This full day class is presented composed of the following lectures and hands-on lab activities:
Module 1: LDAP
This module focuses directly on common LDAP configurations and issues. A brief overview of the Lightweight Directory Access Protocol is provided to give those new to LDAP some familiarity, but the bulk of the module assumes a basic understanding of LDAP terms and concepts. Active Directory is emphasized in a number of case studies to highlight the various installation choices. These include addressing the use of the ESA against multiple directories in a heterogeneous enterprise.
Module 2: Message Filters (Advanced Policy)
This module focuses on advanced filter options with specific emphasis on creating, troubleshooting, simplification/streamlining and regular expressions. Helpful tips and tricks for both Message and Content filters are covered. Extensive hands-on exercises are designed to give the students practice working with the Command Line Interface (CLI), as well as practical experience troubleshooting and examining logs.
Module 3: Email Authentication
This module covers methods of authenticating email on the Cisco IronPort Appliance. A brief introduction of DKIM is provided and how it fits into the security aspects of mail, both for DKIM signing and Verification. Helpful examples are provided that shows how to install a DKIM certificate on an Cisco IronPort and create a signing profile. Then we introduce Sender Profile Framework and the various fields: HELO, FROM and PRA that are checked according to RFC 4407. Also, the meanings of the stamped SPF results are reviewed and we discuss the creation of filters to react to these results. These filters are designed to enforce SPF policies.