Cisco AnyConnect Secure Mobility & VDI Demo Guide

Size: px
Start display at page:

Download "Cisco AnyConnect Secure Mobility & VDI Demo Guide"

Transcription

1 Cisco AnyConnect Secure Mobility & VDI Demo Guide (partner version) Overview... 2 Value Proposition... 2 Deployment Scenario... 3 Role Play Demo Script... 5 Demo Equipment Bill of Material... 9 Demo Documentation & Configuration Highlight Page 1

2 Overview With the ever- increasing demand for business usage on mobile devices including laptops, netbooks, iphone, ipad, and other smartphones and tablets, corporate network and security administrators have a need to provide secure access to corporate network, intranet applications as well as SaaS applications for those mobile device users no matter whether they are inside and outside office. Cisco offers AnyConnect Secure Mobility to extend the network perimeter to remote endpoints, enabling the seamless integration of web filtering services offered by the Web Security appliance. Cisco AnyConnect Secure Mobility provides an innovative new way to protect mobile users on computer- based or smart- phone platforms, providing a more seamless, always- protected experience for end users and comprehensive policy enforcement for IT administrators. The goal of this demo is to demonstrate how Cisco AnyConnect Secure Mobility works using Windows, ipad and iphone and at the same time showcase some of the key differentiators of ASA, WSA and AnyConnect. We also demonstrate how a remote user can securely access their intranet applications or host through virtual desktop from mobile devices and laptops. We will showcase a typical Internet edge deployment with ASA and WSA. AnyConnect clients are installed on Windows, ipad and iphone. AnyConnect Secure Mobility is a collection of features across the following Cisco products: Cisco IronPort Web Security appliance (WSA) Cisco ASA 5500 series adaptive security appliance (ASA) Cisco AnyConnect client Value Proposition Cisco AnyConnect Secure Mobility addresses the challenges of a mobile workforce by offering the following features: Secure, persistent connectivity. Cisco AnyConnect client (with the adaptive security appliances as the headend) provides the remote access connectivity portion of AnyConnect Secure Mobility. The connection is secure because both the user and device must be authenticated and validated prior to being provided access to the network. The connection is persistent because AnyConnect SSL VPN connection is typically configured to be always- on even when roaming between networks. Although Page 2

3 AnyConnect VPN connection is always- on, it is also flexible enough to apply different policies based on user and location, allowing users access to the Internet in a captive portal situation, when users must accept terms of agreement before accessing the Internet. Consistent security and policy enforcement. The Web Security appliance applies context- aware policies, including enforcing acceptable use policies and protection from malware for all users, including mobile (remote) users. The Web Security appliance also accepts user authentication information from the adaptive security appliance based on its authentication of the AnyConnect client, providing an automatic authentication step for the user to access web content. Deployment Scenario The deployment scenario in above figure illustrates ASA using WCCP to redirect web traffic to the WSA. Alternatively, WCCP router can be used to transparently redirect web traffic to the WSA. In this scenario, we are not using the WCCP feature on Cisco router. Using the WCCP functionality in the ASA to redirect web traffic to the WSA, it allows us to use any router in this deployment scenario. With this deployment scenario, ASA tunnels all VPN traffic to its default gateway which is a Cisco router. The router returns VPN web traffic back to the ASA, and forwards non- web traffic based on its routing table. The ASA then uses WCCP to redirect web traffic to the WSA for scanning. The WSA must be configured with a default route to the Internet gateway to enforce its policies. In addition, the WSA must be configured with a route back to the ASA to return scanned traffic back to the AnyConnect client. The Citrix VDI server is installed on Cisco Unified Computing System (UCS). Cisco AnyConnect Secure Mobility Demo Guide Page 3

4 ASA The idea is to show how ASA works as a firewall and SSL VPN headend. - WCCP is enabled on ASA and ASA will redirect AnyConnect client s HTTP and HTTPS to WSA WSA We will demonstrate WSA functionality on: blocking malicious or malware site enforcing web access policy based on remote user identity SaaS single sign- on (e.g. WebEx) Demonstrating data security (e.g. blocking upload of PDF document using gmail.com) AnyConnect Anyconnect Secure Mobility - AnyConnect SSO to WebEx through IronPort WSA - Platform agnostic Anyconnect (e.g. Windows, iphone, ipad) SSL VPN connection to ASA Firewall - Connection persistence Page 4

5 Role Play Demo Script Financial Controller (FC) is on vacation trip. Sales Director (SD) is now in coffee shop and is going to have a WebEx web conferencing session with Managing Director and needs to get this quarter s financial report from FC. SD opens his laptop and starts AnyConnect SSL VPN connection to connect back to his office VPN headend remoteaccess.im- hk.com. He then calls up FC and asks for her help to get the financial report which is only available in company intranet server. SD finds that the existing Wifi connection is not stable and he switches his laptop from using Wifi connection- 1 to Wifi connection- 2 which has a strong signal. The AnyConnect SSL VPN connection reconnects without the need for re- authentication. Figure 1: AnyConnect login screen on Windows Narrator: Cisco AnyConnect client supports always- on and persistent connection which allows users to restore his last SSL VPN session without the need to re- authenticate. This provides a very user- friendly and seamless secure access to corporate network. SD opens hk.com and automatically sign on to his WebEx account. He then calls up FC and ask for her help. Narrator: Cisco IronPort Web Security Appliance supports SaaS single sign- on and allow users to sign on to SaaS applications without the need to remember each single SaaS application password. This can greatly improve work efficiency and security. It also helps the IT administrator to manage SaaS access and track SaaS application usage and user activities much easier. For example, ex- employee will not be able to access SaaS applications since their account on company directory server has been disabled. Page 5

6 Figure 2: WebEx user home page after single sign- on through WSA Since FC is on vacation and she carries only ipad with her, she will use AnyConnect to access internal server using RDP or Citrix client and the financial report to SD. SD thanks FC and drops the phone call. Figure 3: AnyConnect view on ipad Figure 4: RDP client accessing her own desktop and send the with financial report Cisco AnyConnect Secure Mobility Demo Guide Page 6

7 Narrator: Cisco IronPort Web Security Appliance gets the remote AnyConnect user identity from ASA and administrator can enforce remote user web access policy. We can demonstrate that only selected restricted user can access some intranet server remotely. In this demo, we use RDP ipad client instead of web browser due to limit in time to set up intranet application web server in demo environment. SD gets his with financial report and wants to upload the file to his gmail.com for future use but gets blocked due to corporate policy. He then recalls that it is not allowed by company security policy. Narrator: Cisco IronPort Web Security Appliance gets the remote AnyConnect user identity from ASA can apply local and/or remote data security policy (e.g. blocking upload of Office or PDF document). FC drops the phone call and she recalls that she wants to use her ipad to check the lottery result last night because there is a big pool. FC accesses and the access gets blocked by IronPort WSA due to corporate policy. She recalls that her ipad is still connecting using AnyConnect. Figure 5: End User Notification Page showing that the access is blocked Narrator: Cisco IronPort Web Security Appliance can enforce web usage control for remote users. Administrator can choose to control web usage according to user identity or user group, and can have different policies depending on whether the user is in office or outside office. She then checks a message on Facebook which is sent by her friend, and click on the URL in the message, and web access gets blocked by IronPort WSA due to poor web reputation. She says that it is lucky that she is still protected by the company security gateway. Page 7

8 Figure 6: A malicious URL in Facebook message and the web page gets blocked due to poor web reputation Narrator: Cisco IronPort Web Security Appliance can block malicious content effectively by web reputation and/or antimalware scanning engines by McAfee/WebRoot (and also Sophos). Although some people say that there is no virus or malware on ipad yet, however, your ipad is still vulnerable to be infected/hijacked (just think of visiting jailbreak site and by just one single click, your ipad has been jailbreaked and installed with jailbreak program). Page 8

9 Demo Equipment Bill of Material The customer needs: * Cisco Adaptive Security Appliance (ASA) 8.3 or above * Cisco AnyConnect Secure Mobility Client 2.5 or above * Cisco IronPort Web Security Appliance (WSA) 7.0 or above The below is a sample equipment list for a customer size of 250 users. Please note that any ASA model will work. AnyConnect Mobile license is required if customer requires AnyConnect support on mobile devices like Windows mobile, iphone, ipad, etc. Please note that Secure Mobility involves user licenses on two devices; AnyConnect license on the ASA, and Secure Mobility license on the WSA. - - AnyConnect license: Maximum expected concurrent SSL VPN connections Secure Mobility license on the WSA: Total number of remote users. Licensing information can be found in:- nnect25features.html Product Number Description Quantity ASA5510- BUN- K9 ASA 5510 Appliance with SW, 1 5FE,3DES/AES ASA- AC- E AnyConnect Essentials VPN 1 License - ASA 5510 (250 Users) ASA- AC- M AnyConnect Mobile - ASA 5510 (req. Essentials or Premium) 1 (required if support of mobile devices is required) WBUN- 2A- EN- DBC- 1Y Dual IronPort S160, 1yr WUC, Number of users WREP, ASPY, AV & Platinum support CASM- ACP- EN- 1Y Cisco Secure Mobility for AnyConnect Premium Enterprise 1 Year License Key ( user tier) Number of users Page 9

10 Demo Documentation & Configuration Highlight WSA 7.0 documentation: AnyConnect 2.5 documentation: e/anyconnectadmin25.html ASA 8.3 documentation: Page 10

11 Highlights of configurations:- Router configuration: (in the demo, router just uses one interface ) ip default- gateway ip route Note: define default gateway and route to firewall IP address Firewall configuration: (internal interface , external interface remoteaccess.im- hk.com) route demo tunneled access- list WCCP extended permit object- group DM_INLINE_SERVICE_3 object Demo1_network any access- list WCCP extended permit object- group DM_INLINE_SERVICE_4 object AnyConnectClientRange any IronPort Web Security Appliance configuration: (M1 interface ) Access Policy for local and remote user Page 11

12 Remote User Identity Identity Provider for SaaS Page 12

13 SaaS Application Definition for WebEx Single Sign- On WebEx Single Sign- On Redirection Page 13

14 WebEx SSO Configuration Page 14

2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1

2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 Cisco AnyConnect as a Service György Ács Regional Security Consultant Mobile User Challenges Mobile and Security Services Web Security

More information

Cisco AnyConnect Secure Mobility Solution. György Ács Regional Security Consultant

Cisco AnyConnect Secure Mobility Solution. György Ács Regional Security Consultant Cisco AnyConnect Secure Mobility Solution György Ács Regional Security Consultant Mobile User Challenges Mobile and Security Services Web Security Deployment Methods Live Q&A 2011 Cisco and/or its affiliates.

More information

SAS and F5 integration at F5 Networks. Updates for Version 11.6

SAS and F5 integration at F5 Networks. Updates for Version 11.6 SAS and F5 integration at F5 Networks Updates for Version 11.6 Managing access based on Identity Employees Partner Customer Administrator IT challenges: Control access based on user-type and role Unify

More information

Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Software Release

Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Software Release :: Seite 1 von 5 :: Datenblatt zum Produkt Cisco ANYCONNECT ESSENTIALS VPN mit DC# 554678 :: Cisco ASA 5500 Series Adaptive Security Appliance 8.2 Software Release PB526545 Cisco ASA Software Release 8.2

More information

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications

GLOBALPROTECT. Key Usage Scenarios and Benefits. Remote Access VPN Provides secure access to internal and cloud-based business applications GLOBALPROTECT Prevent Breaches and Secure the Mobile Workforce GlobalProtect extends the protection of Palo Alto Networks Next-Generation Security Platform to the members of your mobile workforce, no matter

More information

Partner Webinar. AnyConnect 4.0. Rene Straube Cisco Germany. December 2014

Partner Webinar. AnyConnect 4.0. Rene Straube Cisco Germany. December 2014 Partner Webinar AnyConnect 4.0 Rene Straube Cisco Germany December 2014 Agenda Introduction to AnyConnect 4.0 New Licensing Scheme for AnyConnect 4.0 How to migrate to the new Licensing? Ordering & Migration

More information

Designing Workspace of the Future for the Mobile Worker

Designing Workspace of the Future for the Mobile Worker Designing Workspace of the Future for the Mobile Worker Paulo Jorge Correia Technical Solutions Architect Building Business Value Enable mobile workers and BYOD Locate and access remote experts Collaborate

More information

TECHNOLOGY Introduction The Difference Protection at the End Points Security made Simple

TECHNOLOGY Introduction The Difference Protection at the End Points Security made Simple APPGATE TECHNOLOGY UNIFIED TECHNOLOGY Introduction The AppGate solution truly delivers holistic security and access control where other approaches fall short. It is designed to address the security and

More information

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

Exam : Title : Security Solutions for Systems Engineers. Version : Demo Exam : 642-566 Title : Security Solutions for Systems Engineers Version : Demo 1. Which one of the following elements is essential to perform events analysis and correlation? A. implementation of a centralized

More information

Cisco Network Admission Control (NAC) Solution

Cisco Network Admission Control (NAC) Solution Data Sheet Cisco Network Admission Control (NAC) Solution New: Updated to include the Cisco Secure Network Server (SNS) Cisco Network Admission Control (NAC) solutions allow you to authenticate wired,

More information

Using the Terminal Services Gateway Lesson 10

Using the Terminal Services Gateway Lesson 10 Using the Terminal Services Gateway Lesson 10 Skills Matrix Technology Skill Objective Domain Objective # Deploying a TS Gateway Server Configure Terminal Services Gateway 2.2 Terminal Services (TS) Web

More information

Cisco AnyConnect Is A New Mobile Security Model

Cisco AnyConnect Is A New Mobile Security Model Lippis Report 143: Cisco AnyConnect Is A New Mobile Security Model by Nicholas John Lippis III President, Lippis Consulting March 2010 lippis.com 1 Lippis Report 143: Cisco AnyConnect Is A New Mobile Security

More information

Exam A QUESTION 1 An XYZ Corporation systems engineer, while making a sales call on the ABC Corporation headquarters, tried to access the XYZ sales de

Exam A QUESTION 1 An XYZ Corporation systems engineer, while making a sales call on the ABC Corporation headquarters, tried to access the XYZ sales de Cisco 642-647 Deploying Cisco ASA VPN Solutions (VPN v1.0) Version: Demo https://.com Exam A QUESTION 1 An XYZ Corporation systems engineer, while making a sales call on the ABC Corporation headquarters,

More information

Adaptacyjny dostęp do aplikacji wszędzie i z każdego urządzenia

Adaptacyjny dostęp do aplikacji wszędzie i z każdego urządzenia Adaptacyjny dostęp do aplikacji wszędzie i z każdego urządzenia F5 EMEA Webinar Listopad 2014 Andrzej Kroczek Field Systems Engineer Today s Network and App Access: So Many Variables! LOCATIONS USERS DEVICES

More information

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Threat Control Solutions. Version: Demo

Vendor: Cisco. Exam Code: Exam Name: Implementing Cisco Threat Control Solutions. Version: Demo Vendor: Cisco Exam Code: 300-207 Exam Name: Implementing Cisco Threat Control Solutions Version: Demo DEMO QUESTION 1 When learning accept mode is set to auto, and the action is set to rotate, when is

More information

A comprehensive security solution for enhanced mobility and productivity

A comprehensive security solution for enhanced mobility and productivity A comprehensive security solution for enhanced mobility and productivity coupled with NetScaler Unified Gateway and StoreFront lets organizations upgrade their business security beyond usernames and passwords,

More information

New Features for ASA Version 9.0(2)

New Features for ASA Version 9.0(2) FIREWALL Features New Features for ASA Version 9.0(2) Cisco Adaptive Security Appliance (ASA) Software Release 9.0 is the latest release of the software that powers the Cisco ASA family. The same core

More information

The Context Aware Network A Holistic Approach to BYOD

The Context Aware Network A Holistic Approach to BYOD The Context Aware Network A Holistic Approach to BYOD Trends Bring Your Own Device BYOD at Cisco Cisco BYOD Solution Use Cases Summary Trends #CiscoPlusCA Demand for Mobility 15 billion new networked mobile

More information

Expressway for Mobile and Remote Access Deployments, page 1 Cisco AnyConnect Deployments, page 9 Survivable Remote Site Telephony, page 17

Expressway for Mobile and Remote Access Deployments, page 1 Cisco AnyConnect Deployments, page 9 Survivable Remote Site Telephony, page 17 Expressway for Mobile and Deployments, page 1 Cisco AnyConnect Deployments, page 9 Survivable Remote Site Telephony, page 17 Expressway for Mobile and Deployments Expressway for Mobile and for Cisco Unified

More information

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1

CISCO NETWORKS BORDERLESS Cisco Systems, Inc. All rights reserved. 1 CISCO BORDERLESS NETWORKS 2009 Cisco Systems, Inc. All rights reserved. 1 Creating New Business Models The Key Change: Putting the Interaction Where the Customer Is Customer Experience/ Innovation Productivity/

More information

Secure Mobile Access to Corporate Applications

Secure Mobile Access to Corporate Applications Secure Mobile Access to Corporate Applications The way corporations operate around mobile devices is currently shifting employees are starting to use their own devices for business purposes, rather than

More information

Securing the Empowered Branch with Cisco Network Admission Control. September 2007

Securing the Empowered Branch with Cisco Network Admission Control. September 2007 Securing the Empowered Branch with Cisco Network Admission Control September 2007 Presentation_ID 2006 Cisco Systems, Inc. All rights reserved. 1 Contents 1 The Cisco Empowered Branch 2 Security Considerations

More information

Question: 1 An engineer is using the policy trace tool to troubleshoot a WSA. Which behavior is used?

Question: 1 An engineer is using the policy trace tool to troubleshoot a WSA. Which behavior is used? Volume: 418 Questions Question: 1 An engineer is using the policy trace tool to troubleshoot a WSA. Which behavior is used? A. External DLP policies are evaluated by tool B. Socks policies are evaluated

More information

Network. Arcstar Universal One

Network. Arcstar Universal One Network Universal One ARCSTAR UNIVERSAL ONE Universal One Enterprise Network NTT Communications' Universal One is a highly reliable, premium-quality network service, delivered and operated in more than

More information

Policing The Borderless Network: Integrating Web Security

Policing The Borderless Network: Integrating Web Security Policing The Borderless Network: Integrating Web Security Hrvoje Dogan Consulting Systems Engineer, Security March 16, 2012 2011 Cisco and/or its affiliates. All rights reserved. Cisco Public 1 About Cisco

More information

Secure Mobility. Klaus Lenssen Senior Business Development Manager Security

Secure Mobility. Klaus Lenssen Senior Business Development Manager Security Secure Mobility Klaus Lenssen Senior Business Development Manager Security KL Secure Mobility 2008 Cisco Systems, Inc. All rights reserved. Cisco public 1 Complete Your Online Session Evaluation Please

More information

Vendor: Cisco. Exam Code: Exam Name: Cisco Sales Expert. Version: Demo

Vendor: Cisco. Exam Code: Exam Name: Cisco Sales Expert. Version: Demo Vendor: Cisco Exam Code: 646-206 Exam Name: Cisco Sales Expert Version: Demo QUESTION 1 What are three current business factors that are influencing customer decisions in making technology investments?

More information

Identity Awareness Software Blade Check Point Software Technologies Ltd. [Unrestricted] For everyone

Identity Awareness Software Blade Check Point Software Technologies Ltd. [Unrestricted] For everyone Identity Awareness Software Blade 2010 Check Point Software Technologies Ltd. [Unrestricted] For everyone Agenda 1 Introduction 2 Solution Overview 3 Identity Awareness Features 4 Selling Strategy 2 Agenda

More information

SASSL v1.0 Managing Advanced Cisco SSL VPN. 3 days lecture course and hands-on lab $2,495 USD 25 Digital Version

SASSL v1.0 Managing Advanced Cisco SSL VPN. 3 days lecture course and hands-on lab $2,495 USD 25 Digital Version Course: Duration: Fees: Cisco Learning Credits: Kit: 3 days lecture course and hands-on lab $2,495 USD 25 Digital Version Course Overview Managing Advanced Cisco SSL VPN (SASSL) v1.0 is an instructor-led

More information

Technical Overview of DirectAccess in Windows 7 and Windows Server 2008 R2. Microsoft Windows Family of Operating Systems

Technical Overview of DirectAccess in Windows 7 and Windows Server 2008 R2. Microsoft Windows Family of Operating Systems Technical Overview of in Windows 7 and Windows Server 2008 R2 Microsoft Windows Family of Operating Systems Published: January 2009 This document supports a preliminary release of a software product that

More information

Secure Network Access for Personal Mobile Devices

Secure Network Access for Personal Mobile Devices White Paper Secure Network Access for Personal Mobile Devices What You Will Learn People around the globe are enamored with their smartphones and tablet computers, and they feel strongly that they should

More information

BIG-IP APM: Access Policy Manager v11. David Perodin Field Systems Engineer

BIG-IP APM: Access Policy Manager v11. David Perodin Field Systems Engineer 1 BIG-IP APM: Access Policy Manager v11 David Perodin Field Systems Engineer 3 Overview What is BIG-IP Access Policy Manager (APM)? How APM protects organization-facing applications by providing policy-based,

More information

Cisco s Appliance-based Content Security: IronPort and Web Security

Cisco s Appliance-based Content Security: IronPort  and Web Security Cisco s Appliance-based Content Security: IronPort E-mail and Web Security Hrvoje Dogan Consulting Systems Engineer, Security, Emerging Markets East 2010 Cisco and/or its affiliates. All rights reserved.

More information

SonicOS 5.6 Feature Overview

SonicOS 5.6 Feature Overview NETWORK SECURITY SonicOS 5.6 Feature Overview SonicOS 5.6 Summary SonicOS 5.6 is the latest feature release from SonicWALL that integrates major changes to the SonicOS operating system for all TZ 210,

More information

CISCO EXAM QUESTIONS & ANSWERS

CISCO EXAM QUESTIONS & ANSWERS CISCO 650-179 EXAM QUESTIONS & ANSWERS Number: 650-179 Passing Score: 800 Time Limit: 120 min File Version: 85.5 http://www.gratisexam.com/ CISCO 650-179 EXAM QUESTIONS & ANSWERS Exam Name: SMB Solutions

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.1 for Web Published: May 11, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.1 for the Web Security

More information

Introducing. Secure Access. for the Next Generation. Bram De Blander Sales Engineer

Introducing. Secure Access. for the Next Generation. Bram De Blander Sales Engineer Introducing Secure Access for the Next Generation Bram De Blander Sales Engineer bdeblander@pulsesecure.net What CIOs are asking Mobility Cloud Apps IoT Is our firewall security and EMM system good enough?

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.0.1 for Web Published: January 20, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.0.1 for the Web Security

More information

MOBILE SECURITY, SECURE ACCESS AND BYOD AS A SERVICE. Jonas Gyllenhammar NNTF 2012

MOBILE SECURITY, SECURE ACCESS AND BYOD AS A SERVICE. Jonas Gyllenhammar NNTF 2012 MOBILE SECURITY, SECURE ACCESS AND BYOD AS A SERVICE Jonas Gyllenhammar NNTF 2012 ALWAYS ON / ALWAYS MOBILE LIFE Proliferation of Devices, Applications and Content 2 Copyright 2012 Juniper Networks, Inc.

More information

WORLD WIDE TECHNOLOGY Brief Overview

WORLD WIDE TECHNOLOGY Brief Overview WORLD WIDE TECHNOLOGY Brief Overview Justin Deckard 314.276.0045 Justin.Deckard@wwt.com NGB Account Rep Midwest Region CORE SOLUTIONS SECURE NETWORK INFRASTRUCTURE DATA CENTER COLLABORATION SUPPLY CHAIN

More information

Cisco CISCO Securing Networks with ASA Advanced. Practice Test. Version

Cisco CISCO Securing Networks with ASA Advanced. Practice Test. Version Cisco 642-515 CISCO 642-515 Securing Networks with ASA Advanced Practice Test Version 3.1 QUESTION NO: 1 Cisco 642-515: Practice Exam Which two statements correctly describe configuring active/active failover?

More information

Overview What is Azure Multi-Factor Authentication? How it Works Get started Choose where to deploy MFA in the cloud MFA on-premises MFA for O365

Overview What is Azure Multi-Factor Authentication? How it Works Get started Choose where to deploy MFA in the cloud MFA on-premises MFA for O365 Table of Contents Overview What is Azure Multi-Factor Authentication? How it Works Get started Choose where to deploy MFA in the cloud MFA on-premises MFA for O365 users Security best practices How to

More information

PCI DSS Compliance. White Paper Parallels Remote Application Server

PCI DSS Compliance. White Paper Parallels Remote Application Server PCI DSS Compliance White Paper Parallels Remote Application Server Table of Contents Introduction... 3 What Is PCI DSS?... 3 Why Businesses Need to Be PCI DSS Compliant... 3 What Is Parallels RAS?... 3

More information

Check Point Virtual Systems & Identity Awareness

Check Point Virtual Systems & Identity Awareness Check Point Virtual Systems & Identity Awareness Jason Card, Senior Security Consultant, CISSP card@avantec.ch Agenda Check Point Virtual Systems Private Cloud Simplify Security Overview Identity Awareness

More information

Identity Firewall. About the Identity Firewall

Identity Firewall. About the Identity Firewall This chapter describes how to configure the ASA for the. About the, on page 1 Guidelines for the, on page 7 Prerequisites for the, on page 9 Configure the, on page 10 Monitoring the, on page 16 History

More information

Passit4Sure (50Q) Cisco Advanced Security Architecture for System Engineers

Passit4Sure (50Q) Cisco Advanced Security Architecture for System Engineers Passit4Sure.500-265 (50Q) Number: 500-265 Passing Score: 800 Time Limit: 120 min File Version: 5.8 Cisco 500-265 Advanced Security Architecture for System Engineers Today is big day for me as I passed

More information

Vlastnosti sítě v době rozmachu mobilních zařízení

Vlastnosti sítě v době rozmachu mobilních zařízení Vlastnosti sítě v době rozmachu mobilních zařízení Radek Boch Systems Engineer, Cisco CCIE #7095 7.4.2011 2010 Cisco and/or its affiliates. All rights reserved. 1 Server Client 2010 Cisco and/or its affiliates.

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.4-101 for Web Published: June 25, 2013 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.4 for the Web Security

More information

Release Notes for Cisco IronPort AsyncOS 7.0 for Web

Release Notes for Cisco IronPort AsyncOS 7.0 for Web Release Notes for Cisco IronPort AsyncOS 7.0 for Web Published: December 01, 2010 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.0 for the Web Security

More information

Cisco ASA Next-Generation Firewall Services

Cisco ASA Next-Generation Firewall Services Q&A Cisco ASA Next-Generation Firewall Services Q. What are Cisco ASA Next-Generation Firewall Services? A. Cisco ASA Next-Generation Firewall Services are a modular security service that extends the Cisco

More information

Web Security Deployment. Ryan Wager Technical Marketing Engineer

Web Security Deployment. Ryan Wager Technical Marketing Engineer Web Security Deployment Ryan Wager Technical Marketing Engineer Agenda Overview Web Security Web Security with Cisco Ironport Web Security Critical Functionalities Places in the Network Authentication

More information

ApplicationServer XG Version 11. Last updated:

ApplicationServer XG Version 11. Last updated: ApplicationServer XG Version 11 Last updated: 2013-10-09 Table of Contents Introduction to 2X ApplicationServer... 1 What is 2X ApplicationServer?... 1 How does it work?... 1 About This Document... 1 Introduction...

More information

Selftestengine q

Selftestengine q Selftestengine 700-281 49q Number: 700-281 Passing Score: 800 Time Limit: 120 min File Version: 18.5 http://www.gratisexam.com/ 700-281 Web Security for Field Engineers Still Valid in Egypt, Passed today

More information

Introduction. The Safe-T Solution

Introduction. The Safe-T Solution Secure Application Access Product Brief Contents Introduction 2 The Safe-T Solution 3 How It Works 3 Capabilities 4 Benefits 5 Feature List 6 6 Introduction As the world becomes much more digital and global,

More information

2S00012W -Selling the Avaya IP Office Platform Overview. Selling the Avaya IP Office Platform Overview. October, S00012W

2S00012W -Selling the Avaya IP Office Platform Overview. Selling the Avaya IP Office Platform Overview. October, S00012W 1 2S00012W Selling the Avaya IP Office Platform Overview October, 2014 Welcome to Avaya IP Office Overview. To help you extract the most value for your customers via IP Office s deployment options and

More information

Aventail ST2 SSL VPN New Features Guide

Aventail ST2 SSL VPN New Features Guide Aventail ST2 SSL VPN New Features Guide Summary of New Features and Functionality for the Aventail ST2 SSL VPN Platform Upgrade Release August, 2006 2006 Aventail Corporation. All rights reserved. Aventail,

More information

Cisco Protects Internal Infrastructure from Web-Based Threats

Cisco Protects Internal Infrastructure from Web-Based Threats Cisco Protects Internal Infrastructure from Web-Based Threats / Security / IronPort S670 Web Security Appliance: Cisco is working to become a borderless enterprise, where authorized employees, partners,

More information

Mohit Saxena Senior Technical Lead Microsoft Corporation

Mohit Saxena Senior Technical Lead Microsoft Corporation Mohit Saxena Senior Technical Lead Microsoft Corporation Session Objectives And Takeaways UAG Overview & Vision Deep dive to some features: Array NLB Remote Desktop Services Portal Exchange Today's workforce

More information

Deploying Cisco ASA VPN Solutions v2.0 (VPN)

Deploying Cisco ASA VPN Solutions v2.0 (VPN) Deploying Cisco ASA VPN Solutions v2.0 (VPN) Course Overview: The Deploying Cisco ASA VPN Solutions (VPN) v2.0 course is part of the curriculum path that leads to the Cisco CCNP Security certification.

More information

Simplify, Strengthen and Unify your security.

Simplify, Strengthen and Unify your security. www.portsys.com info@portsys.com Simplify, Strengthen and Unify your security. TAC secures mobility, cloud and corporate-based access to all your valuable resources, in one highly scalable, integrated

More information

DOWNLOAD PDF CISCO IRONPORT CONFIGURATION GUIDE

DOWNLOAD PDF CISCO IRONPORT CONFIGURATION GUIDE Chapter 1 : Cisco IronPort E-mail Security Appliance Best Practices : Part 3 - emtunc's Blog Cisco IronPort AsyncOS for Email Security Advanced Configuration Guide (PDF - 9 MB) Cisco IronPort AsyncOS for

More information

Cisco Security Enterprise License Agreement

Cisco Security Enterprise License Agreement Cisco Security Enterprise License Agreement Deploy Software and Technology more easily The Cisco Security Enterprise Licensing Agreement (ELA) gives you a simpler way to manage your licenses. And it saves

More information

DevNet Sandbox Collaboration 11.5

DevNet Sandbox Collaboration 11.5 DevNet Sandbox Collaboration 11.5 Lab User Guide Joseph Kearns Cisco DevNet Sandbox Contents 1 Introduction... 3 2 Reserving the lab... 3 3 Connecting to your Sandbox Servers... 4 4 Main Topology Page...

More information

Cisco AnyConnect. Ordering Guide. June For further information, questions, and comments, please contact

Cisco AnyConnect. Ordering Guide. June For further information, questions, and comments, please contact Ordering Guide Cisco AnyConnect Ordering Guide June 2016 For further information, questions, and comments, please contact anyconnect-pricing@cisco.com. 2016 Cisco and/or its affiliates. All rights reserved.

More information

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365 WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365 Airwatch Support for Office 365 One of the most common questions being asked by many customers recently is How does AirWatch support Office 365? Customers often

More information

AnyConnect on Mobile Devices

AnyConnect on Mobile Devices AnyConnect on mobile devices is similar to AnyConnect on Windows, Mac and Linux platforms. This chapter provides device information, configuration information, support information, as well as other administrative

More information

Borderless Networks. Tom Schepers, Director Systems Engineering

Borderless Networks. Tom Schepers, Director Systems Engineering Borderless Networks Tom Schepers, Director Systems Engineering Agenda Introducing Enterprise Network Architecture Unified Access Cloud Intelligent Network & Unified Services Enterprise Networks in Action

More information

Mobile Security using IBM Endpoint Manager Mobile Device Management

Mobile Security using IBM Endpoint Manager Mobile Device Management Mobile Security using IBM Endpoint Manager Mobile Device Management Mahendra Chopra Security Solution Architect @ IBM CIO Lab, Innovation mahendra.chopra@in.ibm.com Agenda Market Trends Mobile Security?

More information

Klaudia Bakšová System Engineer Cisco Systems. Cisco Clean Access

Klaudia Bakšová System Engineer Cisco Systems. Cisco Clean Access Klaudia Bakšová System Engineer Cisco Systems Cisco Clean Access Agenda 1. Securing Complexity 2. NAC Appliance Product Overview and In-Depth 3. NAC Appliance Technical Benefits The Challenge of Securing

More information

Q&As. Advanced Borderless Network Architecture Sales Exam. Pass Cisco Exam with 100% Guarantee

Q&As. Advanced Borderless Network Architecture Sales Exam. Pass Cisco Exam with 100% Guarantee 700-301 Q&As Advanced Borderless Network Architecture Sales Exam Pass Cisco 700-301 Exam with 100% Guarantee Free Download Real Questions & Answers PDF and VCE file from: 100% Passing Guarantee 100% Money

More information

Pulse Policy Secure X Network Access Control (NAC) White Paper

Pulse Policy Secure X Network Access Control (NAC) White Paper Pulse Policy Secure 802.1X Network Access Control (NAC) White Paper Introduction The growing mobility trend has created a greater need for many organizations to secure and manage access for both users

More information

NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1

NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1 NetConnect to GlobalProtect Migration Tech Note PAN-OS 4.1 Revision A 2011, Palo Alto Networks, Inc. Contents Overview... 3 GlobalProtect Overview... 3 LICENSING... 3 UPGRADE... 3 Understanding the Migrated

More information

Cisco Self Defending Network

Cisco Self Defending Network Cisco Self Defending Network Integrated Network Security George Chopin Security Business Development Manager, CISSP 2003, Cisco Systems, Inc. All rights reserved. 1 The Network as a Strategic Asset Corporate

More information

Microsoft Windows Server 2008 R2 Remote Desktop Services Session Virtualization and VDI Microsoft RemoteFX

Microsoft Windows Server 2008 R2 Remote Desktop Services Session Virtualization and VDI Microsoft RemoteFX Microsoft Windows Server 2008 R2 Remote Desktop Services Session Virtualization and VDI Microsoft RemoteFX Citrix XenApp 6 on Remote Desktop Services Extending the Microsoft platform New features in XenApp

More information

Delivering a Secure BYOD Solution with XenMobile MDM and Cisco ISE

Delivering a Secure BYOD Solution with XenMobile MDM and Cisco ISE Delivering a Secure BYOD Solution with XenMobile MDM and Cisco ISE Bhumik Patel Solutions Architect, Citrix Systems May 21 st 2013 App Complete Enterprise Mobility Business Apps Productivity and Collaboration

More information

Cisco Passguide Exam Questions & Answers

Cisco Passguide Exam Questions & Answers Cisco Passguide 642-648 Exam Questions & Answers Number: 642-648 Passing Score: 800 Time Limit: 120 min File Version: 61.8 http://www.gratisexam.com/ Cisco 642-648 Exam Questions & Answers Exam Name: Deploying

More information

New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall

New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall New methods to protect the network. Deeper visibility with Cisco NGFW Next Generation Firewall Claudiu Onisoru, Senior Network Specialist Cisco Connect - 15 May 2014 1 Agenda Frontal Communication: Who

More information

Cisco Cloud Web Security

Cisco Cloud Web Security Cisco Cloud Web Security WSA ment Guide Internal Use Only 1 October 2014 Cisco CWS WSA/WSAv ment Guide Contents Introduction... 1 Cloud ment... 1 Additional Redirect Methods... 1... 2 Verify connection

More information

Seqrite TERMINATOR (UTM) Unified Threat Management Solution.

Seqrite TERMINATOR (UTM) Unified Threat Management Solution. Unified Threat Management Solution TERMINATOR Introduction Seqrite TERMINATOR is a high-performance, easy-to-use Unified Threat Management solution for small and mid-size enterprises. It is a robust solution

More information

Powering Transformation With Cisco

Powering Transformation With Cisco Shape Your Business For the Future: Powering Transformation With Cisco Cisco VXI : Delivering The Next Generation of Virtualized Environment Herdiman Eka Wijaya 12 June 2012 Agenda What is Desktop Virtualization?

More information

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0

BIG-IP Access Policy Manager : Secure Web Gateway. Version 13.0 BIG-IP Access Policy Manager : Secure Web Gateway Version 13.0 Table of Contents Table of Contents BIG-IP APM Secure Web Gateway Overview...9 About APM Secure Web Gateway... 9 About APM benefits for web

More information

Cisco NAC Network Module for Integrated Services Routers

Cisco NAC Network Module for Integrated Services Routers Cisco NAC Network Module for Integrated Services Routers The Cisco NAC Network Module for Integrated Services Routers (NME-NAC-K9) brings the feature-rich Cisco NAC Appliance Server capabilities to Cisco

More information

CITRIX 1Y0-200 EXAM QUESTIONS & ANSWERS

CITRIX 1Y0-200 EXAM QUESTIONS & ANSWERS CITRIX 1Y0-200 EXAM QUESTIONS & ANSWERS Number: 1Y0-200 Passing Score: 800 Time Limit: 120 min File Version: 38.7 http://www.gratisexam.com/ CITRIX 1Y0-200 EXAM QUESTIONS & ANSWERS Exam Name: Managing

More information

NGFW Security Management Center

NGFW Security Management Center NGFW Security Management Center Release Notes 6.4.3 Revision A Contents About this release on page 2 System requirements on page 2 Build version on page 3 Compatibility on page 4 New features on page 5

More information

Future-ready security for small and mid-size enterprises

Future-ready security for small and mid-size enterprises First line of defense for your network Quick Heal Terminator (UTM) (Unified Threat Management Solution) Data Sheet Future-ready security for small and mid-size enterprises Quick Heal Terminator is a high-performance,

More information

Implementing Cisco Edge Network Security Solutions ( )

Implementing Cisco Edge Network Security Solutions ( ) Implementing Cisco Edge Network Security Solutions (300-206) Exam Description: The Implementing Cisco Edge Network Security (SENSS) (300-206) exam tests the knowledge of a network security engineer to

More information

Training UNIFIED SECURITY. Signature based packet analysis

Training UNIFIED SECURITY. Signature based packet analysis Training UNIFIED SECURITY Signature based packet analysis At the core of its scanning technology, Kerio Control integrates a packet analyzer based on Snort. Snort is an open source IDS/IPS system that

More information

DEPLOYMENT GUIDE DEPLOYING F5 WITH ORACLE ACCESS MANAGER

DEPLOYMENT GUIDE DEPLOYING F5 WITH ORACLE ACCESS MANAGER DEPLOYMENT GUIDE DEPLOYING F5 WITH ORACLE ACCESS MANAGER Table of Contents Table of Contents Introducing the F5 and Oracle Access Manager configuration Prerequisites and configuration notes... 1 Configuration

More information

Release Notes for Cisco IronPort AsyncOS for Web

Release Notes for Cisco IronPort AsyncOS for Web Release Notes for Cisco IronPort AsyncOS 7.1.3 for Web Published: November 21, 2011 Contents This document contains release information for running Cisco IronPort AsyncOS AsyncOS 7.1.3 for the Web Security

More information

Enterprise-ready Unified communications platform

Enterprise-ready Unified communications platform Enterprise-ready Unified communications platform Video gallery HD video or high resolution photos of attendees Consistent and familiar clients Immersive experience optimized for touch Single identity

More information

Security for the Cloud Era

Security for the Cloud Era Security for the Cloud Era Make the Most Out of Your Cloud Journey Fadhly Hassim Sales Engineer South East Asia & Korea Barracuda Networks Current Weather Situation Customer Provisions & Manage On-Premises

More information

CYAN SECURE WEB Installing on Windows

CYAN SECURE WEB Installing on Windows CYAN SECURE WEB September 2009 Applies to: 1.7 and above Table of Contents 1 Introduction... 2 2 Preparation... 2 3 Network Integration... 3 3.1 Out-of-line Deployment... 3 3.2 DMZ Deployment... 3 4 Proxy

More information

Load Balancing VMware Workspace Portal/Identity Manager

Load Balancing VMware Workspace Portal/Identity Manager Load Balancing VMware Workspace Portal/Identity Manager Overview VMware Workspace Portal/Identity Manager combines applications and desktops in a single, aggregated workspace. Employees can then access

More information

Enterprise Guest Access

Enterprise Guest Access Data Sheet Published Date July 2015 Service Overview Whether large or small, companies have guests. Guests can be virtually anyone who conducts business with the company but is not an employee. Many of

More information

MaaS360 Secure Productivity Suite

MaaS360 Secure Productivity Suite MaaS360 Secure Productivity Suite Frequently Asked Questions (FAQs) What is MaaS360 Secure Productivity Suite? MaaS360 Secure Productivity Suite integrates a set of comprehensive mobile security and productivity

More information

SonicWALL Security Appliances. SonicWALL SSL-VPN 200 Getting Started Guide

SonicWALL Security Appliances. SonicWALL SSL-VPN 200 Getting Started Guide SonicWALL Security Appliances SonicWALL SSL-VPN 200 Getting Started Guide SonicWALL SSL-VPN 200 Appliance Getting Started Guide This Getting Started Guide contains installation procedures and configuration

More information

BYOD Business year of decision!

BYOD Business year of decision! Bucharest, Romania April 24, 2013 BYOD Business year of decision! Cisco on Cisco Christoph Nienhaus IT Leader for EMEAR Central - DACH 2011 2012 Cisco and/or its affiliates. All rights reserved. Cisco

More information

Citric Access Gateway VPX Essentials

Citric Access Gateway VPX Essentials Citric Access Gateway VPX 5. 04 Essentials Andrew Mallett Chapter No. 6 "Beyond the Basics" In this package, you will find: A Biography of the author of the book A preview chapter from the book, Chapter

More information

VMware AirWatch Integration with F5 Guide Enabling secure connections between mobile applications and your backend resources

VMware AirWatch Integration with F5 Guide Enabling secure connections between mobile applications and your backend resources VMware AirWatch Integration with F5 Guide Enabling secure connections between mobile applications and your backend resources Workspace ONE UEM v9.6 Have documentation feedback? Submit a Documentation Feedback

More information

Exam Name: PASCERSE - Cisco SaaS Conferencing and EIM Resale ATP for the SE Exam

Exam Name: PASCERSE - Cisco SaaS Conferencing and EIM Resale ATP for the SE Exam Vendor: Cisco Exam Code: 650-303 Exam Name: PASCERSE - Cisco SaaS Conferencing and EIM Resale ATP for the SE Exam Version: Demo QUESTION 1 Which two steps describe best practices for placing a product

More information