F5 BIG-IP Application Security Manager (ASM) v11x

COURSE OUTLINE:

Description

In this course, you will learn how to manage web-based and XML application attacks and how to use Application Security Manager to defend against these attacks.

You will cover installation, configuration, management, security policy building, traffic learning, and implementation of Application Security Manager in both stand-alone and modular configurations.

Audience

Those who need to learn to use Application Security Manager to defend against attacks.

Prerequisites

Understanding of:

Basic HTTP and HTML concepts
Basic security concepts
Common network terminology
Web application terminology

Proficiency in:

Basic PC operation and application skills, including operating a CD drive, keyboard, mouse, and Windows OS
Basic web browser operation (Internet Explorer)

Learning Objectives

HTTP and HTML concepts
Common HTTP vulnerabilities
HTTP classes
Security policy building
Wildcard entities
Traffic learning
Parameter configuration and protection
Security policy templates
Web services protection
Protocol Security Manager configuration
Logging profiles
Install and understand web application configuration
Configure a security policy based on live traffic
Rapid deployment techniques
Monitor and administer Application Security Manager

1. Installation and Initial Access

BIG-IP
Licensing and the Setup Utility
Provisioning

2. Web Application Concepts

Web Application Basics
Web Page Components
HTTP Concepts
HTTP Request Components
HTTP Headers

3. Web Application Vulnerabilities

Risk Mitigation and ASM

4. ASM Application Configuration

Configuration Components
HTTP Class
Virtual Servers
SSL Termination/Initiation
HTTP Request Flow

5. Security Policy

Security Policy Properties
Policy Enforcer
Security Policy Configuration
Security Policy Components

6. Security Policy Building Tool

Deployment Wizard
Rapid Deployment Concepts

7. Application-Ready Security Policy

8. Reporting

9. Administering ASM

User Management
Human Readable Policy
Synching Configurations
ASM qkview
Upgrading to v10

10. Configuration Lab Project 1

11. Traffic Learning

Learning Concepts
Violations

12. Parameters

Parameter Types
Parameter Levels

13. Security Policy Builder

14. Advanced Topics

ASM iRules
Flow Login Pages
Anomaly Detections

15. XML and Web Services

XML Concepts
Web Services Protection

16. Protocol Security Manager

FTP Protection
SMTP Protection
HTTP Protection
Protocol Security Manager Statistics
Configuring Protocol Security Manager

17. Configuration Lab Project 2

Review Questions

RELATED COURSES

Courses
Cyber Security

Dell SonicWALL Secure Mobile Access Advanced Administration

In this course, you will connect to your own iOS or Droid mobile device to access the Mobile Connect client for hands-on participation. You will learn to administer and manage the Secure Mobile Access (SMA) appliance to provide secure, anywhere access to applications and resources for employees, business partners, and other users. You will cover using the Appliance Management Console (AMC) to provide users with secure access to any application-from corporate laptops or un-managed computers-based on secure authentication and authorization policies and appropriate end point control requirements. Students will further learn advanced deployment options and troubleshooting methodologies.

Upon completion of this course, you are encouraged to take the Certified SonicWALL System Professional(CSSP) exam.

For registrations using an application key, you cannot register online; you must call to complete your registration.

Courses
Cyber Security

Certified Information Privacy Professional US Private-Sector (CIPP/US) Prep Course

In this course, you will gain foundational knowledge on concepts of privacy and data protection laws and practice. You will learn about common principles and approaches to privacy as well as the major privacy models employed around the globe. An introduction to information security concepts and information security management and governance will be covered, which includes frameworks, controls, and identity and access management. You will also learn about online privacy as it relates to using personal information on websites and other Internet-related technologies.

The structure of US law, the enforcement of US privacy and security laws, and information management from a US perspective will be discussed, as well as the limitations on private-sector collection and usage of data. This course will also provide an introduction to workplace privacy considerations and US state laws related to marketing, financial data, data security, and breach notification.

This two-day program covers the principals of information privacy in the US private-sector, including:

Official IAPP CIPP participant guide
Official IAPP CIPP textbook
Official IAPP CIPP practice test
IAPP CIPP/US certification exam voucher
IAPP Membership for one year

Note: Your contact information must be provided to the IAPP and will be used by IAPP for membership services fulfillment in accordance with IAPP’s policies.

Courses
Cyber Security

Palo Alto Networks: TRAPS 3.4: Install, Configure, and Manage

Palo Alto Networks Traps Advanced Endpoint Protection prevents sophisticated vulnerability exploits and unknown malware-driven attacks. Traps accomplishes this through a highly scalable, lightweight agent that uses an innovative new approach for defeating attacks without requiring any prior knowledge of the threat itself. Successful completion of this two-day, instructor-led course equips you to install traps in basic configurations.

Courses
Cyber Security

F5 Configuring BIG-IP APM v11: Access Policy Manager

In this course, you will learn about the BIG-IP version 11 APM system as it is commonly deployed in either in an application delivery configuration (LTM + APM use case) or in a remote access setting. You will learn about basic LTM configurations. You will also learn about the three remote access methods supported by APM: Network Access (SSL VPN), Portal Access (reverse proxy), and Application Access (app tunnel).