Prerequisites :
- Certification as a Cisco CCNA or the equivalent knowledge
- Certification as a Cisco CCSP or certifications as Cisco Firewall specialist, Cisco IDS Specialist, and Cisco VPN specialist
- Competency in using the Microsoft Windows operating system
- Familiarity with implementing network security policies and perimeter security system components such as perimeter router, firewall, bastion host / servers and hosts
Course Objectives :
Securing Hosts Using Cisco Security Agent (HIPS) takes a task-oriented approach to teaching the skills to deploy, configure, and administer CSA to protect server and workstation hosts.
After completing this course, delegates will be able to:
- Identify the platforms and infrastructure that support CSA and the CSA MC
- Describe the CSA architecture and the CSA MC
- Configure the way CSA protects a host system
- Install CSA with a default Agent kit
- Create host groups and build Agent kits
- Define application classes and associate them with the appropriate security policies
- Use variables for granular control when creating rules
- Configure security policies and rules
- Configure system correlation rules for CSA
- Identify which rules are for Windows, UNIX, and both platforms
- Perform data analysis and create policies with CSA Analysis
- Manage the Event Log and generate reports
Course Content :
- Security Fundamentals
- Cisco Security Agent Overview
- Cisco Security Agent Quick Start Installation
- Cisco Security Agent Management Center Administration
- Configuring Groups and Managing Hosts
- Building Policies
- Rule Basics
- Systema Correlation Rules
- Defining Application Classes
- Working with Variables
- Using Cisco Security Agent Analysis
- Using Event Logs and Generating Reports