Cisco SAUTO (300-735) for CCNP Security and Cisco Certified DevNet Professional

Paths

Cisco SAUTO (300-735) for CCNP Security and Cisco Certified DevNet Professional

Author: Nick Russo

This path takes you through the process of automating and programming Cisco security solutions. As part of the new focus on network programmability and automation, this path dives... Read more

What you will learn

  • Provisioning and managing networks using common automation tools
  • Automating Cisco ASA and FirePower policies using APIs
  • Automating Cisco endpoint security solutions using APIs
  • Automating Cisco security management solutions using APIs

Pre-requisites

Viewers should have a CCNA or Cisco DevNet Associate level of knowledge. Background in Cisco Security solutions is also advised.

Cisco SAUTO (300-735) for CCNP Security and Cisco Certified DevNet Professional

This path takes you through the process of automating and programming Cisco security solutions. As part of the new focus on network programmability and automation, this path dives into the specifics of doing so with Cisco’s various security products and solutions. You’ll begin with a programmability foundation, followed by automating and programming network security. Then you’ll cover advanced threat and endpoint security. Finally, you’ll cover the finer points of cloud, web, and email security.

These courses cover the objectives from the Cisco Automating and Programming Cisco Security Solutions (300-735 SAUTO) exam which is a concentration exam choice for both CCNP Security as well as Cisco Certified DevNet Professional.

Introduction to the Automating Cisco Security Solutions (SAUTO 300-735) Exam

by Nick Russo

Aug 13, 2020 / 14m

14m

Start Course
Description

Those interested in receiving the new Cisco Certified DevNet Professional (CCDevP) or Cisco Certified Network Professional (CCNP) Security certifications should view this course. In this course, Introduction to the Automating Cisco Security Solutions Exam, you will learn foundational knowledge required to pass the SAUTO exam by focusing on skills-based technical training, not exam topic cramming. First, you will learn about all the courses in the learning path to help you achieve that goal. Next, you will discover whether or not you are the target audience for this exam, in case there was any doubt. Finally, I'll share some personal exam tips to help set you up for success. When you’re finished with this course, you will have the skills and knowledge of Cisco DevNet technologies needed to attempt the SAUTO exam on your path to earning your Professional-level certifications.

Table of contents
  1. Course Overview
  2. Steps to Success; What You Need To Know

Provisioning and Managing Networks Using Common Automation Tools

by Nick Russo

Mar 20, 2020 / 2h 42m

2h 42m

Start Course
Description

Join me as we help Globomantics stand up new branch sites to support their growing business. In this course, Provisioning and Managing Networks Using Common Automation Tools, you will learn how to automate enterprise networks, although the core skills extend far beyond the enterprise. First, you will discover the variety of Cisco day 0 provisioning techniques, choose the best one to meet specific business requirements, then implement it on the live network. Next, you will advance into day 1 operations, using tools like Netmiko, Ansible, and ncclient to configure networks after their initial provisioning. Finally, you will explore techiques to track the health and performance of your network devices using streaming telemetry transported over gRPC. When you’re finished with this course, you will have the skills and knowledge required to introduce modern automation techniques into your business environment.

Table of contents
  1. Course Overview
  2. Getting Started with Device Provisioning Techniques
  3. Utilizing Netmiko to Automate Cisco Enterprise Devices
  4. Integrating Ansible Playbooks into Network Operations
  5. Migrating from CLI-driven to Model-driven Programmability
  6. Monitoring Networks Using Model-driven Telemetry (MDT)

Automating Cisco ASA and Firepower Policies Using APIs

by Nick Russo

Jun 24, 2020 / 2h 5m

2h 5m

Start Course
Description

Conceptually, firewall security policies are straightforward, but managing them in production has historically been a challenge due to scale, efficacy, and business alignment. In this course, Automating Cisco ASA and Firepower Policies Using APIs, you'll leverage Ansible to configure Cisco Adaptive Security Appliance (ASA) policies via infrastructure-as-code. Next, you'll discover how to interact with the Cisco Firepower Threat Defense (FTD) REST API to reconstruct classic ASA policies on the next-generation security platform, which integrates firewall and Intrusion Prevention System (IPS) capabilities. Finally, you'll learn how to manage distributed FTD deployments using the Firepower Management Center (FMC) REST API, a centralized "single pane of glass" for the Firepower ecosystem of products. When you're finished with this course, you'll have the skills and knowledge of security programmability needed to confidently build, design, and operate professional-grade automation solutions.

Table of contents
  1. Course Overview
  2. Securing the Perimeter Using Cisco ASA Firewalls and Ansible
  3. Managing Security Policy Objects within Cisco FTD
  4. Constructing and Deploying Cisco FTD Access Rules
  5. Managing Distributed Cisco FTD Instances Using Cisco FMC

Automating Cisco Endpoint Security Solutions Using APIs

by Nick Russo

Jul 20, 2020 / 1h 39m

1h 39m

Start Course
Description

Endpoint security is often overlooked or deferred in the context of enterprise security due to challenges with scalable management. Leveraging automation can greatly simplify endpoint security operations. In this course, Automating Cisco Endpoint Security Solutions Using APIs, you'll explore Cisco's flagship anti-malware product, Advanced Malware Protection (AMP) for endpoints, and interact with it using a robust REST API. Next, you'll discover how to improve the effectiveness of AMP by tying it into ThreatGrid, a detonation chamber for suspected malware, again using the REST API. Finally, you'll learn how to protect roaming users from Internet attacks using Cisco Umbrella, a cloud-hosted, DNS-based security service. Specifically, we’ll focus on the Umbrella Reporting, Enforcement, and Investigate APIs. When you're finished with this course, you'll have the skills and knowledge of security endpoint management to operate and maintain modern solutions at scale using automation.

Table of contents
  1. Course Overview
  2. Protecting Users with Cisco AMP for Endpoints
  3. Safely Analyzing Malware with Cisco ThreatGrid
  4. Employing Cisco Umbrella to Protect Roaming Endpoints

Automating Cisco Security Management Solutions Using APIs

by Nick Russo

Aug 6, 2020 / 1h 34m

1h 34m

Start Course
Description

Even after you've secured your networks and endpoints, a key question remains: What about the applications used by the business? How can we observe them and how can we control network access to them?

In this course, Automating Cisco Security Management Solutions Using APIs, you'll explore Cisco Identity Services Engine (ISE) which provides wired and wireless network access control using the pxGrid and REST APIs.

Next, you'll discover how to improve application visibility using the Netflow-based Cisco Stealthwatch family of products, helping you identify anomalies for analysis both in enterprise and cloud networks.

Finally, you'll learn how to provide application-level security for common enterprise services such as web and email using Cisco Security Management Appliance (SMA) with the Email Security Appliance (ESA) and Web Security Appliance (WSA).

When you're finished with this course, you'll have the skills and knowledge necessary to automate a variety of Cisco security management solutions in your production network.

Table of contents
  1. Course Overview
  2. Centralizing Network Access Control with Cisco ISE
  3. Visualizing Network Threats with Cisco Stealthwatch
  4. Securing Email and Web Traffic with Cisco SMA