Cisco Content Security Training

CI-SWSA

Securing the Web with Cisco Web Security Appliance

Preis:
Austria:
EUR 1,490.00 exkl. USt.

Dauer: 2 Tage

Zielgruppe

  • Cisco Channel Partner welche Cisco WSA optimieren, warten und korrigieren wollen
  • Channel Partner Außendiensttechniker welche an dem Web Security for Field Specialist Examen teilnehmen wollen

  • Info: Dieses Exam ist verpflichtend für jene, welche den Partner Status erreichen wollen.

Who Should Attend

  • Security Architects and System Designers
  • Network Administrators and Operations Engineers
  • Network or Security Managers responsible for web security

Who Should Attend

The primary target audience for this course is as follows:

  • Cisco channel partners seeking to maintain, optimize, and troubleshoot a Cisco WSA
  • Channel partner field engineers seeking to be trained and certified on the Web Security for Field Specialist (#650-568 WSFE) exam

  • Note: This exam is mandated in order to achieve the Specialist certification, which is a requirement for partners seeking the Partner status.
Termine
Datum Land Ort Sprache Anmelden
25-11-2019 - 27-11-2019 ES Tres Cantos, Madrid Español Anmelden
10-12-2019 - 11-12-2019 ES Tres Cantos, Madrid Español Anmelden
International dates
 
Middle East
 
Datum Land Ort Sprache Anmelden
13-11-2019 - 17-11-2019 AE Dubai English Anmelden
Voraussetzungen
  • Kenntnisse der TCP/IP Services, inklusive der Domain Name Server (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP und HTTPS
  • Erfahrung mit IP routing
Kursinhalt

Securing the Web with Cisco Web Security Appliance (SWSA) v2.0 ist ein zweitägiger, Trainer-geführter Kurs. Ziel des Kurses ist es Netzwerk Fachkräfte dahingehend zu trainieren Cisco Web Security Appliance (Cisco WSA) zu konfigurieren, administrieren, überwachen und grundlegende Fehlerbehebung durchzuführen, unabhängig von der Größe des Unternehmens. Das Gelernte wird durch praktisch ausgerichtete Beispiele und Laborübungen vertieft.

Kursziele
  • Überprüfung des Systems
  • Installation und Verifizierung des Cisco WSA
  • Einsatz von Proxy Servern
  • Nutzung der Authentifizierung
  • Richtlinien Konfigurierung
  • akzeptable Nutzungsrichtlinien durchsetzen
  • Schutz vor Malware
  • Konfigurierung von Datenschutz Richtlinien
  • Anwendung von Cisco Cloud Web Security
  • Anwendung von Cisco AnyConnect Secure Mobility Client
  • Administrierung und Fehlerbehebung
Prerequisites

Attendees should possess the following background knowledge and skills:

  • Experience configuring IronPort email security appliances through participation in the IronPort Configuration Workshop or equivalent working experience.
  • Solid knowledge of TCP/IP fundamentals, including IP addressing and sub-netting, static IP routing, DNS, and a very basic knowledge of the TCP protocol.
  • Experience with Internet-based messaging, including SMTP, Internet message formats, and MIME message formatting and body parts.
  • Strong familiarity both with AsyncOS command line interface (CLI) and graphical user interface (GUI) configuration of devices.
Course Objectives

This one-day training course provides advanced information for successful configuration and operation of an IronPort email security appliance. By exploring in depth specific product features, mail administrators will receive in-depth training to meet specific needs with emphasis on:

  • Integrating with a directory server via LDAP
  • Debugging of LDAP integration issues
  • Using message filters to redirect and modify messages
  • Safe deployment and debugging of message filters
  • Domain Key Identified Mail
  • Sender Profile Framework verification

Extensive lab exercises provide attendees with critical hands-on experience working with advanced features of the IronPort email security appliance. Attendees gain working knowledge of how to use the IronPort appliance to successfully manage and troubleshoot email traffic entering and leaving the enterprise network.
Attendees will also learn about advanced Internet email concepts and receive an overview of other product features that can be used for more customized configurations.

Course Content

This full day class is presented composed of the following lectures and hands-on lab activities:

  • Module 1: LDAP

This module focuses directly on common LDAP configurations and issues. A brief overview of the Lightweight Directory Access Protocol is provided to give those new to LDAP some familiarity, but the bulk of the module assumes a basic understanding of LDAP terms and concepts. Active Directory is emphasized in a number of case studies to highlight the various installation choices. These include addressing the use of the ESA against multiple directories in a heterogeneous enterprise.

  • Module 2: Message Filters (Advanced Policy)

This module focuses on advanced filter options with specific emphasis on creating, troubleshooting, simplification/streamlining and regular expressions. Helpful tips and tricks for both Message and Content filters are covered. Extensive hands-on exercises are designed to give the students practice working with the Command Line Interface (CLI), as well as practical experience troubleshooting and examining logs.

  • Module 3: Email Authentication

This module covers methods of authenticating email on the IronPort Appliance. A brief introduction of DKIM is provided and how it fits into the security aspects of mail, both for DKIM signing and Verification. Helpful examples are provided that shows how to install a DKIM certificate on an IronPort and create a signing profile. Then we introduce Sender Profile Framework and the various fields: HELO, FROM and PRA that are checked according to RFC 4407.  Also, the meanings of the stamped SPF results are reviewed and we discuss the creation of filters to react to these results.  These filters are designed to enforce SPF policies.

Prerequisites

The knowledge and skills that a learner must have before attending this course are as follows:

  • Knowledge of TCP/IP services, including Domain Name Server (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS is assumed.
  • Experience with IP routing is assumed.
Course Content

Securing the Web with Cisco Web Security Appliance (SWSA) v2.0 is a two-day instructor-led course that is designed to help learners understand how to install, configure, manage, and troubleshoot the appliance. The objective of the course is to teach network professionals how to design, configure, administer, monitor, and troubleshoot the Cisco Web Security Appliance (WSA) in small to medium-sized business and enterprise installations. This course reinforces instruction by providing hand-on labs to ensure that learners thoroughly understand how to secure a network.

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

  • Reviewing the system
  • Installing and verifying the Cisco WSA
  • Deploying proxy services
  • Utilizing authentication
  • Configuring polices
  • Enforcing acceptable use
  • Defending against malware
  • Configuring data security policies
  • Deploying Cisco Cloud Web Security
  • Using Cisco AnyConnect Secure Mobility Client
  • Performing administration and troubleshooting
Course Outline

This subtopic provides an overview of how the course is organized. The course contains these components:

  • Reviewing the System
  • Installing and Verifying the Cisco WSA
  • Deploying Proxy Services
  • Utilizing Authentication
  • Configuring Polices
  • Enforcing Acceptable Use
  • Enforcing Acceptable Use—Advanced Topics
  • Defending Against Malware
  • Configuring Data Security Policies
  • Deploying Cisco Cloud Web Security
  • Using Cisco AnyConnect Secure Mobility Client
  • Performing Administration and Troubleshooting
Weitere Informationen

Wenn Sie mehr über diesen Kurs erfahren möchten Kontaktieren Sie uns bitte