Traps 4.2: Deploy and Optimize (285)

Course Description Schedule Course Outline
 

Course Content

Palo Alto Networks® Traps™ Advanced Endpoint Protection prevents sophisticated vulnerability exploits and unknown malware-driven attacks. Successful completion of this two-day, instructor-led course should prepare the student to deploy on-premise Traps in large-scale or complex configurations and optimize its configuration.

Who should attend

Security Engineers, System Administrators, and Technical Support Engineers

Prerequisites

  • Traps 4.2: Install, Configure and Manage (281)
  • Students should have completed “Traps: Install, Configure, and Manage” or (for Palo Alto Networks employee and partner SEs) “PSE: Endpoint Associate” training. Windows system administration skills and familiarity with enterprise security concepts also are required. An elementary level of Linux shell experience is needed only for the Linux lab activity

Course Objectives

Students should learn how to design, build, implement, and optimize large-scale Traps deployments: those with multiple servers and/or thousands of endpoints. In hands-on lab exercises, students will distribute Traps endpoint software in an automated way, prepare master images for VDI deployment, create a Traps Linux installation package and install the agent onto a Linux endpoint, build multi-ESM deployments, design and implement customized policies, test Traps with exploits created using Metasploit, and examine prevention dumps with windbg.

Outline: Traps 4.2: Deploy and Optimize (285)

Module 1: Scaling Server Infrastructure

  • Small site architectures
  • Large site architectures
  • TLS/SSL deployment considerations
  • Installing and configuring the Linux agent

Module 2: Scaling Agent Deployment

  • Distributing Traps via GPO
  • Configuring Virtual Desktop Infrastructure with Traps

Module 3: ESM Tuning

  • Tuning ESM settings
  • External logging and SIEM integration
  • Role-based access control (RBAC)
  • Virtual groups
  • Defining conditions
  • Tuning policies
  • Implementing ongoing maintenance

Module 4: Windows Migrations for Traps

  • SQL database migration
  • SSL certificate migration

Module 5: Advanced Traps Forensics

  • Best practices for managing forensic data
  • Agent queries
  • Resources for malicious software testing
  • Exploit challenge testing with Metasploit
  • Exploit dump analysis with windbg

Module 6: Advanced Traps Troubleshooting

  • ESM and Traps architecture
  • Troubleshooting scenarios using dbconfig and cytool
  • Troubleshooting application compatibility and BITS connectivity
Classroom Training
Modality: G

Duration 2 days

Price
  • Canada: CAD 2,595
Dates and Booking
Online Training
Modality: U

Duration 2 days

Price
  • Canada: CAD 2,595
Dates and Booking
 
Click on town name to book Schedule
This is an Instructor-Led Classroom course
Fast Lane will carry out all guaranteed training regardless of the number of attendees, exempt from force majeure or other unexpected events, like e.g. accidents or illness of the trainer, which prevent the course from being conducted.
This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.
This is a FLEX course, which is delivered both virtually and in the classroom.
  *   This class is delivered by a partner.
Canada

Currently there are no training dates scheduled for this course.  For enquiries please write to info@fastlaneca.com.

United States
Dec 6-7, 2018 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Dec 20-21, 2018 Guaranteed to Run Online Training 07:00 US/Pacific * Enroll
Europe
Germany
Feb 14-15, 2019 Münster * Enroll
Apr 3-4, 2019 Munich * Enroll
Jul 25-26, 2019 Münster * Enroll
Nov 7-8, 2019 Munich * Enroll
Bulgaria
May 9-10, 2019 This is a FLEX event Sofia Course language: English Enroll
Online Training Time zone: Europe/Sofia Enroll
France
Dec 12-13, 2018 Paris * Enroll
Feb 14-15, 2019 Paris * Enroll
May 16-17, 2019 Paris * Enroll
Sep 12-13, 2019 Paris * Enroll
Dec 5-6, 2019 Paris * Enroll
Portugal
May 6-7, 2019 Lisbon Enroll
Nov 4-5, 2019 Lisbon Enroll
Romania
Feb 20-21, 2019 This is a FLEX event Bucharest Course language: English Enroll
Online Training Time zone: Europe/Bucharest Enroll
Slovakia
Oct 2-3, 2019 This is a FLEX event Bratislava Enroll
Online Training Time zone: Europe/Bratislava Enroll
Slovenia
Nov 27-28, 2019 This is a FLEX event Ljubljana Course language: English Enroll
Online Training Time zone: Europe/Ljubljana Enroll
Spain
Apr 29-30, 2019 Madrid Enroll
Oct 28-29, 2019 Madrid Enroll
Turkey
Jun 19-20, 2019 This is a FLEX event Istanbul Course language: English Enroll
Online Training Time zone: Asia/Istanbul Enroll
United Kingdom
Jan 30-31, 2019 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Apr 25-26, 2019 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Jul 17-18, 2019 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Oct 9-10, 2019 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Dec 18-19, 2019 This is a FLEX event London, City Enroll
Online Training Time zone: Europe/London Enroll
Latin America
Mexico
Jan 21-22, 2019 This is a FLEX event Distrito Federal * Enroll
Online Training Time zone: America/Mexico_City Enroll
May 8-9, 2019 This is a FLEX event Distrito Federal * Enroll
Online Training Time zone: America/Mexico_City Enroll