• Akibia
• Security-Lösungen
• Education
• Check Point Provider 1

Check Point Provider 1 R70

Contact Akibia Sales

Multi-Domain Management with Check Point Provider-1 R70

Length: 2 days (recommended)

Campus: Westborough

Scheduled Dates: August 25-26, 2010 and by request

For schedules and pricing, contact Gia Paquette at 800-818-8070 x4711 or email gpaquette@akibia.com.

Overview

Prerequisites - Check Point Security Expert R70 or equivalent knowledge and experience in the prerequisites

Take this class if:

• You are a systems administrator, security manager, or network engineer implementing Provider-1 R70 in an enterprise setting
• You want to earn Check Point Certified Managed Security Administrator (CCMSE) R70 certification

Multi-Domain Management with Check Point Provider-1 R70 is an advanced course for Check Point's Managed Security Services. This course provides an understanding of the concepts and skills necessary to configure, implement and manage Check Point’s Provider-1 R70; including installation and configuration of multi-domain servers, creation and configuration of Customer Management Add-ons (CMAs), migration of existing Security Management Servers into CMAs and the configuration, implementation and installation of global policies and VPNs, and manage multiple distinct sites via a single management interface.

You will learn:

• Choose the correct Provider-1 implementation to cover customer requirements
• Classify the various pieces of the Provider-1 architecture and recognize their interactions together
• Use the correct tools to troubleshoot and solve any issues that may arise in the architecture, file system or processes
• Install Provider-1
• Configure the Provider-1 container environment
• Create a Primary MDS Manager
• Install and configure the Multi Domain GUI
• Implement any necessary Management Plugins for a specific customer or Provider environment
• Troubleshoot and solve any issues that may arise during installation and configuration
• Create and configure a CMA for a Customer.
• Migrate an existing Security Management configuration into Provider-1 with CMA Migration tools.
• Troubleshoot and solve and issues that may arise working with CMAs.
• Configure and implement a MLM for the Provider-1 environment.
• Configure and implement a CLM for a given Customer.
• Configure and implement a Global Policy.
• Configure and implement IPS in the Global Policy.
• Configure and implement VPNs globally and per customer.
• If necessary, create a secondary MDS Manager and enable MDS High Availability.
• Create and configure secondary CMAs, where applicable for customers.
• Configure CMA High Availability based on a customer’s requirements.

Exercises

Installing and Configuring the Primary MDS Station

• Install SecurePlatform
• Configure SecurePlatform
• Install and Configure the Primary MDS
• Install the R70 GUI client
• Install the Multi-Domain GUI client

Securing the NOC

• Create a virtual addressing scheme
• Use the MDG to log in to the MDS
• Add the NOC Firewall CMA
• Configure the NOC Customer Management Add-on
• Establish communication with the NOC security gateways
• Create Administrators
• Set up a NOC firewall for control connections
• Rule Base configuration

Adding the UK_Corp City Site to Provider 1 R70

• Log In to the MDS
• Add the UK_Corp Customer
• Configure the Customer Management Add-On
• Establishing Communication with the UK_Corp Security Gateway
• Configure CMA Management Objects
• Establish SIC Between the UK_Corp CMA and Remote Gateway
• Configure Gateway properties
• Back-up the UK_Corp CMA

Creating and Migration of Existing Japan_Corp Site

• Determine the virtual IP addressing scheme
• Create the Japan_Corp Customer and CMA
• Add the Japan_Corp Customer and CMA
• Copy the Japan_Corp SmartCenter Server files to the primary MDS
• Import Japan_Corp Secruity Manager Server files into the Japan_Corp CMA
• Reconfigure the system-created CMA object
• Reconfigure the imported Rule Base
• Back up the Japan_Corp CMA

MDS MLM Installation and Configuration

• Perform SecurePlatform Installation
• Configure SecurePlatform
• Install and configure the MDS
• Log in to the MLM
• Configure CMA to log to the CLM
• Install User database
• Configure NOC for control connections
• Verify logging
• Configure a second CLM for the Japan_Corp CMA

Creating and Assigning a Global Policy

• Create global objects and rules
• Open the global SmartDashboard
• Configure global CMA objects
• Configure global remote-client objects
• Configure global FTP server object
• Configure simple group objects
• Create global NETBios and Cleanup rules
• Create Remote-Access rules
• Configure Global IPS
• Assign Global Policy
• Verify Global Policy Configuration

Configuring MDS High Availability

• Install SecurePlatform
• Install and configure the secondary MDS
• Configure the secondary MDS

Security-Lösungen

• Risk Management
  • Vulnerability Assessments
  • Security Strategy Development
  • Forensics
• Compliance
• Security Infrastructure
• Data Protection
• Support
• Education
  • Check Point R70 1
  • Check Point R70 2
  • Check Point NGX III
  • Check Point Provider 1
  • Infoblox DNS
  • Infoblox Advanced
  • Infoblox NIOS Configuration