LernIX Solutions

Course Overview

You already completed the preparation course and activated your achievement badge for this course. Now you want to know if you are ready for the exam. Microsoft creates exams based on real world scenarios. These are not necessarily covered in the preparation course you did.

This 2-day exam preparation training will help you to complete your study for certification. During the first day you will run through a selection of hands-on labs guided by a trainer. The second day you will be prepared for the actual exam with practice tests.

Course Content

Trainer guided hands on labs

Trainer guided practice exam

Practice exam

Exam – you will not do the exam during the course

Course Overview

Learn how to investigate, respond to, and hunt for threats using Microsoft Sentinel, Microsoft Defender XDR and Microsoft Defender for Cloud. In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Microsoft Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.

Course Objectives

SC-200: Mitigate threats using Microsoft Defender XDR
SC-200: Mitigate threats using Microsoft Copilot for Security
SC-200: Mitigate threats using Microsoft Purview
SC-200: Mitigate threats using Microsoft Defender for Endpoint
SC-200: Mitigate threats using Microsoft Defender for Cloud
SC-200: Create queries for Microsoft Sentinel using Kusto Query Language (KQL)
SC-200: Configure your Microsoft Sentinel environment
SC-200: Connect logs to Microsoft Sentinel
SC-200: Create detections and perform investigations using Microsoft Sentinel
SC-200: Perform threat hunting in Microsoft Sentinel

Course Overview

You already completed the preparation course and activated your achievement badge for this course. Now you want to know if you are ready for the exam. Microsoft creates exams based on real world scenarios. These are not necessarily covered in the preparation course you did.

This 2-day exam preparation training will help you to complete your study for certification. During the first day you will run through a selection of hands-on labs guided by a trainer. The second day you will be prepared for the actual exam with practice tests.

Course Objectives

You will be best prepared for the actual exam.

Course Content

Trainer guided hands on labs

Trainer guided practice exam

Practice exam

Exam – you will not do the exam during the course

Course Overview

Learn how to protect information in your Microsoft 365 deployment. This course focuses on data lifecycle management and information protection and compliance within your organization. The course covers implementation of data loss prevention policies, sensitive information types, sensitivity labels, data retention policies, Microsoft Purview Message Encryption, audit, eDiscovery, and insider risk among other related topics.

This course helps learners prepare for the Microsoft Information Protection Administrator exam (SC-400).

Course Objectives

After completing this course you should be able to:

Implement Information Protection in Microsoft 365
Implement Data Loss Prevention
Implement Data Lifecycle and Records Management
Monitor and investigate data and activities by using Microsoft Purview
Manage Insider and Privacy Risk in Microsoft 365

Course Content

Module 1: Implement Information Protection in Microsoft 365

Introduction to information protection and data lifecycle management in Microsoft Purview
Classify data for protection and governance
Create and manage sensitive information types
Understand Microsoft 365 encryption
Deploy Microsoft Purview Message Encryption
Create and configure sensitivity labels with Microsoft Purview
Apply sensitivity labels for data protection

Module 2: Implement Data Loss Prevention

Prevent data loss in Microsoft Purview
Implement endpoint data loss prevention (DLP) with Microsoft Purview
Configure DLP policies for Microsoft Defender for Cloud Apps and Power Platform
Manage data loss prevention policies and reports in Microsoft 365

Module 3: Implement Data Lifecycle and Records Management

Manage the data lifecycle in Microsoft Purview
Manage data retention and deletion in Microsoft 365 workloads
Manage records in Microsoft Purview

Module 4: Monitor and investigate data and activities by using Microsoft Purview

Explore compliance in Microsoft 365
Search for content in the Microsoft Purview compliance portal
Manage Microsoft Purview eDiscovery (Standard)
Manage Microsoft Purview eDiscovery (Premium)
Search and investigate with Microsoft Purview Audit

Module 5: Manage Insider and Privacy Risk in Microsoft 365

Prepare Microsoft Purview Communication Compliance
Manage insider risk in Microsoft Purview
Implement Adaptive Protection in Insider Risk Management
Implement Microsoft Purview Information Barriers
Manage regulatory and privacy requirements with Microsoft Priva
Implement privileged access man

Course Overview

Internet Information Services is a solution that can be delivered in a couple of hours as well as in 3 weeks – we practiced both options! IIS is a never-ending subject that requires a deep-dive if you consider using it for web farm administration or if you want to become familiar with IIS behavior in particular situations

About the course: During this intensive 4-day training students will be introduced to the process of configuring advanced IIS features, configuring security settings, performing advanced troubleshooting and monitoring. You will learn everything you need to maintain and provide availability to business Web Application platform.

Course Objectives

During this intensive 4-day training students will be introduced to the process of configuring advanced IIS features, configuring security settings, performing advanced troubleshooting and monitoring.

You will learn everything you need to maintain and provide availability to business Web Application platform.

Course Content

Module 1: Introducing, installing and configuring IIS 10 on Windows Server 2019

1. Introducing Internet Information Services 10 a. Administration tools b. Architecture overview c. Configuration System overview

2. Comparing previous versions of IIS

3. Installing the Web Server (IIS) role in Windows Server 2019 a. Discussing the deployment scenarios b. Using Server Manager c. Using Unattended Setup d. Using Command Line e. Troubleshooting installation

4. Post-installation administration tasks a. HTTP Features b. Security Settings c. Logging

Module 2: Administering Web Sites

1. Creating a Web Site, Application, Virtual Directory

2. Managing Security settings for Web Sites

3. Administering Web Site logging

4. Configuring Failed Request Tracing

5. Managing Virtual Directories and remote content

6. Configuring Authentication Types

7. Configuring Bindings

Module 3: Administering Applications and Application Pools

1. Managing Application Pools and Applications

2. Global Application Initializations

3. Managing Application Pool Identity

4. Managing Worker Processes and requests

5. CPU Throttling: Sand-boxing Sites and Applications

6. Idle Worker Process Page-Out

Module 4: Configuring Application Development Settings

1. ASP.NET Security Settings

2. ASP.NET Application Development Settings

3. Configuring ASP.NET

4. Working with .Net Core

Module 5: IIS 10 functionality extensions

1. Architecture Extensions a. CGI b. FastCGI c. ISAPI d. ASP

2. Managing Extensions a. Security b. Delegation

3. Functionality Extensions a. PHP b. WebDAV c. Media Services d. URL Rewrite

4. Performance Extensions a. Application WarmUp

5. Security Extensions a. URLScan / URLRewrite b. Dynamic IP Restrictions

6. Administrative extensions

Module 6: Managing IIS 10 Modules

1. Adding IIS 10 Modules

2. Administering IIS 10 Modules

Module 7: Securing the IIS 10 platform and web environment

1. Configuring security settings on Windows Server 2019

2. Centralized SSL Certificate Support

3. Secure Web Site settings

4. Configuring authentication and authorization

5. Restricting Web Site access

6. Secure Web Server implementation scenario

Module 8: IIS 10 Remote Management

1. Enabling and configuring remote administration

2. Enabling and configuring delegated administration

3. Enabling and configuring feature delegation

4. Managing application Host.config and Web.config access levels

5. Security considerations for remote management

Module 9: Configuring FTP Server on IIS 10

1. Managing FTP Authentication

2. Managing FTP Authorization

3. Configuring FTP Logging

4. Configuring FTP Logon Attempt Restrictions

5. Administering FTP Request Filtering

6. Configuring FTP User Isolation

Module 10: Managing IIS 10 from the command line

1. Tools overview

2. Advanced management with PowerShell

3. Tools for Running Administrative Tasks in IIS

4. Automating management with Appcmd

5. IIS 10 and scripting

6. 3 rd party management tools

Module 11: Tuning IIS 10 health and performance

1. Performance monitoring techniques

2. Monitoring IIS 10 under attack

3. Optimizing IIS 10 settings for better performance

4. Implementation scenarios analysis

5. Dynamic site activation

6. Idle Worker Process Page-out 7. HTTP/2

Module 12: Administering Web Server Availability with Web Farms

1. Shared Configuration

2. Advanced Network Load Balancing settings and configuration

3. Building the Web Farm

4. Managing the Web Farm

5. Automating tasks in multiple server IIS 10 environment

6. Policy based management

7. Server Name Indication (SNI) – SSL Scalability

8. Backing Up an IIS Web Site

9. Restoring an IIS Web site

10. Application Request routing

Module 13: IIS 10 Diagnostics

1. Auditing IIS 10 logs

2. Enhanced Logging

3. Logging to Event Tracing for Windows

4. Common error messages and examples

5. Auditing communication problems and examples

6. Troubleshooting authentication problems

7. Troubleshooting authorization problem

Course Overview

Managing Industrial Networks for Manufacturing with Cisco Technologies (IMINS2024) is a lab-intensive course, which helps you with the skills required to successfully implement and troubleshoot the most common industry standard protocols while leveraging best practices needed in security and Wireless technologies for today’s industrial networks. The IMINS2024 course helps plant administrators, control system engineers and traditional network engineers in the manufacturing, process control, and oil and gas industries, who will be involved with the convergence of IT and Industrial networks.

This course is job-role specific and enables you to achieve competency and skills to configure, maintain, and troubleshoot industry-standard network protocols as well as wireless and security technologies to ensure that current infrastructures are maximized while developing a converged platform for flexibility to support future business outcomes. Students will be exposed to multiple industrial network technologies as well as products from Cisco and other industrial suppliers.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Objectives

Upon completing this course, the learner will be able to meet these overall objectives:

Upon completing this course, you will be able to meet these objectives:
Understand the functions of the OSI Layers and TCP/IP Model
Recognize the differences between Enterprise and Industrial Networks
Troubleshoot common issues found in Layers 1, 2, 3 of the OSI Model
Describe the functions and components of Ethernet/IP Protocols
Configure and troubleshoot CIP on Cisco
Describe the functions and components of the PROFINET protocol
Configure PROFINET Protocols on Cisco Industrial Ethernet Devices
Troubleshoot common PROFINET Issues
Identify common network threats and resolutions and configure basic security components (Access Lists and AAA Features)
Configure a wireless network within an industrial environment

Course Content

Module 1: Industrial Networking Concepts and Components

Contrasting Enterprise and Industrial Environments
Configuration Tools for Industrial Ethernet Switches
Exploring Layer 2 Considerations
Layer 2 Resiliency Using Spanning-tree Protocol
Layer 2 Resiliency Considerations
Layer 2 Multicast Control and QoS
Exploring Layer 3 Considerations

Module 2: General Troubleshooting Issues

Troubleshooting Methodologies
Troubleshooting Layer 1
Troubleshooting Layer 2 Issues
Troubleshooting Layer 3 Issues

Module 3: Ethernet/IP

Exploring Ethernet/IP Communications
Exploring Hardware Capabilities
Exploring CIP Sync, CIP Motion, and CIP Safety
Exploring Embedded Switch Technology

Module 4: Troubleshooting EtherNet/IP

Identifying Common EtherNet/IP Issues
EtherNet/IP Troubleshooting Methods and Tools

Module 5: PROFINET

Describe PROFINET Functionality and Connection Method
Describing Basic PROFINET Devices

Module 6: Configuring PROFINET

Enabling and Prioritizing PROFINET at L2
Integrating Cisco Industrial Ethernet Switches

Module 7: Troubleshooting PROFINET

Identifying PROFINET Troubleshooting Methods
Exploring PROFINET Troubleshooting Tools

Module 8: Exploring Security Concerns

Overview Of Defense-in-Depth Strategy
Controlling Access and Network Traffic

Module 9: 802.11 Industrial Ethernet Wireless Networking

Understanding 802.11 Networks
Industrial WLAN Design Considerations

Lab Outline:

Labs are designed to assure learners a whole practical experience, through the following practical activities:

Connecting to the remote Lab environment
Configuring 802.1q Trunks
Configuring and Applying Custom Smartports Macros
Configuring and Applying EtherChannel
Configuring Resilient Ethernet Protocol
Configuring Resilient Ethernet Protocol Features
Configuring & Verifying Storm Control
Verify IP IGMP Snooping
Configure QoS settings
Using IOS Troubleshooting Tools
Troubleshooting Layer 2 Endpoint Device Connectivity
Troubleshooting Layer 2 Inter-Switch Connectivity
Troubleshooting Broken REP Segment
Troubleshooting Layer 3
Perform a Packet Capture
Troubleshoot Network Issues
Configure CIP on Industrial Switches
Troubleshooting EtherNet/IP Communication Issues
Configuring PROFINET Support
Troubleshoot PROFINET Communication Issues
Configure Port Security Mechanisms
Configure AAA Authentication using Cisco ISE and 802.1x

Course Overview

Gain practical skills in MLOps and AI Security, including pipeline setup, workflow automation, and threat identification

Dive into the rapidly evolving world of Machine Learning Operations (MLOps) and AI Security with our intensive 3-day boot camp. MLOps bridges the gap between data science and operation teams, delivering continuous collaboration and integration to drive the efficient production of AI models. Similarly, AI Security focuses on protecting AI systems from potential vulnerabilities, a critical skillset given the increasing reliance on AI in modern infrastructures. By mastering these skills, you’ll be able to streamline machine learning projects and bolster security within your organization.

Working in a hands-on workshop style environment guided by our AI security expert, you’ll explore a wide range of topics and hands-on labs designed to provide a robust understanding of both MLOps and AI Security. Starting from an introduction to MLOps, you’ll uncover the importance of this discipline, its distinction from DevOps and DataOps, and its lifecycle. You’ll explore MLOps tools and techniques, including MLflow and Kubeflow, along with pipeline components and best practices. You will be able to set up an MLOps environment, automate ML workflows, monitor and manage models, and implement vital security measures in real-world situations. Lastly, you’ll dive into the world of AI Security, exploring the AI threat landscape and best practices while applying basic security measures in a lab environment. The boot camp wraps up with advanced topics in AI Security, covering AI privacy, ethical considerations, adversarial attacks, and defenses.

Upon completion, you will have gained practical, hands-on skills in operationalizing and securing machine learning workflows, implementing best practices in model management, and understanding ethical considerations in AI Security. Our boot camp ensures that you will have the necessary knowledge to navigate MLOps and AI Security effectively, making your machine learning projects more efficient and secure.

Course Objectives

Throughout the course you’ll learn how to:

Gain a solid understanding of the Machine Learning Operations (MLOps) lifecycle, including its purpose, key elements, and how it differs from related fields like DevOps and DataOps.
Develop practical skills in using key MLOps tools and techniques, such as setting up an MLOps environment using MLflow and Kubeflow, and working through a basic machine learning pipeline.
Master the art of automating machine learning workflows to streamline and improve the efficiency of your machine learning projects.
Familiarize yourself with the AI Security landscape, including threat identification and application of best practices for securing machine learning environments.
Dive deep into advanced AI Security concepts, including understanding and implementing differential privacy in machine learning models and defending against adversarial attacks.
Learn to balance technical implementation with ethical considerations, developing a well-rounded approach to AI Security that respects privacy concerns and adheres to ethical guidelines.

Course Content

Day 1: Introduction to Machine Learning Operations (MLOps)

1. Introduction to MLOps

Understanding the need for MLOps
Differences between MLOps, DevOps, and DataOps
MLOps lifecycle overview

2. MLOps Tools and Techniques

Overview of MLOps tools (MLflow, Kubeflow, etc.)
MLOps pipeline components
MLOps best practices
Hands-on Lab: Setting Up an MLOps Environment using MLflow
Walking through a simple machine learning pipeline

3. Automating Machine Learning Workflows

The role of automation in MLOps
Continuous Integration and Continuous Deployment (CI/CD) in machine learning
Hands-on Lab: Automating ML workflows

Day 2: Advanced MLOps and Beginning AI Security

4. Model Monitoring and Management

Understanding model decay
Monitoring model performance in production
Model versioning and rollback
Hands-on Lab: Model Management
Implementing model monitoring with MLflow
Experimenting with model versioning and rollback

5. Introduction to AI Security

Understanding the need for AI Security
Overview of AI threat landscape
AI Security best practices
Hands-on Lab: Implementing basic security measures in a machine learning environment

Day 3: Advanced AI Security

6. AI Privacy and Ethical Considerations (2 hours)

Privacy risks in AI/ML applications
Understanding differential privacy
Ethical considerations in AI Security
Hands-on Lab: Implementing differential privacy in a machine learning model

7. AI Adversarial Attacks and Defenses

Understanding adversarial attacks
Techniques to defend against adversarial attacks
Hands-on Lab: Defending Against Adversarial Attacks
Implementing defense measures against sample adversarial attacks

Course Overview

The Lead Cloud Security Manager training course enables participants to develop the competence needed to implement and manage a cloud security program by following widely recognized best practices.

The growing number of organizations that support remote work has increased the use of cloud computing services, which has, in turn, increased the demand for a secure cloud infrastructure proportionally.

This training course is designed to help participants acquire the knowledge and skills needed to support an organization in effectively planning, implementing, managing, monitoring, and maintaining a cloud security program based on ISO/IEC 27017 and ISO/IEC 27018. It provides a comprehensive elaboration of cloud computing concepts and principles, cloud computing security risk management, cloud-specific controls, cloud security incident management, and cloud security testing.

The training course is followed by the certification exam. If you successfully pass it, you can apply for a “PECB Certified Lead Cloud Security Manager” credential. A PECB Lead Cloud Security Manager Certificate demonstrates your ability and competencies to manage a cloud security program based on best practices.

Course Objectives

Gain a comprehensive understanding of the concepts, approaches, methods, and techniques used for the implementation and effective management of a cloud security program
Acknowledge the correlation between ISO/IEC 27017, ISO/IEC 27018, and other standards and regulatory frameworks
Gain the ability to interpret the guidelines of ISO/IEC 27017 and ISO/IEC 27018 in the specific context of an organization
Develop the necessary knowledge and competence to support an organization in effectively planning, implementing, managing, monitoring, and maintaining a cloud security program
Acquire the practical knowledge to advise an organization in managing a cloud security program by following best practices

Course Content

Day 1: Introduction to ISO/IEC 27017 and ISO/IEC 27018 and the initiation of a cloud security program

Training course objectives and structure
Standards and regulatory frameworks
Fundamental cloud computing concepts and principles
Understanding the organization’s cloud computing architecture
Information security roles and responsibilities related to cloud computing
Information security policy for cloud computing

Day 2: Cloud computing security risk management and cloud-specific controls

Cloud computing security risk management
Selection and design of cloud-specific controls
Implementation of cloud-specific controls (part 1)

Day 3: Documented information management and cloud security awareness and training

Implementation of cloud-specific controls (part 2)
Documented information management in the cloud
Cloud security awareness and training

Day 4: Cloud security incident management, testing, monitoring, and continual improvement

Cloud security incident management
Cloud security testing
Monitoring, measurement, analysis, and evaluation
Continual improvement
Closing of the training course

Course Overview

This two-day course provides foundational troubleshooting skills. In this course, students will learn to use common Junos troubleshooting commands and tools.

This course will help students to acquire the skills needed to perform basic troubleshooting on Juniper devices.

Students will learn to troubleshoot the control plane, the forwarding plane, and the secure the connection between the two planes from DDoS attacks.

Students will also learn to troubleshoot common network services such as DHCP, DNS, and authentication services.

Students will get hands-on practice using vMX Series, vSRX Series, and vQFX Series devices in the lab.

The course is based on Junos OS Release 22.3R1.

Note: For those who have previously taken the Juniper Troubleshooting in the NOC (JTNOC) course, we recommend moving to the next course in the learning path, Advanced Junos Troubleshooting.

This is an Intermediate level course.

Related Juniper Product

Junos OS • vSRX Series • vMX Series • vQFX Series

Course Objectives

• Describe Junos products and related information and recovery options.

• Explain various tools that can be used to troubleshoot Junos devices.

• Explain Junos CLI commands used in troubleshooting.

• Identify and isolate hardware issues.

• Troubleshoot problems with the control plane.

• Describe control plane protection features.

• Troubleshoot problems with interfaces and other data plane components.

• Describe the staging and acceptance methodology.

• Troubleshoot networking services.

• Troubleshoot high availability features.

• Describe how to monitor your network with SNMP, RMON, Junos Telemetry Interface, Junos Traffic Vision (formerly known as JFlow), and port mirroring.

Course Content

Day 1

Course Introduction

Junos Product Families

• Describe the architectural philosophy of devices that run the Junos OS and understand how this relates to troubleshooting

• Describe traffic processing for transit and exception traffic

• Describe the function and components of the RE and PFE within a device running the Junos OS

• Describe FRUs

• Describe current Junos product families and understand where to go for detailed information about your hardware

Lab 1: Identifying Hardware Compon

Troubleshooting Toolkit

• Describe various tools that can be used to troubleshoot devices that run the Junos operating system

• Explain JTAC recommendations for current best-practices that facilitate troubleshooting

Lab 2: Using Monitoring Tools and Establishing a Baseline

Hardware and Environmental Conditions

• Describe the key commands and features used to monitor storage and memory issues

• Describe the key commands and features that you can use to monitor software installations

• Determine how to find potential hardware problems using system logs

• Describe the key commands that you can use to monitor hardware and environmental issues

Lab 3: Monitoring Hardware and Environmental Conditions

Control Plane

• Monitor and troubleshoot system processes that reside in the control plane

• Utilize a logical approach to troubleshooting routing issues that reside in the control plane

• Monitor and troubleshoot basic bridging and ARP functionalities

Lab 4: Control Plane Monitoring and Troubleshooting

Control Plane Protection

• Describe DDoS attacks

• Explain and configure the DDoS protection feature

• Outline using firewall filters to protect the control plane

Lab 5: Protecting the Control Plane

Day 2

Data Plane: Interfaces

• Describe physical and logical interface properties

• Deactivate and disable interfaces

• Perform loopback testing

• Use operational mode commands to monitor and troubleshoot Ethernet interfaces

Lab 6: Monitoring and Troubleshooting Ethernet Interfaces

Data Plane: Other Components

• Recognize data plane problems and components

• Monitor and troubleshoot data plane forwarding

• Monitor load balancing

• Troubleshoot firewall filter and policer issues

Lab 7: Isolating and Troubleshooting PFE Issues

Staging and Acceptance Testing

• Perform a Junos device initial inspection and power-on

• Perform general system checks recommended for a newly deployed Junos device

• Determine the status of new interface connections by performing loopback testing and monitoring

Troubleshooting Network Services

• Discuss DNS, DHCP, NTP, SSH, SNMP, and telemetry

• Explain authentication issues

• Discuss MACsec issues

• Discuss LLDP issues

Lab 8: Troubleshooting Network Services

Troubleshooting High Availability Features

• Discuss LACP, BFD, NSR, and NSB issues

• Explain graceful routing engine switchover

• Explain graceful restart

• Discuss Aggregated Ethernet issues

• Discuss MC-LAG issues

• Discuss VRRP issues

Network Monitoring

• Explain how to configure and monitor SNMP

• Discuss how to configure and monitor RMON

• Describe how to use the Junos telemetry interface

• Describe how to use flow monitoring

Lab 9: Monitoring the Network

Appendix A: Junos RPM

• Explain the purpose of the Junos RPM

• Describe the components of the Junos RPM

• Implement Junos RPM Probes

• Monitor the deployed Probes

Course Overview

This two-day course is designed to provide students with the knowledge required to manage the Junos Space Security Director application and manage devices with that application.

Students will gain in-depth knowledge of how to work with Security Director.

Through demonstrations and hands-on labs, students will gain experience with the features of Security Director.

This course is based on Junos Space Release 20.1R1 and Security Director 20.1R1.2.

Junos Space-Security Director (JS-SD) is an intermediate-level course.

Relevant Juniper Product

• Automation • Network Management • Security • vSRX • Junos Space Security Director

Course Objectives

• Explain the purpose of the Security Director application.

• Describe the Security Director workspaces.

• Discuss how to manage SRX chassis clusters through the Security Director application.

• Explain basic security device discover, configuration, and management through the Security Director application.

• Explain the purpose of firewall policies.

• Configure Standard and Unified firewall policies.

• Use policy management features.

• Describe how to create and manage IPsec VPNs using Security Director.

• Describe how to import IPsec VPNs using Security Director.

• Describe NAT.

• Describe how to configure NAT policies in Security Director.

• Explain how to manage IPS policies.

• Discuss how to manage UTM policies.

• Describe how to manage SSL-Proxy policies.

• Describe how to manage configuration changes.

• Give an overview of the Log Director application and architecture.

• Understand the Log Director installation process.

• Use the Security Director event viewer.

• Explain the Security Director event viewer.

• Discuss how to generate alerts and notifications.

• Explain how to generate reports.

Course Content

Day 1

Course Introduction

Introduction to Security Director

• Security Director Overview

• Navigating the Security Director Application

• Device Support

• Basic Device Configuration and Setup

• Chassis Clustering

• Manage Device Licenses

LAB 1: Introduction to Security Director

Security Director—Firewall Policies

• Firewall Policies Overview

• Defining Security Objects

• Configuring a Standard Firewall Policy

• Configuring a Unified Firewall Policy

• Managing Policies

LAB 2: Provisioning Firewall Policies

Deploying VPNs

• Creating IPsec VPNs

• Importing IPsec VPNs

LAB 3: Provisioning IPsec VPNs

Deploying NAT Policies

• Overview of NAT

• Configuring NAT Policies in Security Director

LAB 4: Provisioning NAT Policies

Day 2

IPS, UTM, and SSL Proxy Policies

• Managing IPS Policies

• Managing UTM Policies

• Managing SSL Proxy Policies

• Deploying Configuration Changes Review

LAB 5: Provisioning IPS and UTM Policies and SSL Proxy Profiles

Monitoring and Reporting

• Log Director Overview, Installation, and Administration

• Log Events

• Alerts and Reports

LAB 6: Deploying Log Director