Securing the Web with Cisco Web Security Appliance – SWSA

Securing the Web with Cisco Web Security Appliance – SWSA

Code : SWSA
Version : 3.0
Days : 2
Price HT : 2140 € Price CLC HT : Accepté

Our next dates :

27/02/2020
09/04/2020
18/06/2020
17/09/2020
17/12/2020

5 Days for

• Describe Cisco WSA
• Deploy proxy services
• Utilize authentication
• Describe decryption policies to control HTTPS traffic
• Understand differentiated traffic access policies and identification profiles
• Enforce acceptable use control settings
• Defend against malware
• Describe data security and data loss prevention
• Perform administration and troubleshooting

Who is this course for?

Job Roles

• Security architects
• System designers
• Network administrators
• Operations engineers
• Network managers, network or security technicians, and security engineers and managers responsible for web security
• Cisco integrators and partners

Prerequisite

To fully benefit from this course, you should have one or more of the following basic technical competencies:

• Cisco certification (CCENT certification or higher)
• Relevant industry certification [International Information System Security Certification Consortium ((ISC)2), Computing Technology Industry Association (CompTIA) Security+, International Council of Electronic Commerce Consultants (EC-Council), Global Information Assurance Certification (GIAC), ISACA]
• Cisco Networking Academy letter of completion (CCNA® 1 and CCNA 2)
• Windows expertise: Microsoft [Microsoft Specialist, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE)], CompTIA (A+, Network+, Server+)

The learner is expected to have the following skills and knowledge before attending this course:

• TCP/IP services, including Domain Name System (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS
• IP routing

Internship progress

1. Describing Cisco WSA
   • Technology Use Case
   • Cisco WSA Solution
   • Cisco WSA Features
   • Cisco WSA Architecture
   • Proxy Service
   • Integrated Layer 4 Traffic Monitor
   • Data Loss Prevention
   • Cisco Cognitive Intelligence
   • Management Tools
   • Cisco Advanced Web Security Reporting (AWSR) and Third-Party Integration
   • Cisco Content Security Management Appliance (SMA)
2. Deploying Proxy Services
   • Explicit Forward Mode vs. Transparent Mode
   • Transparent Mode Traffic Redirection
   • Web Cache Control Protocol
   • Web Cache Communication Protocol (WCCP) Upstream and Downstream Flow
   • Proxy Bypass
   • Proxy Caching
   • Proxy Auto-Config (PAC) Files
   • FTP Proxy
   • Socket Secure (SOCKS) Proxy
   • Proxy Access Log and HTTP Headers
   • Customizing Error Notifications with End User Notification (EUN) Pages
3. Utilizing Authentication
   • Authentication Protocols
   • Authentication Realms
   • Tracking User Credentials
   • Explicit (Forward) and Transparent Proxy Mode
   • Bypassing Authentication with Problematic Agents
   • Reporting and Authentication
   • Re-Authentication
   • FTP Proxy Authentication
   • Troubleshooting Joining Domains and Test Authentication
   • Integration with Cisco Identity Services Engine (ISE)
4. Creating Decryption Policies to Control HTTPS Traffic
   • Transport Layer Security (TLS)/Secure Sockets Layer (SSL) Inspection Overview
   • Certificate Overview
   • Overview of HTTPS Decryption Policies
   • Activating HTTPS Proxy Function
   • Access Control List (ACL) Tags for HTTPS Inspection
   • Access Log Examples
5. Understanding Differentiated Traffic Access Policies and Identification Profiles
   • Overview of Access Policies
   • Access Policy Groups
   • Overview of Identification Profiles
   • Identification Profiles and Authentication
   • Access Policy and Identification Profiles Processing Order
   • Other Policy Types
   • Access Log Examples
   • ACL Decision Tags and Policy Groups
   • Enforcing Time-Based and Traffic Volume Acceptable Use Policies, and End User Notifications
6. Defending Against Malware
   • Web Reputation Filters
   • Anti-Malware Scanning
   • Scanning Outbound Traffic
   • Anti-Malware and Reputation in Policies
   • File Reputation Filtering and File Analysis
   • Cisco Advanced Malware Protection
   • File Reputation and Analysis Features
   • Integration with Cisco Cognitive Intelligence
7. Enforcing Acceptable Use Control Settings
   • Controlling Web Usage
   • URL Filtering
   • URL Category Solutions
   • Dynamic Content Analysis Engine
   • Web Application Visibility and Control
   • Enforcing Media Bandwidth Limits
   • Software as a Service (SaaS) Access Control
   • Filtering Adult Content
8. Data Security and Data Loss Prevention
   • Data Security
   • Cisco Data Security Solution
   • Data Security Policy Definitions
   • Data Security Logs
9. Performing Administration and Troubleshooting
   • Monitor the Cisco Web Security Appliance
   • Cisco WSA Reports
   • Monitoring System Activity Through Logs
   • System Administration Tasks
   • Troubleshooting
   • Command Line Interface
10. References
    • Comparing Cisco WSA Models
    • Comparing Cisco SMA Models
    • Overview of Connect, Install, and Configure
    • Deploying the Cisco Web Security Appliance Open Virtualization Format (OVF) Template
    • Mapping Cisco Web Security Appliance Virtual Machine (VM) Ports to Correct Networks
    • Connecting to the Cisco Web Security Virtual Appliance
    • Enabling Layer 4 Traffic Monitor (L4TM)
    • Accessing and Running the System Setup Wizard
    • Reconnecting to the Cisco Web Security Appliance
    • High Availability Overview
    • Hardware Redundancy
    • Introducing Common Address Redundancy Protocol (CARP)
    • Configuring Failover Groups for High Availability
    • Feature Comparison Across Traffic Redirection Options
    • Architecture Scenarios When Deploying Cisco AnyConnect® Secure Mobility

Contacts:

info@learneo.com
01 53 20 37 00