در دوره VMware vSphere Security به سوالات زیر پاسخ خواهیم داد.
- آیا ESXi و به طور کلی تکنولوژی مجازی سازی امن است؟
- چگونه میتوانیم محیط vSphere خود را امنتر کنیم؟
- چگونه VMware vSphere میتواند به امنیت تجارت و سازمان شما کمک کند؟
و در نهایت به صورت اجمالی امنیت در سایر محصولات VMware نظیر NSX، Horizon، AppDefense و … را بررسی خواهیم کرد.
مدت زمان دوره: 25 ساعت
پیش نیاز دوره: VMware VCP DCV
مخاطبین دوره: مدیران و کارشناسان مراکز داده، مجازی سازی و امنیت
سر فصلهای دوره:
- Virtualization Security
- What is Virtualization?
- Overview of x86 Virtualization
- CPU Virtualization and Instruction Isolation
- Memory Virtualization and Isolation
- Device I/O Virtualization and Isolation
- ESXi Security
- Built-In Security Features
- ESXi Firewall
- ESXi Services
- Lockdown Mode
- Bash & Shell
- Packages Integrity
- UEFI Secure Boot for ESXi Hosts
- Securing ESXi Hosts with Trusted Platform Module
- Network Time Protocol (NTP)
- Managed Object Browser (MOB)
- Ensure Security Using Host Profile and CLI
- Communication Security
- Basic Concepts
- VMware Certificate Infrastructure
- VMware Certificate Authority (VMCA)
- VMware Endpoint Certificate Store (VECS)
- Machine SSL Certificate
- Solution User Certificate
- Implementation Methods
- ESXi Certificate
- Authentication and Authorization
- AAA Model
- vCenter Single Sign-On (SSO)
- Smart Card Authentication
- Standalone ESXi Host
- Role, Permission, and Privileges
- ESXi Passwords
- ESXi Login Behavior
- Root vaulting!
- Login Message
- vCenter Security
- vpxuser Security
- Security Best Practices
- Password Policy
- Lockout Policy
- Network File Copy (NFC) Security
- ESXi Thumbprint Verification
- Required Network Ports
- Virtual Machine Security
- Guest OS Security
- UEFI Secure Boot
- VBS & vTPM
- VM Encryption
- VM Hardening
- Storage Security
- Datastore Storm Caution in shared Enviroments
- vSAN Encryption
- Disk Encryption!
- LUN Masking
- Zoning (Hard & Soft)
- iSCSI CHAP
- NFS Firewall Rule
- Network Security
- MAC Addresses
- Port Group Security
- Network Security Best Practices
- Securing Fault Tolerance Logging and vMotion Traffic
- NetFlow
- Port Mirroring
- IDS/IPS in vSphere Enviroments
- Management Jump Box or VPN
- Update & Patching
- vSphere Update Manager
- Guest OS Update Solutions
- Application Update Solutions
- Hardware Firmware Update
- Log Management
- ESXi Log Files
- VM Logging
- vCenter Log Files
- Syslog Configuration
- Configure Syslog on ESXi Hosts
- Log Management Tools
- Business Continuity
- High Availability
- Data Protection
- Disaster Recovery
- Other VMware Products and Security
- NSX Platform
- vSphere Platinum and AppDefense
- Horizon View