EDU-318 Prisma Access SASE Security: Design and Operation

Upcoming Classes

EDU-318 EDU-318 Prisma Access SASE Security: Design and Operation

  • Duration: 4 days
  • Price: $2800 USD

The Prisma Access SASE Security: Design and Operation (EDU-318) course describe Prisma Access Secure Access Service Edge (SASE) and how it helps organizations embrace cloud and mobility by providing network and network security services from the cloud. This course is intended for people in the fields of public cloud security and cybersecurity, or for anyone who wants to learn how to secure remote networks and mobile users.

Successful completion of this three-day, instructor-led course will help enhance your understanding of how to better protect your applications, remote networks, and mobile users using a SASE implementation. You will get hands-on experience configuring, managing, and troubleshooting Prisma Access in a lab environment.

Security Engineers, Security Administrators, Security Operations Specialists, Security Analysts, and Network Engineers

Participants should have a basic knowledge of cloud computing and the public cloud. Participants must complete the Firewall 9.1 Essentials: Configuration and Management course and the Panorama 9.1: Managing Firewalls at Scale course or have equivalent experience. Participants also must have experience with networking concepts including routing, switching, and IP addressing.

  • Prisma Access Overview
    • Use Cases
      • Overview
      • Web Interface Overview
    • Challenges with traditional network designs
      • Mobile Users
      • Remote Networks
      • Prisma Access solution
    • Secure Access Service Edge (SASE)
      • Network solutions like SD-WAN lag security
      • Security solutions lag network capability of SD-WAN
      • SASE brings the two together
      • Prisma Access provides security as a service for existing SD-WAN solutions
    • Prisma Access definitions
      • Regions & Locations
      • Service Connection & Corporate Access Node “CAN”
      • Service Infrastructure Subnet
      • Mobile User Gateway “GW”
      • Security Processing Node “SPN”
      • Access corporate service like LDAP, User-ID through the service connection
      • Zones
    • Prisma Access components
      • Panorama
      • Cortex Data Lake
    • Prisma Access licenses
      • Prerequisites
      • Mobile User License
      • Remote Networks License
      • Service Connection
    • Shared ownership model
  • Planning and Design

    • Routing considerations
    • Routing examples
    • High availability
    • SD-WAN overview
    • SD-WAN integration
    • Plan the service infrastructure
    • Plan for remote networks
  • Activate and Configure
    • Activate Prisma Access
    • Configure the service infrastructure
    • Demo configure the service infrastructure
    • IPSEC Site to Site VPNs
      • IPSEC VPN Theory
      • IPSEC VPN Configuration
      • IPSEC VPN troubleshooting
    • IPsec VPN tunnel configuration on Prisma Access
    • Configure a service connection
    • Demo configure a service connection
  • Security Processing Nodes
    • Application Identification of a TCP Flow
    • Flow logic
    • Security policy rules
    • Demo Security Rules
    • Managing certificates
    • Demo Certificate Management
    • SSL decryption
      • Overview of SSL session setup
      • SSL Outbound – Forward Proxy
      • Configuration Best Practices
      • Troubleshooting
    • Security processing node comparison
  • Panorama Operations for Prisma Access
    • Templates
      • Zone Mapping
      • Template stacks
    • Device groups
      • Device groups Hierarchy
      • Device groups Inheritance
      • Device group policies
      • Device group objects
    • Configuration Demo
  • Remote Networks
    • Prerequisites
    • IPsec tunnels for remote networks
    • Configure remote networks
    • Security policy rules
    • Onboard a new remote network
    • Verify connectivity
    • Dual ISPs in active/active mode
    • Configuration Demo
  • Mobile Users
    • Prerequisites for mobile users
    • Mobile user authentication
    • User Authentication Demo
    • Configure mobile users
    • Mobile Users Onboarding
    • Portals and gateways
    • Office 365 Azure AD authentication using SAML
    • Security policy rules and zones
    • Prisma Access with on-premises gateways
  • Tune, Monitor, and Troubleshoot
    • Deploy User-ID
      • Overview
      • User-ID redistribution
      • Scenarios
    • Quality of Service
    • Onboard networks with configuration import
    • Onboarding Demo
    • Clientless VPN
    • Manage IP addresses
  • Manage Multiple Tenants
    • Multitenancy overview
    • Device groups and templates
    • Configuring multitenancy
    • Create role-based access control
    • Logging
    • Multitenancy configuration demo

    Contact Us for more details