Cisco
Technology
Security
Cisco Umbrella Test Drive Operations (UMBTD)

Cisco Umbrella is a cloud security platform that provides the first line of defense against threats on the internet. Being able to understand how this works and what are the features is the key focus of this course.

About the course

Prerequisites:

The knowledge and skills that the learner should have before attending this course are as follows:

  • Basic understanding of Cisco products and solutions

Course Objectives:

Upon successful completion of this course, the learner will gain the following knowledge:

  • Describe Cisco Umbrella
  • Understand Secure Internet Gateway & Ransomware Protection
  • Comprehend Umbrella Different Policies
  • Describe Command & control callback and other security settings blocking
  • Discuss Threat Intelligence
  • Compare Umbrella Packages
  • Understand Roaming Security
  • Use Cisco Roaming Client
  • Understand the role the Cisco Umbrella Virtual Appliance
  • Integrate Cisco Umbrella into Active Directory
  • Configure Umbrella Reporting
Course content

Cisco Umbrella – Security Solution

  • Secure Internet Gateway
  • Ransomware Protection
  • DNS & IP layer enforcement
  • Intelligent Proxy
  • Command & control callback blocking
  • Threat Intelligence
  • Umbrella Packages

Implementing Cisco Umbrella

  • Cisco Umbrella Overview
  • Protect Your Network
  • Point Your DNS to Cisco Umbrella
  • DNS Policies
  • Firewall Policies
  • Web Policies
  • Umbrella Policy Tester
  • Policy Precedence

Roaming Client

  • Umbrella Roaming Client – Introduction
  • Prerequisites
  • Downloading and Installing
  • Verifying Operation
  • Policy Configuration
  • Adding IP Layer Enforcement
  • Status, States, and Functionality
  • Virtual Appliances
  • Troubleshooting
  • Internal Domains

Umbrella Roaming Security

  • AnyConnect: Cisco Umbrella Roaming Security Client Administrator Guide
  • Cisco Umbrella Dashboard Configuration
  • Cisco Certificate Import

Virtual Appliance Setup Guide

  • Deployment Guidelines
  • Configuring Your VAs
  • Local DNS Forwarding
  • Reroute DNS
  • Sites and Internal Networks
  • Sizing

Active Directory

  • Active Directory Setup
  • Set Up DNS Forwarding with Your VAs
  • Active Directory Environment
  • Route DNS Traffic
  • Communication Flow and Troubleshooting
  • Multiple Active Directory and Umbrella Sites

Reporting

  • Reporting Basics
  • Understanding Security Categories
  • Scheduled Reports: Overview and Setup
  • Security Overview Report
  • Activity Search Report
  • Security Activity Report
  • Destinations Report
  • Identities Report
  • Cloud Services Report
  • Admin Audit Log Report

Lab Outline:

Labs are designed to assure learners a whole practical experience, through the following practical activities:

  • DNS Protection
  • Network Tunnel Creation
  • Cloud Delivered Firewall
  • Activate Directory User Sync
  • Secure Web Gateway
  • Reporting
Who Should Attend

The primary audience for this course is as follows:

  • Channel Partner
  • System Engineers
  • System Administrators
  • System  Architects