Start with 7 free days of training.

Gain instant access to our entire IT training library, free for your first week.
Train anytime on your desktop, tablet, or mobile devices.

Implementing Cisco Threat Control Solutions

This Implementing Cisco Threat Control Solutions (SITCS) 300-207 course provides training on integration of Intrusion Prevention System (IPS, not SourceFire) context-aware firewall components (not SourceFire), as well as web (Cloud) and email security solutions....
This Implementing Cisco Threat Control Solutions (SITCS) 300-207 course provides training on integration of Intrusion Prevention System (IPS, not SourceFire) context-aware firewall components (not SourceFire), as well as web (Cloud) and email security solutions.

Note: The exam associated with this course is scheduled to retire on March 31, 2017. Learners should plan accordingly to sit for the exam before its official retirement.

Recommended Experience Recommended Equipment
  • Evaluation or test lab licenses for the Email Security Appliance (ESA), Web Security Appliance (WSA)
  • ASA Firewall
  • IOS Router
  • Virtualization Environment, such as VMware
Related Certifications Related Job Functions
  • Network Analyst
  • Network Engineer
  • Network Technician
  • Network Designer
  • Security Analyst
  • Security Auditor
  • Penetration Tester
  • Security Architect
  • Technical Manager
Keith Barker has been a CBT Nuggets trainer since 2012 and holds a variety of networking and security certifications, including CCIE R&S, CCIE Security, (ISC)2 CISSP, Palo Alto CNSE, and Check Point CCSA.
 show less
1. SITCS Welcome (3 min)
2. WSA Overview (10 min)
3. Bootstrapping the WSA (12 min)
4. Deploy and License a WSA VM (10 min)
5. WSA Identities (6 min)
6. WSA Access Policy (13 min)
7. WSA User Authentication (10 min)
8. Directing Traffic to the WSA (6 min)
9. WCCP Router Configuration (12 min)
10. WCCP ASA Configuration (12 min)
11. Cisco Legacy IPS and IDS Concepts (9 min)
12. IDM Interface (13 min)
13. ESA Overview (9 min)
14. Email Terminology (7 min)
15. ESA VM Install (6 min)
16. Licensing the ESA (2 min)
17. ESA HATs, RATs, and Listeners (9 min)
18. Verifying HATs and RATs (5 min)
19. E-Mail Policies (6 min)
20. ESA Message Tracking (5 min)
21. ESA Trace Tool (1 min)
22. Cloud Web Security Overview (7 min)
23. ASA to CWS Connector (9 min)
24. IOS to CWS Connector (4 min)
25. ASA to CX Module Policy (7 min)

SITCS Welcome


In this Exchange Online Planning Nugget, we're going to talk about a product called Exchange ActiveSync. And we're going to look at the different components with Exchange ActiveSync. And we're going to talk about some of the planning considerations if and when you choose to use Exchange ActiveSync.


And then, we're going to wrap up this Nugget, which is really going to tie up all of the other planning Nuggets. And we're going to talk about this three D's, document, document, document, where I want to emphasize the importance of documenting your planning outcome.


EAS is Exchange ActiveSync. And this actually uses XML, which is typically used over HTTPS, because we do want secure transmissions. And what EAS does is it provides synchronization between your mobile devices and your exchange environment, whether it be Office 365 down here or exchange 2013 up here.


Now, we can also use things like Policy Controls right here. And they're not real powerful. But they can provide the ability to set a password policy and even remotely wipe this device. So if something gets ripped off, we know it's no longer in our possession.


With EAS and this policy, we can actually remotely wipe that machine. Now, EAS allows us to configure options on a per user basis. Or we can create a centralized Manage Mobile Device Mailbox policy. So it's applicable to everyone. So we have the granularity to determine how we want to use EAS.


Now, most everything that we're going to be doing is going to be through Windows PowerShell commands down here. So if you're not familiar with Windows PowerShell, you should get familiar with that. And the reason I want you to use PowerShell is because that we can perform many more tasks using PowerShell than we can from within the Admin Console.


So that's why it's important to understand the PowerShell commands associated with ActiveSync. So let's talk about some of the planning considerations for ActiveSync. First off, I need to re-emphasize to you that I want you to get comfortable with PowerShell, because there are several tasks that you can't perform unless you're using PowerShell.


For instance, I can't manage storage cards, use of the camera, internet sharing, Bluetooth. Those items can only be managed using the Exchange Management Console via PowerShell. So get comfortable with that. And try not to take the easier route by performing tasks with the Admin Console, because you won't be able to do everything.


Now remember, we're concerned about this guy out here. And there's thousands of them out there. So we need to decide whether or not we want to enable or disable EAS globally. That's one planning consideration. Or are we going to do it by user, like this guy right here?


We also need to determine how we want to control security on the mobile device. How many different policies are we going to have with EAS? With settings? Do we want enabled and disabled by default? What policies are we going to apply to personal devices is another consideration.


So there's lots that we need to think about. Now, if you run the command called Get-ActiveSync Mailbox Policy, that's going to return a plethora of information about your configuration settings. So be sure to run that to determine what the default settings are and determine whether or not there any changes that need to be made.


So now that we've determined all of the planning requirements, we need to make sure we have this information documented. So let's talk about documentation within the planning process. Now, I've mentioned a few times that training's probably one of the most overlooked aspects when it comes to deploying software.


The second most overlooked aspect of a deployment is documentation. People choose not to make the time to document their findings. So we've been talking about planning for quite some time. And what I need to do is as you're discovering the different aspects of the planning process is make sure that you document that content.


I want images out there. I want text files, PowerPoint presentations, XML code, if there's any of those. If there's videos that should be part of the documentation, spreadsheets, the list goes on. So these items should be part of the documentation. Now, often the documentation's going to be, again, right here on my laptop.


And then eventually, when I think about it, I'm going to maybe-- if I'm smart-- I'm going to push it out to a file share. But the thing with a file share, I can only access that if I'm on my corporate network. So where is a better place for this documentation to be?


How about in the cloud? How about Office 365? Now, we have a couple of choices in Office 365. We could store it in SharePoint Online. Now, I wouldn't want to stuff everything out there. But if there are documents that we're working on, we can turn on versioning.


And this provides us a simple location for us to locate this documentation. Now, if we know the documents are in their final stages, we may want to move them out of SharePoint into one drive for business. So now we can have access to these no matter where we are.


As long as we have access to a browser, bam, we have access to our documentation. So to begin with, we have to create the documentation. And it should include all of this content right here. Locations are our next concern. Again, we're most likely going to start on a laptop.


That's not the place to offer documentation. If I get hit by a Guinness truck tonight, then no one's going to know where this documentation is. But if I've shared it in the cloud, or I put it in a file share, at least people internal to my organization are able to locate that content.


So make sure you document everything. Make sure you share that documentation. And make sure that you update the documentation. Because we may initially roll something out, and then we decided we need to make a change to the initial roll-out. So we need to update the documentation to reflect that change.


Again the three D's-- document, document, document-- when it comes to the planning process. Because this will also help with future deployments, because we can go back and see, maybe we didn't make some of the best decisions. How can we do it differently with our next deployment?


So this is going to wrap up the series of planning Nuggets, this one focused specifically on Exchange ActiveSync. However, with all the other planning Nuggets that you reviewed, make sure you implement the documentation process during the planning phase.


Well, I certainly hope that this Nugget was informative for you. And I'd like to thank you for viewing.

WSA Overview

Bootstrapping the WSA

Deploy and License a WSA VM

WSA Identities

WSA Access Policy

WSA User Authentication

Directing Traffic to the WSA

WCCP Router Configuration

WCCP ASA Configuration

Cisco Legacy IPS and IDS Concepts

IDM Interface

ESA Overview

Email Terminology

ESA VM Install

Licensing the ESA

ESA HATs, RATs, and Listeners

Verifying HATs and RATs

E-Mail Policies

ESA Message Tracking

ESA Trace Tool

Cloud Web Security Overview

ASA to CWS Connector

IOS to CWS Connector

ASA to CX Module Policy

Please help us improve by sharing your feedback on training courses and videos. For customer service questions, please contact our support team. The views expressed in comments reflect those of the author and not of CBT Nuggets. We reserve the right to remove comments that do not adhere to our community standards.

comments powered by Disqus
Intermediate 3 hrs 25 videos


Training Features

Practice Exams
These practice tests help you review your knowledge and prepare you for exams.

Virtual Lab
Use a virtual environment to reinforce what you are learning and get hands-on experience.

Offline Training
Our iOS and Android mobile apps offer the ability to download videos and train anytime, anywhere offline.

Accountability Coaching
Develop and maintain a study plan with one-to-one assistance from coaches.

Supplemental Files
Files/materials that supplement the video training.

Speed Control
Play videos at a faster or slower pace.

Included in this course
Pick up where you left off watching a video.

Included in this course
Jot down information to refer back to at a later time.

Closed Captions
Follow what the trainers are saying with ease.
Keith Barker
Nugget trainer since 2012