Exam Code: 642-513

Course Name: Securing Hosts Using Cisco Security Agent Exam

Vendor: Cisco

Passing Score: 700

642-513 is the most important certification from the Cisco. Cisco 642-513 or Securing Hosts Using Cisco Security Agent certification Exam covers the advance topics of the Cisco security Agent. Cisco 642-513 certification exam enable you to secure the host by using the advanced functionality of the Cisco Security Agent. Cisco 642-513 certification exam is the ideal exam for IT professionals who want to make their career in the Network Security and desire to become the Network Security Administrator.

The 642-513 exam provides you with the technical knowledge and skills of describing and deploying the CSA and CSA MC products. In order to be able to use CSA MC to configure groups, manage hosts, and build policies, you must take the 642-513 exam. moreover, it enables you to use CSA MC to configure rules. It trains you to define application classes and work with variables. The Securing Hosts Using Cisco Security Agent Exam facilitates you with the abilities to use CSA analysis and define and generate reports.

You can find many websites on the internet which provide you the quality and up-to-date study material for the preparation of your Cisco 642-513 exam or Securing Hosts Using Cisco Security Agent Certification Exam. But the major problem is that there is a few websites that provide you the quality and up-to-date study material in order to prepare your Cisco 642-513 or Securing Hosts Using Cisco Security Agent certification exam. Testking provide you the quality question with their detailed answer relevant to your Cisco 642-513 certification exam. Testking provide you the guidance books and the audio exam as well. Testking ‘s study material is collected by the well educated and qualified persons after a great research in order to provide you the quality study material. Testking also provide you the guidance of the senior and qualified persons. Testking provide you every thing that you need to clear your certification.

With the help of the Testking you can clear your certification in your first attempt. Testking also provides you the detailed information of every miner topics as well. Testking also provides you the practice exam. You can obtain quality study material and guidance from the Testking at a very reasonable price. Cisco 642-513 certification exams polish your technical skills and enhance your capabilities to manage and maintain the security of the host by using the Cisco advanced products.

Course Outline: Securing Hosts Using Cisco Security Agent Exam

Describe and deploy the CSA and CSA MC products

Explain the concept of network defense in depth

Describe Cisco Security Agent architecture

Describe the life cycle of an attack

Explain how Cisco Security Agent protects against attacks

Identify the CSA MC and CSA system requirements

Identify the administration workstation requirements

Install the CSA MC

Configure basic settings on the CSA MC

Install the CSA using a default group

Use CSA MC to configure groups, manage hosts, and build policies

Describe various components of the menu bar and its function in the CSA MC interface

Create, save, and delete data on the CSA MC

Create groups to ease host management and security policy deployment

Build Agent kits for the newly created groups

View host status and modify host configuration

Distribute software updates to hosts

Discuss components of a policy

Configure policies and rule modules

Use CSA MC to configure rules

Describe the basics of rule construction and functionality

Configure rules common to Windows and UNIX systems

Configure Windows-Only rules

Configure UNIX-Only rules

Describe the individual rules you can add to your policies that allow CSA MC to categorize processes and correlate events across multiple systems

Describe and configure the system API Control Rule

Describe and configure the Network Shield Rule

Describe and configure the Buffer Overflow Control Rule

Describe and configure the Email Worm Protection Rule module

Describe and configure the Installation Applications Policy

Describe and configure Global Event Correlation

Define application classes and work with variables

Explain the use of application classes in creating security policies

Discuss the preconfigured application classes included in the CS AMC

Configure a static application class

Create a dynamic application class and an application-builder rule

Discuss how events sets are used to ease administration of security policies

Configure data, file and network address sets

Create registry, COM component and network services sets

Use the COM extraction utility to gather PROGIDs and CLSIDs for the software installed on a system

Configure Query Settings variables to be used with Query rules

Use CSA Analysis and define and generate reports

Understand and configure application deployment investigation

Understand and configure product associations for application deployment investigation

Configure and run application deployment reports

Understand and configure application behavior investigation

Understand and use behavior analysis reports

Import and use behavior analysis rule modules

Explain the features of the Event Log and Event Monitor

Configure filtering of events for logging, reports, and alerts

Create event-based alerts

Generate reports on events selected by sorting criteria