Cisco ASA with FirePOWER Services Workshop v2.1

This course provides advanced training on the key Cisco ASA 9.x features including the following:

  • Install and set up the Cisco SFR (FirePOWER Services) Module

Overview

  • Installation of the FirePOWER Services (SFR) Module on the ASA
  • FirePOWER Management Center
  • the System Configuration, Firepower Setting Policy, and Health Policy
  • Edit the Default FMC Network Discovery Rule
  • Configure the IPS, File, and Access Control Policies
  • Test the Basic SFR IPS Operations
  • Test the Basic SFR AMP Operations
  • Malware File Transfers to Trigger the Malware Blocking File Policy Rule
  • IPS and Malware Events in the FirePOWER Management Center
  • Firepower Network Discovery Results
  • Integrate Firepower with Active Directory
  • Configure Identity Policy
  • Configure User Based Access Control Policy
  • Test User Based Access Control Policy
  • Configure Basic Custom Application Detector
  • Configure DNS Policy
  • Configure SSL Policy
  • Firepower v6.0 Features

Target Audience

  • Network administrators, managers, coordinators
  • Anyone who requires advanced training on the ASA 5500-X using SFR and CWS
  • Security technicians, administrators, and engineers

Prerequisites

Expected Duration

2 day

Course Objectives

1. Installing Cisco ASA FirePOWER Services Module

  • Cisco ASA FirePOWER Services (SFR) Module Overview
  • Cisco FirePOWER Management Center Overview
  • Cisco ASA FirePOWER Services Software Module Management Interface
  • Cisco ASA FirePOWER Services Module Package Installation
  • Cisco ASA FirePOWER Services Module Verification
  • Redirect Traffic to Cisco ASA FirePOWER Services Module

2. Managing Cisco ASA FirePOWER Services Module Using Cisco FirePOWER Management Center

  • Cisco FireSIGHT Management Center VM Installation and Setup
  • Cisco ASA FirePOWER Services Module and FireSIGHT License Requirements
  • Add Cisco ASA FirePOWER Services Module into FireSIGHT
  • FireSIGHT Policy Types Overview
  • Task Status Monitoring
  • System Policy Overview
  • Health Policy Overview
  • Objects Management Overview
  • Network Discovery Overview
  • Security Zones Overview
  • Active Directory Integration Overview
  • SourceFire User Agent Overview
  • Access Control Policy Overview
  • Intrusion Policy Overview
  • Cisco FireSIGHT Recommended Rules Overview
  • Intrusion Event Impact Levels Overview
  • File Policy Overview
  • Connection Events Monitoring
  • Events Display Time Range
  • Switch Workflow
  • IPS Events Monitoring
  • File Events Monitoring
  • Users Monitoring
  • Indication of Compromise Overview
  • Context Explorer
  • Dashboards

3. The Cisco ASA 5506-X, 5508-X, and 5516-X FirePOWER Services

  • Cisco ASDM and FirePOWER On-Box FireSIGHT Manager
  • Cisco ASA FirePOWER Dashboard, Reporting, and Status
  • Cisco ASA FirePOWER Events Viewer
  • Gather Cisco ASA FirePOWER Troubleshooting Information for Cisco TAC
  • FirePOWER Licensing

4. Configuring ASA Firepower Services v6.0 New Features

  • Firepower v6.0 Platforms
  • Deploy Dialog
  • Message Center
  • System Configurations and Devices Platform Settings
  • Network Analysis Policy
  • File Policy Enhancements
  • URL-Based Security Intelligence
  • DNS Policy
  • OpenAPPID
  • Intelligent Application Bypass
    PKI, Cipher Suite Lists, and Distinguished Name Objects
  • SSL Policy
  • Realm and Directory Server
  • Identity Policy
  • Capture Portal Active Authentication
  • ISE pxGrid Integration
  • ASDM On-Box Firepower Management
  • Firepower Multi-Domain Management

Labs

SUBSCRIPTION COST


$2,095.00

 

NEED HELP OR NOT SURE?