Securing Hosts Using Cisco Security Agent (HIPS) v3.0
Revision: TE1222_20060322
Course Length:
2 Days
Course Description:
Securing Hosts Using Cisco Security Agent (HIPS) v3.0 is a course on using the Cisco Security Agent 5.0 product to protect host systems from intrusions and security threats. The Cisco Security Agent functions to protect from intrusions, as compared to simply detecting attempted intrusions. The course takes a task-oriented approach to teaching the skills to deploy and configure and administer the Cisco Security Agent to protect server and workstation hosts.
Who Should Attend:
Customers, employees, and channel Partners/Resellers will benefit from this course.
Benefits of Attendance:
Upon completion of this course, students will be able to:
- Identify the platforms and infrastructure that support CSA and the CSA MC
- Describe the CSA architecture and the CSA MC
- Configure the way CSA protects a host system
- Install CSA with a default Agent kit
- Create host groups and build Agent kits
- Define application classes and associate them with the appropriate security policies
- Use variables for granular control when creating rules
- Configure security policies and rules
- Configure system correlation rules for CSA
- Identify which rules are for Windows, UNIX, and both platforms
- Perform data analysis and create policies with CSA Analysis
- Manage the Event Log and generate reports
Prerequisites:
Students should have certification as a CCNA or have equivalent knowledge. They should also have certification as a Cisco CCSP or certifications as Cisco Firewall Specialist, Cisco IDS Specialist, and Cisco VPN Specialist. Competency in using the Microsoft Windows operating system and familiarity with implementing network security policies and perimeter security system components such as perimeter router, firewall, bastion host / servers and hosts is also required.