Securing Email with Cisco Email Security Appliance (SESA)

Detailed Outlines

Course Outlines

Module 1: System Overview

  • SESA product, including:
  • Management series
  • SMTP conversation
  • Terms and definitions
  • Pipeline
  • Licensing

Module 2: Installing ESA

  • System architecture,
  • Concept of the listener
  • Various network topologies
  • Instructor will demonstrate the installation of both the ESA, and M series

Module 3: Administration

  • Create, and customize reports
  • Use message tracking
  • Administer the ESA, including:
    • Shutdown
    • Reboot
    • Suspend
    • Upgrade
    • Rollback
  • Manage log files using FTP
  • Create and use administrator accounts
  • The Instructor will demonstrate the ESA by connecting to the M series for centralized tracking and reporting.

Module 4: Controlling Sender and Recipient Domains

  • Explain the differences between the Host Access Table (HAT), and the Recipient Access Table (RAT)

Module 5: Controlling Spam with SensorBase, and Anti-Spam

  • Discuss SensorBase and the anti-spam engine
  • Make adjustments to the HAT, and the anti-spam policies
  • Manage the spam quarantine both locally or using the management series
  • Instructor will demonstrate configuring spam quarantine from the ESA to the M series

Module 6: Using Anti-Virus and Outbreak Filter (OF)

  • Compare the two signature-based AV engines with OF,
  • Configure AV, and OF policies,
  • Adjust AV, and OF policies.

Module 7: Using Mail Policies

  • Separate enterprise groups with different filtering requirements

Module 8: Using Content Filters

  • Content filters,
  • How to apply filters to policies,
  • The use of filters matching specific words in message bodies, and attachments,
  • Dictionaries, footers, and best practices.

Module 9: Preventing Data Loss

  • Describe the RSA DLP engine,
  • Prevent the loss of sensitive data in outbound email through the use of the RSA DLP engine.

Module 10: LDAP

  • Configure LDAP to control the flow of email,
  • Configure LDAP to enforce user access polices.

Module 11: Authentication and Encryption

  • Configure TLS to encrypt email,
  • Configure ESA to work with Cisco Registered Envelope Service to encrypt mail,
  • Use DKIM and SPF to authenticate email.

Module 12: Message Filters

  • Identify message filters in the ESA
  • Create and manage message filters

Module 13: Using Quarantines, Delivery Methods

  • Recognize different quarantines
  • Explain how space is allocated to quarantines, both on the:
    • Local box
    • Management series
  • Create custom quarantines
  • Identify different delivery methods, including:
    • Virtual gateways
    • Bounce profiles

Module 14: Clustering

  • Create a clustered environment
  • Manage a clustered environment

Module 15: Troubleshooting

  • Troubleshoot using several advanced troubleshooting tools

Lab 1-1 Cisco Remote Lab Access
Lab 2-1: Installing Your Cisco Email Security Appliance
Lab 3-1: Administration
Lab 4-1: Testing Your Listener Settings
Lab 5-1: Defending Against Spam with Sensor Base and Anti-Spam
Lab 6-1: Defending Against Viruses
Lab 7-1: Customizing Mail Policies for Your End Users
Lab 8-1: Enforcing Your Business Policies in Email Delivery
Lab 9-1: Configuring DLP
Lab 10-1: Configuring LDAP Accept
Lab 10-2: Configuring SMTP Call-Ahead
Lab 10-3: Configuring LDAP Domains
Lab 10-4: Configuring Mail Policies with LDAP Group Queries
Lab 10-5: Configuring LDAP Routing
Lab 11-1: Configuring Envelope Encryption
Lab 11-2: Encrypting with TLS
Lab 11-3: DomainKeys Identified Mail
Lab 11-4: SPF and SIDF
Lab 12-1: Redirecting Your Mail with Message Filters
Lab 13:1: Configuring Bounce Profiles
Lab 13-2: Configuring Virtual Gateways
Lab 14-1 Cluster
Lab 15-1 Troubleshooting Lab Activity Solutions

Objectives and Pre-requisites

Course Objectives

  • Understand the placement of ESA - System overview
  • Installing ESA
  • Administration of ESA
  • Controlling sender and recipient domains, spam with SensorBase, and anti-spam
  • Setting parameters for:
  • Anti-virus
  • Virus Outbreak Filter (VOF)
  • Mail policies
  • Content filters
  • Preventing data loss
  • Authentication, LDAP, and encryption
  • Message filters
  • Using quarantines, and delivery methods
  • Clustering an environment
  • Troubleshoot ESA


The knowledge and skills you must have before attending this course are as follows:

  • TCP/IP fundamentals
  • Experience with Internet-based messaging, including SMTP, internet message formats, and MIME message formats

Classroom training
Duration: 3 days
Price: US$ ----
CLC: 28

Course Schedule:
Egypt, Cairo,  Jan 2015
Dubai,  Feb, 2015
Qatar, Doha, May 2015

PDF of this course
Securing Email with Cisco Email Security Appliance (SESA) - 5.0 out of 5 based on 1 vote

User Rating: 5 / 5

Star activeStar activeStar activeStar activeStar active
 Privacy Policy
Terms & Conditions