Configuring Security Threat Response Manager (CSTRM)

This course is intended for network engineers, support personnel, reseller support, and anyone responsible for implementing STRM.

This course assumes that students have basic networking knowledge and experience in the following areas:

• Understanding of TCP/IP operation
• Understanding of network security concepts
• Experience in network security administration

After successfully completing this course, you should be able to:

• Define STRM and its basic functionality;
• Define the STRM functional architecture;
• Interpret the correlation of flow and event data;
• Configure STRM by reviewing and editing global views and sentries;
• Navigate the STRM Dashboard and Event Viewer;
• Access the Network Surveillance interface;
• Access the Flow Viewer interface;
• Access the Offense Manager interface;
• Specify STRM’s asset management and vulnerability assessment functionality;
• Use STRM’s reporting functionality;
• Explain the purpose and structure of STRM rules;
• List basic tuning methodology; and
• Identify the basic information for maintaining and troubleshooting STRM.

This two-day course discusses the configuration of Juniper Networks Security Threat Response Manager (STRM) in a typical network environment. Key topics include deploying an STRM device in the network, configuring flows, running reports, and troubleshooting. This course is based on STRM software 2008.3.

Through demonstrations and hands-on labs, students will gain experience in configuring, testing, and troubleshooting the STRM device.