SASAFTD10 – Securing Enterprise with FirePOWER Threat Defense v1.0 (SASAFTD10 )

SASAFTD10 – Securing Enterprise with FirePOWER Threat Defense v1.0 (SASAFTD10 )


Duration: 4 Days

Enterprises are using technology to transform all parts of their business. This digital transformation is taking place at breakneck speed and with them comes the challenge to balance productivity with security. The lack of unified protection creates multiple blind spots. Attackers exploit these gaps, leaving organizations vulnerable and too often unaware of threats and attacks. Cisco has the industry’s first fully integrated, threat-focused next-generation Firewall with unified Management, designed for a new era of threat and advanced malware protection. The Cisco FirePOWER Next-Generation Firewall is the industry’s first fully integrated, threat-focused NGFW. It delivers comprehensive, unified policy management of firewall functions, application control, threat prevention, and advanced malware protection from the network to the endpoint.

This 4-days workshop is designed to help participants understand the basic fundamentals of Firepower Threat Defense on Cisco ASA 5500-X Series. It delivers an integrated threat defense across the entire attack continuum — before, during, and after an attack. You should at the end of this workshop feel confident to go with Cisco FirePOWER Next-Generation Firewall (NGFW) solution to address all your network security requirements.


After completing this course you should be able to:
  • Describe the features and benefits of Cisco's Next Generation Adaptive Security Appliances and NGFW technology.
  • Complete initial configuration
  • Overview of Cisco FirePOWER Next-Generation Firewall  solution
  • Understand the capabilities of the Cisco FirePOWER NGFW
  • Describe how to deploy, configure and manage Cisco FirePOWER NGFW
  • Explore the FirePOWER Management Center using the Context Explorer
  • Describe the various detection technologies used in the FirePOWER system
  • Navigate the user interface and administrative features of the FirePOWER system, including reporting functionality to properly assess threats
  • Use Access Control, File Policies and Intrusion Policies to control traffic within a network
  • Describe Cisco Advanced Malware Protection (AMP) for networks, and the implementation procedure of file control and advanced malware protection
  • Analyse files to determine their level of threat and trajectory within a network
  • Integrate Active Directory with FirePOWER and User Agent for User based policies
  • Understand the Tuning capability
  • Migration considerations
  • Learn Site-to-Site VPN feature
  • Attempt malware file transfers to trigger the malware blocking File Policy rule
  • Observe the IPS and Malware events in the FirePOWER Management Center
Lab 1 : Configuring ASA 
Lab 2 : Configuring the FTD module and FirePOWER Management Center 
Lab 3 : Configuring File, IPS and Access Control Policy 
Lab 4 : Test Basic ASA firePOWER Malware Protection 
Lab 5 : Test firePOWER Network Discovery Feature 
Lab 6 : Test Basic firePOWER IPS Operation 
Lab 7 : Configure and Test Access Control Policy 
Lab 8 : Integrating Microsoft Active Directory with firePOWER 
Lab 9 : Configuring Basic Custom Application Detector 
Lab 10 : Configuring DNS Policy 
Lab 11 : Configuring SSL Policy 
Lab 12 : Tuning Your HTTP _Inspect Pre-processor 
Lab 13 : Creating A Correlation Policy and Working with Connection Data and Traffic Profiles 
Lab 14 : Analysing Events Using Context Explorer 
Lab 15 : Creating User Accounts and Configuring UI Timeout Value 
Lab 16 : Testing Exempt vs. Non-exempt Users 
Lab 17 : Escalating Permissions
Lab 18 : Creating Objects and Variable set. 
Lab 19 : Creating New Variable Set 
Lab 20 : Examine Others Firepower v6.2 Features 
Lab 21 : Configuring Rate limiting 
Lab 22 : Configuring site to site VPN 
Lab 23 : Enabling Safe search feature 
Lab 24 : Reporting 
Lab 25 : Migration Tool
This course is not associated with any Certification.

Attendees should meet the following prerequisites:

  • CCNA certified preferably CCNA Security Certified or equivalent experience
Course ID:

Show Schedule for:

Please provide as much information as possible for us to help you with your enquiry.