Hakkında
This three day course gives networking professionals a functional understanding of the BIG-IP APM system as it is commonly used. The course covers installation, configuration, and management of the BIG-IP APM system. The course includes lectures, labs, and discussions.
Kurs Süresi
Instructor-led training: 3 days with hands-on lab practiceVirtual instructor-led training: 3 days of web-based classes with hands-on lab practiceÖnkoşullar
Students should understand:
• Common Network terminology
• TCP/IP Addressing, Routing and Internetworking concepts
• DNS Methodology
Students should be familiar with:
• Common Authentication mechanisms such as: Active Directory, LDAP, Radius
• HTTP, HTML, and common webserver technologies and products (IIS, Apache, JavaScript for example)
In addition, students should be proficient in:
• Basic PC operation and application skills, including MS Windows
• Basic Web browser operation (Internet Explorer is used in class)
Kurs İçeriği
This course gives network administrators, network operators, and network engineers a functional understanding of BIG-IP Access Policy Manager as it is commonly deployed in both application delivery network and remote access settings. The course introduces students to BIG-IP Access Policy Manager, its configuration objects, how it commonly deployed, and how typical administrative and operational activities are performed. The course includes lecture, hands-on labs, interactive demonstrations, and discussions.
Topics covered in this course include:
- Getting started with the BIG-IP system
- APM Traffic Processing and APM Configuration Wizards
- APM Access Policies, Access Profiles
- Visual Policy Editor, Branches and Endings
- APM Portal Access and Rewrite Profiles
- Single Sign-On and Credential Caching
- APM Network Access and BIG-IP Edge Client
- Layer 4 and Layer 7 Access Control Lists
- APM Application Access and Webtop Types
- Remote Desktop, Optimized Tunnels and Webtop Links
- LTM Concepts including Virtual Servers, Pools, Monitors and SNAT’ing
- APM + LTM Use Case for Web Applications
- Visual Policy Editor Macros
- AAA Servers and Authentication and Authorization with Active Directory and RADIUS
- Endpoint Security with Windows Process Checking, Protected Workspace and Firewalls
- iRules, Customization and SAML
Kurs Hedefleri
By the end of this course, the student should be able to perform an initial configuration using the Setup Utility and build many common configurations using the Graphical User Interface (browser-based). In addition, the student should be able to monitor and manage common tasks concerning traffic processed through the BIG-IP APM system.
• Traffic Processing
• Policies and Profiles
• Portal Access
• Network Access
• Access Control Lists
• Application Access & Webtops
• Web Application Access for LTM
• Macros and Authentication
• Client side checks & Actions
• Advanced Topics
• Authentication Domains
• Maintaining BIG-IP APM
• Customization
Ders İçeriği
• Chapter 1: Setting Up the BIG-IP System
o Introducing the BIG-IP System
o Initially Deploying the BIG-IP System
o Creating a Backup of the BIG-IP System
o F5 Support Resources and Tools
o Chapter Resources
o BIG-IP System Setup Labs
o Lab 1.1 – Configure the Management Port
o Lab 1.2 – Activate the BIG-IP System
o Lab 1.3 – Classroom Network Configuration
o Lab 1.4 – Test Access and Archive the Configuration
o Lab 1.5 – AskF5 Research Lab
• Chapter 2: APM Traffic Processing
o Virtual Servers and Access Profiles
o APM Configuration Wizards
o Logging
o Sessions
o Lab 2.1 – APM Configuration Wizard
o Lab 2.2 – Configuration Backup
• Chapter 3: APM Access Policies and Profiles
o Access Policies Overview
o Access Policy Branches
o Access Policy Endings
o Configuring Access Policies and Profiles
o Using Webtops
o Exporting and importing access profiles
o Lab 3.1 – Access Policies
o Lab 3.2 – Configuration Backup
• Chapter 4: APM Portal Access
o Portal Access Overview
o Configuring Portal Access
o Rewrite Profiles
o SSO and Credential Caching
o Lab 4.1 – Portal Access with Single Sign-On
o Lab 4.2 – Configuration Backup
• Chapter 5: APM Network Access
o Network Access Overview
o Configuring Network Access
o BIG-IP Edge Client
o Lab 5.1 – Network Access
o Optional Lab 5.2 – BIG-IP Edge Client
o Lab 5.3 – Configuration Backup
• Chapter 6: APM Access Control Lists
o Access Control of Resources Overview
o Access Control Lists
o Lab 6.1 – Access Control Lists
o Lab 6.2 – Layer 7 Access Control Lists
o Lab 6.3 – Layer 4 + 7 Access Control Lists
o Lab 6.4 – Configuration Backup
• Chapter 7: APM Application Access Webtops
o Application Access Webtops Overview
o Application Access
o Configuring Remote Desktop Access
o Configuring Webtops
o Lab 7.1 – Full Webtop
o Lab 7.2 – Webtop Links
o Lab 7.3 – Application Access Tunnels
o Lab 7.4 – Network Access Optimized Tunnels
o Lab 7.5 – Terminal Services
o Lab 7.6 – Single Sign-on for Terminal Services
o Lab 7.7 – Terminal Services Java client
o Lab 7.8 – Configuration Backup
• Chapter 8: BIG-IP LTM Concepts
o LTM Pools and Virtual Servers
o Monitor Concepts and Configuration
o Secure Network Address Translation (SNAT)
o Lab 8.1 – Virtual Servers, Pools and Monitors
o Optional Lab 8.2 – SNAT Automap
o Lab 8.3 – Configuration Backup
• Chapter 9: Web Application Access for LTM
o Web Applications Access for LTM
o Configuring APM and LTM together
o Profiles
o Profile Types and Dependencies
o Configuring and Using Profiles
o SSL Termination/Initiation
o SSL Profile Configuration
o Lab 9.1 – Web Applications Access for LTM
o Lab 9.2 – Pool Assignment Agent
o Optional Lab 9.3 –Self-Signed Certificates
o Lab 9.4 – Configuration Backup
• Chapter 10: APM Macros and Authentication Servers
o Access Policy Macros
o Configuring Access Policy Macros
o Authentication with Access Policy Manager
o Radius Server Authentication
o LDAP Server Authentication
o Active Directory Server Authentication
o One-time Password Authentication
o Lab 10.1 – AAA Servers
o Lab 10.2 – Visual Policy Editor Macros
o Lab 10.3 – Active Directory Query
o Optional Lab 10.4 – AD Query and AD Groups
o Lab 10.5 – Configuration Backup
• Chapter 11: Client-Side Endpoint Security
o Overview of Client-Side Endpoint Security
o Client-Side Endpoint Security Part 1
o Client-Side Endpoint Security Part 2
o Lab 11.1 – Client-Side Process Check
o Optional Lab 11.2 – Protected Workspaces
o Optional Lab 11.3 – AV and Firewall Checking
o Lab 11.4 – Configuration Backup
• Chapter 12: APM Advanced Topics
o General Purpose Actions
o Server Side Checks
o Session Variables
o Introducing Tcl
o Access iRules Events
o Typical APM iRule Use Case
o Configuring Access iRules
o Dynamic ACLs
o Lab 12.1 – Session Variables 1
o Lab 12.2 – Session Variables 2
o Lab 12.3 – iRule
o Lab 12.4 – Pre-defined Redirect iRule
o Lab 12.5 – Dynamic Access Control Lists
o Lab 12.6 – Allow Access Based on Time
o Lab 12.7 – Allow Access Based on Day of Week
o Lab 12.8 – One-Time Passwords
o Lab 12.9 – Two-Factor Authentication with OTP
o Lab 12.10– Configuration Backup
• Chapter 13: APM Authentication Domains
o Authentication Domain Concepts
o Lab 13.1 – Authentication Domains
o Lab 13.2 – Authentication Domains with SSO
o Optional Lab 13.3 – Web App Access Logout
o Lab 13.4 – Configuration Backup
• Chapter 14: SAML and Customization
o SAML Overview
o Customization Overview
o Big-IP EDGE Client
o Advanced Edit Mode Customization
o Lab 14.1 – Customization Tool
o Lab 14.2 – Customized Logon Page
o Lab 14.3 – SAML ldP and SP Services
o Lab 14.4 – Configuration Backup
• Chapter 15: APM Configuration Project
o Configuration Project Overview
o Lab 15.1 – Configuration Restore
o Lab 15.2 – Configuration Project
Kimler Katılmalı
This course is intended for system and network administrators responsible for installation, setup, configuration, and administration of the BIG-IP APM System.
Sınavlar
F5-CTS APM Requirements
– F5-CA Certification
Exam 304-APM Specialist