ForeScout Network Access Control- Admin training

Leading NAC solution -ForeScout NAC #CounterACT, #cACT #Endpoint Visibility #Compliance#Control#Integration

ForeScout has been a leading NAC solution for years. It is so easy to design, deploy and manage the ForeScout platform. We bring you this course on ForeScout Network Access Control Admin training for beginner and intermediate levels, prepared by Industry experts. This course is only for knowledge sharing and educational purposes. It comprises of theory and lab exercises. In this course, you will learn the various aspects for the Network Access Control solution provided by ForeScout including the ForeScout NAC Key features like Detection, Classification, Assessment, Control and 3rd party integration. We will cover the Architecture for ForeScout NAC including the different components like Enterprise Manager, CounterACT, SecureConnector Agent, Recovery Manager. Then we will cover the ForeScout Modules( Basic and Extended) which control the different functionalities of ForeScout, followed by the different ForeScout feature licenses and the various products offered by ForeScout. We will see how Architects can deploy ForeScout using Central, Distributed and Mixed options. The course contains the information about Endpoint Policy life cycle management using ForeScout. The course includes installation of ForeScout OS in virtual environment along with the initial setup wizard to setup communication with switches, domain servers and other required settings. We will cover labs for different ForeScout configurations like segments, policies for Classification, Assessment, Control. We will also see how ForeScout can be integrated with Palo Alto NGFW using the eye Extend module to enhance the security posture using dynamic object based policies instead of static IP based policies.

What you’ll learn

  • Corporate Challenges which acted as founding stone for NAC.
  • What is NAC and Introduction to ForeScout.
  • ForeScout NAC Solution -Key Features.
  • ForeScout Context Based Visibility for Endpoints.
  • ForeScout Offerings- Appliance Roles, Modules and Appliance Options.
  • ForeScout NAC Solution Architecture- Enterprise Manager, CounterACT, SecureConnector, Recovery Manager.
  • ForeScout Modules – Basic and Extended.
  • Different ForeScout licenses for different features.
  • ForeScout NAC Solution Deployment Options.
  • ForeScout Installation in Lab.
  • ForeScout Initial Setup Wizard.
  • ForeScout Channels and Interfaces.
  • How ForeScout NAC solution works?.
  • ForeScout Policy Lifecycle – For Endpoints.
  • ForeScout NAC – Switch Management and logic.
  • ForeScout NAC – Switch AutoDiscovery.
  • ForeScout NAC configuration to communicate with User Directory Services, Domain Servers.
  • ForeScout Policy Elements – Main Rules, Sub Rules, Conditions, Actions, Criteria for Condition evaluation, Scope, Segments, Scope.
  • High Level Design for ForeScout policies.
  • ForeScout NAC – Policy Configuration for Classification.
  • ForeScout NAC – Policy Configuration for Windows Devices Detailed Classification.
  • ForeScout NAC – Assessment Policy Configuration for Windows Devices.
  • ForeScout NAC – Control Policy Configuration for Windows and Unknown Devices.
  • ForeScout NAC – Installation and configuration of Palo Alto extended module.
  • ForeScout NAC – Policy configuration for Integration of ForeScout and Palo Alto Next Generation Firewalls.
  • ForeScout NAC – Backups.
  • ForeScout Compliance portal, Asset Inventory and Reports.
  • Download ForeScout Console Application and SecureConnector Agent.
  • TCP/UDP ports required for enabling communication between ForeScout and network components.
  • ForeScout Network Access Control # ForeScout Network Access Prevention #ForeScout NAC # ForeScout CounterACT #ForeScout cACT.
  • ForeScout Actions and Categories- Remediate, Restrict, Audit, Authenticate, Notify etc..
  • ForeScout Policy Templates, Folders, Export or Import Policies.

Course Content

  • Trainer’s Profile and High Level Course Content –> 1 lecture • 3min.
  • NAC and ForeScout –> 5 lectures • 1hr 1min.
  • ForeScout Products and Architecture –> 5 lectures • 1hr 17min.
  • ForeScout Deployment Options and Ports Used –> 2 lectures • 14min.
  • ForeScout Installation in LAB and initial setup –> 3 lectures • 28min.
  • Overview of ForeScout Console Application, Tabs and Interfaces –> 2 lectures • 16min.
  • Understand & setup communication ForeScout and other network resources plus LABs –> 5 lectures • 44min.
  • ForeScout Policy Design and Configurations –> 9 lectures • 4hr 13min.
  • ForeScout Administration and Backups –> 2 lectures • 10min.
  • Dashboard, Asset Inventory and Reports –> 1 lecture • 7min.
  • Useful commands –> 1 lecture • 25min.
  • Questions –> 0 lectures • 0min.
  • How to get your hands on ForeScout for lab or practice ? –> 1 lecture • 1min.

ForeScout Network Access Control- Admin training

Requirements

  • Basic understanding of IP addressing.
  • Basic understanding of SSH, SNMP, PING.
  • Cisco IOS Switch configuration – not mandatory, but an added advantage.
  • Palo Alto Firewalls – not mandatory, but an added advantage.

ForeScout has been a leading NAC solution for years. It is so easy to design, deploy and manage the ForeScout platform. We bring you this course on ForeScout Network Access Control Admin training for beginner and intermediate levels, prepared by Industry experts. This course is only for knowledge sharing and educational purposes. It comprises of theory and lab exercises. In this course, you will learn the various aspects for the Network Access Control solution provided by ForeScout including the ForeScout NAC Key features like Detection, Classification, Assessment, Control and 3rd party integration. We will cover the Architecture for ForeScout NAC including the different components like Enterprise Manager, CounterACT, SecureConnector Agent, Recovery Manager. Then we will cover the ForeScout Modules( Basic and Extended) which control the different functionalities of ForeScout, followed by the different ForeScout feature licenses and the various products offered by ForeScout. We will see how Architects can deploy ForeScout using Central, Distributed and Mixed options. The course contains the information about Endpoint Policy life cycle management using ForeScout. The course includes installation of ForeScout OS in virtual environment along with the initial setup wizard to setup communication with switches, domain servers and other required settings. We will cover labs for different ForeScout configurations like segments, policies for Classification, Assessment, Control. We will also see how ForeScout can be integrated with Palo Alto NGFW using the eye Extend module to enhance the security posture using dynamic object based policies instead of static IP based policies.

Get Tutorial