F5/Configuring BIG-IP ASM: Application Security Manager


Configuring BIG-IP ASM: Application Security Manager Certification Training Course Overview

Configuring BIG-IP ASM: Application Security Manager training course is designed to learn how to deploy, tune, and operate ASM to protect their web applications from HTTP-based attacks. In this training class, you will also learn ASM components for detecting and mitigating threats from multiple attack vectors such web scraping, Layer 7 Denial of Service, brute force, bots, code injection, and zero day exploits.

Target Audience:

This course is recommended for security and network administrators who will be responsible for the installation, deployment, tuning, and day-to-day maintenance of the Application Security Manager.


Configuring BIG-IP ASM: Application Security Manager (40 Hours) Download Course Contents

Live Virtual Classroom (Instructor-Led)

Fee : On Request
9 AM - 5 PM (Flexible Time Slots for 4 hours option)




May
8 Hours/Day
4 Hours/Day
03-07
09-13
10-14
17-21
03-14
09-20
10-21
17-28
June
8 Hours/Day
4 Hours/Day
07-11
13-17
14-18
21-25
07-18
13-24
14-25
21 Jun-02 Jul
July
8 Hours/Day
4 Hours/Day
05-09
11-15
12-16
05-16
11-22
12-23
Classroom Training (Available: London, Dubai, India, Sydney, Vancouver)
Duration : On Request
Fee : On Request
On Request

Special Solutions for Corporate Clients! Click here

Hire Our Trainers! Click here

Request More Information

Course Prerequisites
  • Basic Computer Knowledge.

  • Describe the role of the BIG-IP system as a full proxy device in an application delivery network
  • Provision the Application Security Manager
  • Define a web application firewall
  • Describe how ASM protects a web application by securing file types, URLs, and parameters
  • Deploy ASM using the Rapid Deployment template (and other templates) and define the security checks included in each
  • Define learn, alarm, and block settings as they pertain to configuring ASM
  • Define attack signatures and explain why attack signature staging is important
  • Contrast positive and negative security policy implementation and explain benefits of each
  • Configure security processing at the parameter level of a web application
  • Use an application template to protect a commercial web application
  • Deploy ASM using the Automatic Policy Builder
  • Tune a policy manually or allow automatic policy building
  • Integrate third party application vulnerability scanner output into a security policy
  • Configure login enforcement and session tracking
  • Configure protection against brute force, web scraping, and Layer 7 denial of service attacks
  • Implement iRules using specific ASM events and commands
  • Use Content Profiles to protect JSON and AJAX-based applications
  • Implement Bot Signatures
  • Implement Proactive Bot Defense

FAQ's