1­-855­-778­-7246

Traps 4.2: Deploy and Optimize (285)

 

Course Content

Palo Alto Networks® Traps™ Advanced Endpoint Protection prevents sophisticated vulnerability exploits and unknown malware-driven attacks. Successful completion of this two-day, instructor-led course should prepare the student to deploy on-premise Traps in large-scale or complex configurations and optimize its configuration.

Who should attend

Security Engineers, System Administrators, and Technical Support Engineers

Prerequisites

  • Traps 4.2: Install, Configure and Manage (281)
  • Students should have completed “Traps: Install, Configure, and Manage” or (for Palo Alto Networks employee and partner SEs) “PSE: Endpoint Associate” training. Windows system administration skills and familiarity with enterprise security concepts also are required. An elementary level of Linux shell experience is needed only for the Linux lab activity

Course Objectives

Students should learn how to design, build, implement, and optimize large-scale Traps deployments: those with multiple servers and/or thousands of endpoints. In hands-on lab exercises, students will distribute Traps endpoint software in an automated way, prepare master images for VDI deployment, create a Traps Linux installation package and install the agent onto a Linux endpoint, build multi-ESM deployments, design and implement customized policies, test Traps with exploits created using Metasploit, and examine prevention dumps with windbg.

Outline: Traps 4.2: Deploy and Optimize (285)

Module 1: Scaling Server Infrastructure

  • Small site architectures
  • Large site architectures
  • TLS/SSL deployment considerations
  • Installing and configuring the Linux agent

Module 2: Scaling Agent Deployment

  • Distributing Traps via GPO
  • Configuring Virtual Desktop Infrastructure with Traps

Module 3: ESM Tuning

  • Tuning ESM settings
  • External logging and SIEM integration
  • Role-based access control (RBAC)
  • Virtual groups
  • Defining conditions
  • Tuning policies
  • Implementing ongoing maintenance

Module 4: Windows Migrations for Traps

  • SQL database migration
  • SSL certificate migration

Module 5: Advanced Traps Forensics

  • Best practices for managing forensic data
  • Agent queries
  • Resources for malicious software testing
  • Exploit challenge testing with Metasploit
  • Exploit dump analysis with windbg

Module 6: Advanced Traps Troubleshooting

  • ESM and Traps architecture
  • Troubleshooting scenarios using dbconfig and cytool
  • Troubleshooting application compatibility and BITS connectivity
Classroom Training

Duration 2 days

Price
  • Canada: CAD 2,595
Online Training

Duration 2 days

Price
  • Canada: CAD 2,595
 
Click on town name to book Schedule
This is an Instructor-Led Classroom course
Fast Lane will carry out all guaranteed training regardless of the number of attendees, exempt from force majeure or other unexpected events, like e.g. accidents or illness of the trainer, which prevent the course from being conducted.
This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
  *   This class is delivered by a partner.
Canada

Currently there are no training dates scheduled for this course.  For enquiries please write to info@fastlaneca.com.

United States
Sep 26-27, 2019 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Oct 17-18, 2019 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Nov 7-8, 2019 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Nov 21-22, 2019 Guaranteed to Run Online Training 09:00 US/Eastern * Enroll
Dec 5-6, 2019 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Dec 19-20, 2019 Guaranteed to Run Online Training 09:00 US/Eastern * Enroll
Dec 26-27, 2019 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Jan 2-3, 2020 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Jan 16-17, 2020 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Jan 30-31, 2020 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll