SWSA
Securing the Web with Cisco Web Security Appliance (Exam 300-725 SWSA)
The Securing the Web with Cisco Web Security Appliance v1.0 (SWSA 300-725) exam is a 90-minute exam associated with the CCNP Security, and Cisco Certified Specialist - Web Content Security certifications. This exam tests a candidate's knowledge of Cisco Web Security Appliance, including proxy services, authentication, decryption policies differentiated traffic access policies and identification policies, acceptable use control settings, malware defense, and data security and data loss prevention.
Course Outline:
- Describe Cisco WSA features and functionality
- Describe WSA solutions
- Integrate Cisco WSA with Splunk
- Integrate Cisco WSA with Cisco ISE
- Troubleshoot data security and external data loss using log files
- Perform initial configuration tasks on Cisco WSA
- Configure an Acceptable Use Policy
- Configure and verify web proxy features
- Configure a referrer header to filter web categories
- Compare proxy terms
- Describe tune caching behavior for safety or performance
- Describe the functions of a Proxy Auto-Configuration (PAC) file
- Describe the SOCKS protocol and the SOCKS proxy services
- Describe authentication features
- Configure traffic redirection to Cisco WSA using explicit forward proxy mode
- Describe the FTP proxy authentication
- Troubleshoot authentication issues
- Describe SSL and TLS inspection
- Configure HTTPS capabilities
- Configure self-signed and intermediate certificates within SSL/TLS transactions
- Describe access policies
- Describe identification profiles and authentication
- Troubleshoot using access logs
- Configure URL filtering
- Configure the dynamic content analysis engine
- Configure time-based & traffic volume acceptable use policies and end user notifications
- Configure web application visibility and control (Office 365, third-party feeds)
- Create a corporate global acceptable use policy
- Implement policy trace tool to verify corporate global acceptable use policy
- Configure WSA to inspect archive file types
- Describe anti-malware scanning
- Configure file reputation filtering and file analysis
- Describe Advanced Malware Protection (AMP)
- Describe integration with Cognitive Threat Analytics
- Configure and analyze web tracking reports
- Configure Cisco Advanced Web Security Reporting (AWSR)
- Troubleshoot connectivity issues