RSA NetWitness Platform Administration II

Created by Catherine Robichaud Employee on Nov 18, 2019

Wednesday, September 23, 2020 at Live Virtual Classroom Training

Starts at 10:00 AM · Ends on Sep 25, 2020 at 6:00 PM, EDT (America/New_York)

  • Catherine Robichaud

This Live Instructor-Led course provides students with additional knowledge and skills related to the administration and operation of RSA NetWitness Logs & Network. Topics covered include Health and Wellness, Event Source Monitoring, Integrating RSA SecurID Two-Factor Authentication, file structure and services review, backup and recovery topics and where to get help.


Prerequisite Knowledge/Skills

Students should have familiarity with the basic processes of cybersecurity forensic analysis, including some knowledge of network architecture, the TCP/IP stack, and networking protocols.
Students should also have completed the following courses (or have equivalent knowledge) prior to taking this training:

  • RSA NetWitness Logs & Networks Foundations
  • RSA NetWitness Logs & Network Core Administration


Course Objectives

Upon successful completion of this course, participants should be able to:

  • Define Health and Wellness policies, rules and alarms
  • Identify how Event Source Monitoring works
  • Create Event Source groups and policies
  • Configure RSA NetWitness to Authenticate using RSA SecurID
  • Perform administrative tasks using Explore, REST and NwConsole
  • List the major services
  • Identify the databases used within RSA NetWitness
  • Locate and view log files
  • Review Backup and Recovery strategies
  • Perform a backup and recovery


Click HERE to register for this training event. 

If you have any questions please click HERE.

Live Virtual Classroom Training