Detailed Outlines
Course Outlines
- Security Fundamentals
- Cisco Security Agent Overview
- Cisco Security Agent Quick Start Installation
- Cisco Security Agent Management Center Administration
- Configuring Groups and Managing Hosts
- Building Policies
- Rule Basics
- Systema Correlation Rules
- Defining Application Classes
- Working with Variables
- Using Cisco Security Agent Analysis
- Using Event Logs and Generating Reports
Objectives and Pre-requisites
Course Objectives
- Identify the platforms and infrastructure that support CSA and the CSA MC
- Describe the CSA architecture and the CSA MC
- Configure the way CSA protects a host system
- Install CSA with a default Agent kit
- Create host groups and build Agent kits
- Define application classes and associate them with the appropriate security policies
- Use variables for granular control when creating rules
- Configure security policies and rules
- Configure system correlation rules for CSA
- Identify which rules are for Windows, UNIX, and both platforms
- Perform data analysis and create policies with CSA Analysis
- Manage the Event Log and generate reports
Prerequisites
The knowledge and skills you must have before attending this course are as follows:
- Certification as a Cisco CCNA or the equivalent knowledge
- Certification as a Cisco CCNP Security or certifications as Cisco Firewall specialist, Cisco IDS Specialist, and Cisco VPN specialist
- Competency in using the Microsoft Windows operating system
- Familiarity with implementing network security policies and perimeter security system components such as perimeter router, firewall, bastion host / servers and hosts