame switching
- 1.391.13.c Frame flooding
- 1.401.13.d MAC address table
- 1.41Quiz 120 Minutes14 Questions
- 2.0 Network Access19
- 2.12.1 Configure and verify VLANs (normal range) spanning multiple switches
- 2.22.1.a Access ports (data and voice)
- 2.32.1.b Default VLAN
- 2.42.1.c InterVLAN connectivity
- 2.52.2 Configure and verify interswitch connectivity
- 2.62.2.a Trunk ports
- 2.72.2.b 802.1Q
- 2.82.2.c Native VLAN
- 2.92.3 Configure and verify Layer 2 discovery protocols (Cisco Discovery Protocol and LLDP)
- 2.102.4 Configure and verify (Layer 2/Layer 3) EtherChannel (LACP)
- 2.112.5 Interpret basic operations of Rapid PVST+ Spanning Tree Protocol
- 2.122.5.a Root port, root bridge (primary/secondary), and other port names
- 2.132.5.b Port states (forwarding/blocking)
- 2.142.5.c PortFast
- 2.152.5.d Root guard, loop guard, BPDU filter, and BPDU guard
- 2.162.6 Describe Cisco Wireless Architectures and AP modes
- 2.172.7 Describe physical infrastructure connections of WLAN components (AP, WLC, access/trunk ports, and LAG)
- 2.182.8 Describe network device management access (Telnet, SSH, HTTP, HTTPS, console, TACACS+/RADIUS, and cloud managed)
- 2.192.9 Interpret the wireless LAN GUI configuration for client connectivity, such as WLAN creation, security settings, QoS profiles, and advanced settings
- 3.0 IP Connectivity23
- 3.03.1 Interpret the components of routing table
- 3.13.1.a Routing protocol code
- 3.23.1.b Prefix
- 3.33.1.c Network mask
- 3.43.1.d Next hop
- 3.53.1.e Administrative distance
- 3.63.1.f Metric
- 3.73.1.g Gateway of last resort
- 3.83.2 Determine how a router makes a forwarding decision by default
- 3.93.2.a Longest prefix match
- 3.103.2.b Administrative distance
- 3.113.2.c Routing protocol metric
- 3.123.3 Configure and verify IPv4 and IPv6 static routing
- 3.133.3.a Default route
- 3.143.3.b Network route
- 3.153.3.c Host route
- 3.163.3.d Floating static
- 3.173.4 Configure and verify single area OSPFv2
- 3.183.4.a Neighbor adjacencies
- 3.193.4.b Point-to-point
- 3.203.4.c Broadcast (DR/BDR selection)
- 3.213.4.d Router ID
- 3.223.5 Describe the purpose, functions, and concepts of first hop redundancy protocols
- 4.0 IP Services9
- 4.04.1 Configure and verify inside source NAT using static and pools
- 4.14.2 Configure and verify NTP operating in a client and server mode
- 4.24.3 Explain the role of DHCP and DNS within the network
- 4.34.4 Explain the function of SNMP in network operations
- 4.44.5 Describe the use of syslog features including facilities and levels
- 4.54.6 Configure and verify DHCP client and relay
- 4.64.7 Explain the forwarding per-hop behavior (PHB) for QoS, such as classification, marking, queuing, congestion, policing, and shaping
- 4.74.8 Configure network devices for remote access using SSH
- 4.84.9 Describe the capabilities and functions of TFTP/FTP in the network
- 5.0 Security Fundamentals10
- 5.05.1 Define key security concepts (threats, vulnerabilities, exploits, and mitigation techniques)
- 5.15.2 Describe security program elements (user awareness, training, and physical access control)
- 5.25.3 Configure and verify device access control using local passwords
- 5.35.4 Describe security password policies elements, such as management, complexity, and password alternatives (multifactor authentication, certificates, and biometrics)
- 5.45.5 Describe IPsec remote access and site-to-site VPNs
- 5.55.6 Configure and verify access control lists
- 5.65.7 Configure and verify Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port security)
- 5.75.8 Compare authentication, authorization, and accounting concepts
- 5.85.9 Describe wireless security protocols (WPA, WPA2, and WPA3)
- 5.95.10 Configure and verify WLAN within the GUI using WPA2 PSK
- 6.0 Automation and Programmability9
- 6.06.1 Explain how automation impacts network management
- 6.16.2 Compare traditional networks with controller-based networking
- 6.26.3 Describe controller-based, software defined architecture (overlay, underlay, and fabric)
- 6.36.3.a Separation of control plane and data plane
- 6.46.3.b Northbound and Southbound APIs
- 6.56.4 Explain AI (generative and predictive) and machine learning in network operations
- 6.66.5 Describe characteristics of REST-based APIs (authentication types, CRUD, HTTP verbs, and data encoding)
- 6.76.6 Recognize the capabilities of configuration management mechanisms, such as Ansible and Terraform
- 6.86.7 Recognize components of JSON-encoded data
Requirements
- GCE O/L or GCE A/L