In order to register for a class, you need to first create an EMC account
If you need further assistance, contact us
Summary
This Live Instructor-Led course provides students with additional knowledge and skills related to the administration and operation of RSA NetWitness Logs & Network.
Overview
This Live Instructor-Led course provides students with additional knowledge and skills related to the administration and operation of RSA NetWitness Logs & Network. Topics covered include Health and Wellness, Event Source Monitoring, Integrating RSA SecurID Two-Factor Authentication, file structure and services review, backup and recovery topics and where to get help.
Audience
Customer, PS, SE, Partner, CS
Duration
3 days
Prerequisite Knowledge/Skills
Students should have familiarity with the basic processes of cybersecurity forensic analysis, including some knowledge of network architecture, the TCP/IP stack, and networking protocols.
Students should also have completed the following courses (or have equivalent knowledge) prior to taking this training:
- RSA NetWitness Logs & Networks Foundations
- RSA NetWitness Logs & Network Core Administration
Course Objectives
Upon successful completion of this course, participants should be able to:
- Define Health and Wellness policies, rules and alarms
- Identify how Event Source Monitoring works
- Create Event Source groups and policies
- Configure RSA NetWitness to Authenticate using RSA SecurID
- Perform administrative tasks using Explore, REST and NwConsole
- List the major services
- Identify the databases used within RSA NetWitness
- Locate and view log files
- Review Backup and Recovery strategies
- Perform a backup and recovery
Course Outline
- Health and Wellness
- Event Source Monitoring
- Configuring RSA NetWitness to Authenticate using RSA SecurID
- Administration Tools
- Files, Services and Daemons
- Backup and Recovery
In order to register for a class, you need to first create an EMC account
If you need further assistance, contact us