Cisco WSA


Cisco WSA

The Web Security appliance is a robust, secure, efficient device that protects corporate networks against web-based malware and spyware programs that can compromise corporate security and expose intellectual property. The Web Security appliance includes protection for standard communication protocols, such as HTTP, HTTPS, and FTP.

Malware (malicious software) is software designed to infiltrate or damage a computer system without the owners consent. It can be any kind of hostile, intrusive, or annoying software or program code. Web-based malware includes spyware, system monitors, adware, phishing and pharming techniques, keystroke (key) loggers, browser hijackers, trojan horses, and more.

Web-based malware is a rapidly growing threat, responsible for significant corporate downtime, productivity losses and major strains on IT resources. Additionally, companies run the risk of violating compliance and data privacy regulations if their networks become compromised by malware. Companies run the risk of expensive legal costs and exposure of intellectual property.


Prior to attending our CISCO WSA Course Training, students should be familiar with:

  • Knowledge of TCP/IP services, including Domain Name Server (DNS), Secure Shell (SSH), FTP, Simple Network Management Protocol (SNMP), HTTP, and HTTPS is assumed. - ICND2 Recommended
  • Experience with IP Routing

Course Objectives

  • Describe the Cisco WSA
  • Install and verify the WSA
  • Deploy proxy services for the WSA
  • Utilize authentication with the WSA
  • Configure various policies for the WSA
  • Enforce acceptable use using the WSA
  • Defend against malware
  • Configure data security
  • Describe Cisco Cloud Web Security
  • Use Cisco AnyConnect Secure Mobility Client
  • Perform Administration and Troubleshooting of WSA's



Course Curriculum

Section 1 : Reviewing the System

  • Customer Use Cases
  • Cisco Web Security Appliance Models and Architecture

Section 2 : Installing and Verifying the Cisco Web Security Appliance

  • Review the Cisco Security Management Appliance
  • Install and Verify Cisco Web Security Appliance Hardware
  • Install and Verify the Cisco Web Security Virtual Appliance for VMware
  • Run the system set-up Wizard
  • Configure L4TM

Section 3 : Configuring Virtual Web Security Appliance Connector to Cisco Cloud Web Security

  • Review Cisco Cloud Web Security
  • Connect to Cisco Cloud Web Security Using the Cloud Web Security Connector

Section 4 : Deploying Proxy Services

  • Contrast Proxy Modes
  • Review PAC Files
  • Configure and Manage Proxy Services
  • Deploy Native FTP Proxy
  • Read Proxy Access Log and HTTP Headers

Section 5 : Utilizing Authentication

  • Configure NTLM and Proxy Authentication
  • Identify Authentication Settings and Realms
  • Describe LDAP Authentication and Authorization
  • Troubleshoot Joining Domains and Test Authentication

Section 6 : Configuring Policies

  • Configure Access Policies and Identities
  • Configure Authentication Exemptions
  • Review Access Log Tags

Section 7 : Enforcing Acceptable Use

  • Enable URL Categories and Filters
  • Configure Application Visibility and Control
  • Describe SaaS Access Control
  • Use HTTPS Inspection
  • Configure HTTPS Proxy Settings

Section 8 : Enforcing Acceptable Use - Advanced Topics

  • Configure Application Visibility and Control – Advanced Topics
  • Describe SaaS Access Control – Advanced Topics
  • Configure Web Usage Controls and URL Categories
  • View Logging and Reporting

Section 9 : Defending Against Malware

  • Describe and Configure WBRS
  • Describe and Configure Anti-Malware Scanning
  • Describe and Configure Advanced Malware Protection
  • Interpret ACL Tags Relevant to Anti-Malware

Section 10 : Configuring Data Security

  • Configure Data Security
  • Configure Data Loss Prevention(DLP)
  • Describe Access and Data Security Logs

Section 11 : Describing Cisco Cloud Web Security

  • Cisco Cloud Web Security Features and Benefits
  • Explain Cisco Cloud Attach Model

Section 12 : Using Cisco AnyConnect Secure Mobility Client

  • Describe Cisco AnyConnect Web Security
  • Integrate the Cisco AnyConnect Secure Mobility Client

Section 13 : Performing Administration and Troubleshooting

  • Describe Report Administration
  • Monitor the Cisco Web Security Appliance
  • Configure W3C Logging
  • Perform Other Administrative Tasks
  • Describe Hardware Redundancy
  • Troubleshooting the Cisco Web Security Appliance