Overview
This one-day course teaches you how to configure and scope the rules within VMware Carbon Black® App Control™ product to maintain the system according to your organization’s security posture and organizational policies. Additionally, this course covers troubleshooting both the server and the agent for Carbon Black App Control and how to identify issues that impact normal operations. This course provides an in-depth, technical understanding of the Carbon Black App Control product through comprehensive coursework and hands-on scenario-based labs.
Prerequisites
This course requires completion of one following course:
Who Should Attend?
System administrators and security operations personnel, including analysts and managers
Course Outline
- Introductions and course logistics
- Course objectives
- Custom rules
- Execute / write action rules
- Triad structure
- Performance optimization rules
- Advanced rules
- Event rules
- Architecture and Workflow
- Server Requirements
- Server Components
- Server Troubleshooting
- Agent Components
- Agent Troubleshooting
