3 arrows

Get 50% Off ForgeRock Training Bundles

closeClose

F5 Networks Configuring BIG-IP ASM: Application Security Manager v13

  • Tuition USD $4,000 GSA  $3,421.41
  • Reviews star_rate star_rate star_rate star_rate star_half 3223 Ratings
  • Course Code 9764
  • Duration 4 days
  • Available Formats Virtual, Classroom

In this course, you will learn how to deploy, tune, and operate BIG-IP Application Security Manager (ASM) to protect your web applications from HTTP-based attacks.

The course includes lecture, hands-on labs, and discussion about different ASM components for detecting and mitigating threats from multiple attack vectors such web scraping, Layer 7 Denial of Service, brute force, bots, code injection, and zero day.

 

Skills Gained

  • Setting up the BIG-IP system
  • Traffic processing with BIG-IP Local Traffic Manager (LTM)
  • Web application concepts
  • Web application vulnerabilities
  • Security policy deployment
  • Security policy tuning
  • Attack signatures
  • Positive security building
  • Securing cookies and other headers
  • Reporting and logging
  • User roles
  • Policy modification, merging, and exporting
  • Advanced parameter handling
  • Using application templates
  • Using Automatic Policy Builder
  • Integrating with web vulnerability scanners
  • Login enforcement and session tracking
  • Web scraping detection and mitigation
  • Using Parent and Child policies
  • Layer 7 DoS protection
  • ASM and iRules
  • Using Content Profiles for AJAX and JSON applications

Who Can Benefit

Security and network administrators who are responsible for the installation, deployment, tuning, and day-to-day maintenance of the Application Security Manager.

Course Details

Lab 1: Installation and Setup

  • Install and Setup
  • Licensing System
  • Set Up Utility
  • Configuration Utility
  • Configuration Backup

Lab 2: Fiddler

Lab 3: HTTP Vulnerabilities

Lab 4: ASM Applications Configuration

Lab 5: Security Policy

  • Attack Signatures

Lab 6: Rapid Deployment

  • Data Guard
  • Attack Signatures

Lab 7: Application-Ready Security Policy

Lab 8: Reporting

  • Remote System Log Server

Lab 9: Partitions and User Roles

Lab 10: Human Readable Policy

Lab 11: Traffic Learning

Lab 12: Parameters

Lab 13: Security Policy Builder

Lab 14: iRules

  • Flow Login Pages
  • Web Scraping

Lab 15: XML and Web Services

Lab 16: Protocol Security Manager FTP

2013-05-17 14:01:33.803000000

17. Configuration Lab Project 2

  • Review Questions

Lab 1: Installation and Setup

  • Install and Setup
  • Licensing System
  • Set Up Utility
  • Configuration Utility
  • Configuration Backup

Lab 2: Fiddler

Lab 3: HTTP Vulnerabilities

Lab 4: ASM Applications Configuration

Lab 5: Security Policy

  • Attack Signatures

Lab 6: Rapid Deployment

  • Data Guard
  • Attack Signatures

Lab 7: Application-Ready Security Policy

Lab 8: Reporting

  • Remote System Log Server

Lab 9: Partitions and User Roles

Lab 10: Human Readable Policy

Lab 11: Traffic Learning

Lab 12: Parameters

Lab 13: Security Policy Builder

Lab 14: iRules

  • Flow Login Pages
  • Web Scraping

Lab 15: XML and Web Services

Lab 16: Protocol Security Manager FTP

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals and private on sites. View our group training page for more information.

Does ExitCertified deliver group training?

Yes, we provide training for groups, individuals, and private on sites. View our group training page for more information.

Craig Cory was well versed in the material presented. All classes began on time and the breaks were very timely. A lot of material to cover however sufficient time was given for the hands on labs.

Pretty concise course mainly covering AWS Redshift while briefly introducing practical use examples with other services for companies.

Overall good. But some of the lab instructions are a little out of date, which confused students.

I found the instruction to be informative and relevant and the presentation to be well thought out and organized. The lab activities were relevant to the material and helped to tie everything together.

Very informative course about AWS, with an engaging instructor and plenty of materials to facilitate our learning

0 options available

There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links above. We can also contact you when the course is scheduled in your area.

Contact Us 1-800-803-3948
Contact Us
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward