Esquema Detallado del Curso
On Premise - Web Security Appliance
This class consist of 50% Theory and 50% Labs
Theory Topics include:
- Why Web Security
- What does WSA offer
- WSA Hardware Options and Sizing Guidance
- WSA Deployment Options (Transparent and Explicit Model)
- PAC Files and WCCP
- Creating and Configuring Polices both HTTP and HTTPS
- User Authentication
- ISE Integration
- WSA Scanning Layers
- WSA Policies
- WSA Reports
- Cognitive Threat Analytics
- Open DNS
LABS:
- Lab Exercise 1: Basic WSA Configuration and Testing
- Installing WSA
- PAC files
- Authentication via Active Directory
- Making use of Log Files
- Lab Exercise 2: Utilize HTTPS Inspection
- Lab Exercise 3 Basic Policy Configuration
- Lab Exercise 4: Enforcing Acceptable Use
- Lab Exercise 5: Protecting Against Malware
- Lab Exercise 6: Reporting and Web Tracking
- Lab Exercise 7: Time and Volume Based Quotas
- Lab Exercise 8: Custom Headers (Optional)
- Lab Exercise 19: Cognitive Threat Analytics
Cloud and Hybrid – Cloud Web Service (CWS)
This class consist of 50% Theory and 50% Labs
- What is CWS
- CWS Data Flow
- CWS Deployment Options (
- CWS Connector Options (Connector with WSA and WSA, ISR G2)
- CWS Redirection with Cisco AnyConnect Client
- Proxies, Towers and Datacenters
- CWS Scanning Layers
- CWS integrating Active Directory Authentication using SAML
- Configuring http and https policies
- WSA in Hybrid Mode
- CWS Reporting
- Reporting with CWS and WSA (
- Proof of concept
- Demo of dCloud
LABS:
- Lab Module 1: Lab Access and Web Connectivity
- Lab Module 2: CWS Basic Deployment with WSA connector
- Lab Module 3: Whitelisting
- Lab Module 4: AnyConnect Web Security
- Lab Module 5: SAML Authentication
- Lab Module 6: Advanced Filtering: Anonymization
- Lab Module 7: Advanced Filtering: HTTPS Inspection
- Lab Module 8: Advanced Filtering: AVC
- Lab Module 9: Advanced Reporting
- Lab Module 10: Hybrid Web Security