Securing the Web with Cisco Web Security Applicance

Individuals involved with the deployment and installation of the Cisco's Web Security Appliances, or Channel Partner's looking to achieve accreditation.

After you complete this course you should be able to:

• Describe the Cisco WSA
• Install and verify the WSA
• Deploy proxy services for the WSA
• Utilize authentication with the WSA
• Configure various policies for the WSA
• Enforce acceptable use using the WSA
• Defend against malware
• Configure data security
• Describe Cisco Cloud Web Security
• Use Cisco AnyConnect Secure Mobility Client
• Perform Administration and Troubleshooting of WSA's

Reviewing the System

• Customer Use Cases
• Cisco Web Security Appliance Models and Architecture

Installing and Verifying the Cisco Web Security Appliance

• Review the Cisco Security Management Appliance
• Install and Verify Cisco Web Security Appliance Hardware
• Install and Verify the Cisco Web Security Virtual Appliance for VMware
• Run the system set-up Wizard
• Configure L4TM

Configuring Virtual Web Security Appliance Connector to Cisco Cloud Web Security

• Review Cisco Cloud Web Security
• Connect to Cisco Cloud Web Security Using the Cloud Web Security Connector

Deploying Proxy Services

• Contrast Proxy Modes
• Review PAC Files
• Configure and Manage Proxy Services
• Deploy Native FTP Proxy
• Read Proxy Access Log and HTTP Headers

Utilizing Authentication

• Configure NTLM and Proxy Authentication
• Identify Authentication Settings and Realms
• Describe LDAP Authentication and Authorization
• Troubleshoot Joining Domains and Test Authentication

Configuring Policies

• Configure Access Policies and Identities
• Configure Authentication Exemptions
• Review Access Log Tags

Enforcing Acceptable Use

• Enable URL Categories and Filters
• Configure Application Visibility and Control
• Describe SaaS Access Control
• Use HTTPS Inspection
• Configure HTTPS Proxy Settings

Enforcing Acceptable Use - Advanced Topics

• Configure Application Visibility and Control - Advanced Topics
• Describe SaaS Access Control - Advanced Topics
• Configure Web Usage Controls and URL Categories
• View Logging and Reporting

Defending Against Malware

• Describe and Configure WBRS
• Describe and Configure Anti-Malware Scanning
• Describe and Configure Advanced Malware Protection
• Interpret ACL Tags Relevant to Anti-Malware

Configuring Data Security

• Configure Data Security
• Configure Data Loss Prevention(DLP)
• Describe Access and Data Security Logs

Describing Cisco Cloud Web Security

• Cisco Cloud Web Security Features and Benefits
• Explain Cisco Cloud Attach Model

Using Cisco AnyConnect Secure Mobility Client

• Describe Cisco AnyConnect Web Security
• Integrate the Cisco AnyConnect Secure Mobility Client

Performing Administration and Troubleshooting

• Describe Report Administration
• Monitor the Cisco Web Security Appliance
• Configure W3C Logging
• Perform Other Administrative Tasks
• Describe Hardware Redundancy
• Troubleshooting the Cisco Web Security Appliance

Labs

• Hardware Challenge Lab 1: Access the Cisco Remote Lab
• Hardware Challenge Lab 2: Installing and Verifying the Cisco Web Security Appliance
• Hardware Challenge Lab 3: Deploying Proxy Services
• Hardware Challenge Lab 4: Utilizing Authentication
• Hardware Challenge Lab 5: Configuring Cisco WSA Policies
• Hardware Challenge Lab 6: Enforcing Acceptable Use
• Hardware Challenge Lab 7: Enforcing Acceptable Use—Advanced Topics
• Hardware Challenge Lab 8: Defending Against Malware
• Hardware Challenge Lab 9: Configuring Data Security
• Hardware Challenge Lab 10: Describing Cisco Cloud Web Security
• Hardware Challenge Lab 11: Performing Administration and Troubleshooting

Delegates should meet the following prerequisites :

• Knowledge of TCP/IP services, including Domain Name Server (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS is assumed. - ICND2 Recommended
• Experience with IP Routing

• CCNA - Implementing and Administering Cisco Solutions
• G013 - CompTIA Security+

Recommended preparation for exam(s) :

• WSFE - 700-281 - This exam is only required for Field engineers looking to meet the Cisco Channel Partner requirements for Express Security - Web.  .

Delegates looking for training on Cisco's Email Security Appliance should consider:

• SESA - Securing your Email with Cisco Email Security Appliance
• PASESA - Securing Email with Cisco Email Security Appliance  - Channel Partners Only.