VMware Security Operations for the Software Defined Data Center Training

VMware Security Operations for the Software Defined Data Center Training

Course Delivery

This Course is available in the following format:

Request this course in a different delivery format

GSA Schedule 70 Saving for Government Customers

Course Overview:

VMware Security Operations for the Software Defined Data Center Training – Hands-on

In this VMware Security Operations for the Software Defined Data Center Training course, you will learn how to use the VMware software-defined data center (SDDC) product portfolio and tools to better manage administrator access, harden your VMware vSphere environment, and secure data at rest and in motion. This VMware Security Operations for the Software Defined Data Center Training course also discusses end-user computing (EUC) security, as well as compliance and automation to help you ensure that your deployments align with your security policies.

Audience / Target Group:

The target audience for this VMware Security Operations for the Software Defined Data Center Training course:

● Experienced system administrators
● Cloud administrators
● System integrators
● Operational developers

Class Prerequisites:

The knowledge and skills that a learner must have before attending this VMware Security Operations for the Software Defined Data Center Training course are:

VMware vSphere: Install, Configure, Manage [V6.5]

What You Will Learn:

Upon completing this VMware Security Operations for the Software Defined Data Center Training course, learners will be able to meet these objectives:

● Concepts involved in securing an SDDC and protecting the data in the data center
● Manage vSphere administrator access to hosts and the VMware vCenter Server system based on identified job roles and requirements
● Implement security best practices of vSphere components based on organizational security policies
● Configure data protection for data at rest and data in motion
● Manage protection for server and desktop-class virtual machines, endpoints, and networks
● Use microsegmentation to protect and manage multitier applications and network data
● VMware AirWatch functionality to protect mobile computing and EUC deployments
● Perform activity monitoring and logging
● Explore relevant logs to meet compliance requirements
● Use VMware NSX security groups, policies, and tags to automate deployment and security processes
● Use automation to respond to security-related events

VMware Security Operations for the Software Defined Data Center Training – Course Syllabus:

1. VMware Security Operations for the Software Defined Data Center Training – Course Introduction

Introductions and course logistics

2. VMware Security Operations for the Software-Defined Data Center Training – Security Concepts

Key IT security principles for the SDDC
Differences between securing traditional infrastructures and virtual infrastructures
Identity and access management concepts for the SDDC
Methods to secure your virtual infrastructure components
EUC and mobile computing risks
Guest operating system access security
Hardening concepts and how they apply to virtual infrastructure components

3. vSphere Security Identity and Access Management

Role-based access control concepts for vSphere and View
Configuring role-based access control for ESXi, vCenter Server, and View
Configuring vSphere single sign-on for administrative access
Password hardening options
Configuring ESXi local user management and integration with Active Directory
ESXi security profiles and access to services

4. VMware Security Operations for the Software Defined Data Center Training – vSphere Hardening

ESXi host hardening
Implementing lockdown mode on ESXi hosts
Configuring ESXi host-based firewall settings
vCenter Server hardening
Tools to reduce infrastructure vulnerabilities
Implementing hardening best practices based on the vSphere Hardening Guide

5. VMware Security Operations for the Software Defined Data Center Training – Data Protection

Data encryption technology
Data-at-rest encryption options for server and desktop virtual machines
View endpoint protection best practices
Datastore security options
View PCoIP encryption
VMware Operating System Optimization Tool for desktop and server virtual machines
Introducing VMware AirWatch for mobile and desktop security
VMware AirWatch and VMware NSX integration
Configuring vSphere security certificate management using VMware Certificate Authority and VMware Endpoint Certificate services
Using the Certificate Automation Tool to manage vSphere certificates
Establishing and using an IPsec VPN
Using the VMware Endpoint Certificate Store

6. VMware Security Operations for the Software Defined Data Center Training – Network Security

Managing network data in an SDDC
Security policies and settings of vSphere switches
Configuring vSphere advanced security features for distributed switches
Using the VMware NSX distributed firewall and distributed router to implement micro segmentation
Protecting and managing north-south traffic with VMware NSX® Edge™ services gateway and physical firewalls
Managing access to the vSphere management network
Using VMware NSX® Virtual Switch™ features to implement network security
Designing clusters and racks to minimize vulnerabilities
Limiting access to vSphere management networks
Hardening network infrastructure components

7. Virtual Machine, Mobility, and Application Protection

Securing virtual machine guest operating systems
Mobile device security with VMware AirWatch
Using VMware NSX with Service Composer for Endpoint Protection
Using distributed firewalls and microsegmentation to isolate and protect virtual machines
Using VMware NSX identity-based firewalls to control network traffic based on Active Directory user IDs
Additional VMware NSX functionality using integration with third-party solutions

8. Data Center Monitoring and Compliance

Using vRealize Log Insight to identify and analyze security-related log entries
Implementing a distributed logging environment
vRealize Configuration Manager compliance checkers
vRealize Configuration Manager compliance monitoring

9. VMware Security Operations for the Software Defined Data Center Training – Automating Data Center Security

Using VMware functions and tools to enforce consistent organizational security policies during infrastructure deployment
Automating responses to security events
Implementing security automation with security groups, security policies, and security tags
Automatically applying security settings to newly provisioned virtual machines based on VMware NSX security policies

Whether you are looking for general information or have a specific question, we want to help!

Request More Information

Print Friendly, PDF & Email