• Course
  • Vendor

This course shows you how to implement, use, and maintain Cisco Web Security Appliance (WSA), powered by Cisco Talos, to provide advanced protection for business email and control against web security threats.

  • Course Start Date: 2021-10-14
  • Time: 08:30:00 - 16:30:00
  • Duration: 2 days 08:30 AM - 04:30 PM
  • Location: Virtual
  • Delivery Method(s): Virtual Instructor Led

Course Outline

Pre-Requisites

To fully benefit from this course, you should have knowledge of these topics:

TCP/IP services, including Domain Name System (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS
IP routing

You are expected to have one or more of the following basic technical competencies or equivalent knowledge:

Cisco certification (CCENT certification or higher)
Relevant industry certification [International Information System Security Certification Consortium ((ISC)2), Computing Technology Industry Association (CompTIA) Security+, International Council of Electronic Commerce Consultants (EC-Council), Global Information Assurance Certification (GIAC), ISACA]
Cisco Networking Academy letter of completion (CCNA® 1 and CCNA 2)
Windows expertise: Microsoft [Microsoft Specialist, Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE)], CompTIA (A+, Network+, Server+)

Lessons

Through a combination of expert instruction and hands-on practice, you’ll learn how to deploy proxy services, use authentication, implement policies to control HTTPS traffic and access, implement use control settings and policies, use the solution’s anti-malware features, implement data security and data loss prevention, perform administration of Cisco WSA solution, and more. This course helps you prepare to take the exam, Securing the Web with Cisco Web Security Appliance (300-725 SWSA), which leads to CCNP® Security and the Cisco Certified Specialist - Web Content Security Thecertifications. The 300-725 SWSA exam certifies your knowledge of Cisco Web Security Appliance including proxy services, authentication, decryption policies, differentiated traffic access policies and identification policies, acceptable use control settings, malware defense, and data security and data loss prevention. The exam will be available beginning February 24, 2020.

After you pass 300-725 SWSA:

You earn the Cisco Certified Specialist - Web Content Security certification.
You will have satisfied the concentration exam requirement for the new CCNP Security certification. To complete CCNP Security, you also need to pass the Implementing and Operating Cisco Security Core Technologies (350-701 SCOR) exam or its equivalent.

WHAT YOU'LL LEARN

After taking this course, you should be able to:

  • Describe Cisco WSA
  • Deploy proxy services
  • Utilize authentication
  • Describe decryption policies to control HTTPS traffic
  • Understand differentiated traffic access policies and identification profiles
  • Enforce acceptable use control settings
  • Defend against malware
  • Describe data security and data loss prevention
  • Perform administration and troubleshooting

OUTLINE

  • Describing Cisco WSA
    • Technology Use Case
    • Cisco WSA Solution
    • Cisco WSA Features
    • Cisco WSA Architecture
    • Proxy Service
    • Integrated Layer 4 Traffic Monitor
    • Data Loss Prevention
    • Cisco Cognitive Intelligence
    • Management Tools
    • Cisco Advanced Web Security Reporting (AWSR) and Third-Party Integration
    • Cisco Content Security Management Appliance (SMA)
  • Deploying Proxy Services
    • Explicit Forward Mode vs. Transparent Mode
    • Transparent Mode Traffic Redirection
    • Web Cache Control Protocol
    • Web Cache Communication Protocol (WCCP) Upstream and Downstream Flow
    • Proxy Bypass
    • Proxy Caching
    • Proxy Auto-Config (PAC) Files
    • FTP Proxy
    • Socket Secure (SOCKS) Proxy
    • Proxy Access Log and HTTP Headers
    • Customizing Error Notifications with End User Notification (EUN) Pages
  • Utilizing Authentication
    • Authentication Protocols
    • Authentication Realms
    • Tracking User Credentials
    • Explicit (Forward) and Transparent Proxy Mode
    • Bypassing Authentication with Problematic Agents
    • Reporting and Authentication
    • Re-Authentication
    • FTP Proxy Authentication
    • Troubleshooting Joining Domains and Test Authentication
    • Integration with Cisco Identity Services Engine (ISE)
  • Creating Decryption Policies to Control HTTPS Traffic
    • Transport Layer Security (TLS)/Secure Sockets Layer (SSL) Inspection Overview
    • Certificate Overview
    • Overview of HTTPS Decryption Policies
    • Activating HTTPS Proxy Function
    • Access Control List (ACL) Tags for HTTPS Inspection
    • Access Log Examples
  • Understanding Differentiated Traffic Access Policies and Identification Profiles
    • Overview of Access Policies
    • Access Policy Groups
    • Overview of Identification Profiles
    • Identification Profiles and Authentication
    • Access Policy and Identification Profiles Processing Order
    • Other Policy Types
    • Access Log Examples
    • ACL Decision Tags and Policy Groups
    • Enforcing Time-Based and Traffic Volume Acceptable Use Policies, and End User Notifications
  • Defending Against Malware
    • Web Reputation Filters
    • Anti-Malware Scanning
    • Scanning Outbound Traffic
    • Anti-Malware and Reputation in Policies
    • File Reputation Filtering and File Analysis
    • Cisco Advanced Malware Protection
    • File Reputation and Analysis Features
    • Integration with Cisco Cognitive Intelligence
  • Enforcing Acceptable Use Control Settings
    • Controlling Web Usage
    • URL Filtering
    • URL Category Solutions
    • Dynamic Content Analysis Engine
    • Web Application Visibility and Control
    • Enforcing Media Bandwidth Limits
    • Software as a Service (SaaS) Access Control
    • Filtering Adult Content
  • Data Security and Data Loss Prevention
    • Data Security
    • Cisco Data Security Solution
    • Data Security Policy Definitions
    • Data Security Logs
  • Performing Administration and Troubleshooting
    • Monitor the Cisco Web Security Appliance
    • Cisco WSA Reports
    • Monitoring System Activity Through Logs
    • System Administration Tasks
    • Troubleshooting
    • Command Line Interface
  • References
    • Comparing Cisco WSA Models
    • Comparing Cisco SMA Models
    • Overview of Connect, Install, and Configure
    • Deploying the Cisco Web Security Appliance Open Virtualization Format (OVF) Template
    • Mapping Cisco Web Security Appliance Virtual Machine (VM) Ports to Correct Networks
    • Connecting to the Cisco Web Security Virtual Appliance
    • Enabling Layer 4 Traffic Monitor (L4TM)
    • Accessing and Running the System Setup Wizard
    • Reconnecting to the Cisco Web Security Appliance
    • High Availability Overview
    • Hardware Redundancy
    • Introducing Common Address Redundancy Protocol (CARP)
    • Configuring Failover Groups for High Availability
    • Feature Comparison Across Traffic Redirection Options
    • Architecture Scenarios When Deploying Cisco AnyConnect® Secure Mobility

LABS

  • Configure the Cisco Web Security Appliance
  • Deploy Proxy Services
  • Configure Proxy Authentication
  • Configure HTTPS Inspection
  • Create and Enforce a Time/Date-Based Acceptable Use Policy
  • Configure Advanced Malware Protection
  • Configure Referrer Header Exceptions
  • Utilize Third-Party Security Feeds and MS Office 365 External Feed
  • Validate an Intermediate Certificate
  • View Reporting Services and Web Tracking
  • Perform Centralized Cisco AsyncOS Software Upgrade Using Cisco SMA

WHO SHOULD ATTEND

  • Security architects
  • System designers
  • Network administrators
  • Operations engineers
  • Network managers, network or security technicians, and security engineers and managers responsible for web security
  • Cisco integrators and partners

Cancellation Policy

We require 16 calendar days notice to reschedule or cancel any registration. Failure to provide the required notification will result in 100% charge of the course. If a student does not attend a scheduled course without prior notification it will result in full forfeiture of the funds and no reschedule will be allowed. Within the required notification period, only student substitutions will be permitted. Reschedules are permitted at anytime with 16 or more calendar days notice. Enrollments must be rescheduled within six months of the cancel date or funds on account will be forfeited.

Training Location

Online Classroom
your office

your city, your province
your country   

About Global Knowledge

x

Global Knowledge is the world's leading learning services and professional development solutions provider. We deliver learning solutions to support customers as they adapt to key business transformations and technological advancements that drive the way that organizations around the world differentiate themselves and thrive. Our learning programs, whether designed for a global organization or an individual professional, help businesses close skills gaps and foster an environment of continuous talent development.

Training Provider Rating

This vendor has an overall average rating of 4.38 out of 5 based on 431 reviews.

I would never take another course that starts at 11AM and goes to 9PM again. The way the course was laid out really took away from ... Read more
x

I would never take another course that starts at 11AM and goes to 9PM again. The way the course was laid out really took away from the capturing of what was presented as it was 5-6 hours of watching a screen before getting to the actual labs. There has to be a better way to lay out this particular course. In my previous course, the lectures were broken up by labs which worked out fantastic and kept you engaged in the course. There were days when in order to actually complete the labs, would go over the 9PM day end time frame. Was able to get the primary labs done, but if you want to get all the content completed, you cannot complete it in the window of this course, you will need to come back on your own time.

No comment
No comment
Instructor was great
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
No comment
Wasn’t as advanced as I thought it would be. There was an issue when the day my course was the first time they used a new platfo ... Read more
x

Wasn’t as advanced as I thought it would be. There was an issue when the day my course was the first time they used a new platform.. from adobe to something called zoom; I had to call support line cause it stated our instructor wasn’t present. Thankfully I called cause everyone online was in the adobe virtual classroom waiting for what looked like a teacher who didn’t show up for class (IT didn’t get anything resolved until 10mins after start time). I felt like he was really getting hung up on very basic knowledge for the first half of the course (talking about how to create tabs and drag formulas as an example). I completed files a few times before he was done explaining. There was a scheduled fire drill for them (roughly 30mins)that also cut into our time, which wasn’t deducted from the hour lunch break or the two, fifteen min breaks. I also really wish he touched base more on the automating workbook functions portion which we barely did. I'm happy there were/are those study guides (learning videos) and exams to take on my own time that I hope after I've had the class are still available for me to learn from.

Course Reviews

No Reviews Yet

More Courses from Global Knowledge

More Courses in 'Cisco Network Security Engineer ' Category