Automating Cisco ASA and Firepower Policies Using APIs
By Nick Russo
Course info
Course info
Description
Conceptually, firewall security policies are straightforward, but managing them in production has historically been a challenge due to scale, efficacy, and business alignment. In this course, Automating Cisco ASA and Firepower Policies Using APIs, you'll leverage Ansible to configure Cisco Adaptive Security Appliance (ASA) policies via infrastructure-as-code. Next, you'll discover how to interact with the Cisco Firepower Threat Defense (FTD) REST API to reconstruct classic ASA policies on the next-generation security platform, which integrates firewall and Intrusion Prevention System (IPS) capabilities. Finally, you'll learn how to manage distributed FTD deployments using the Firepower Management Center (FMC) REST API, a centralized "single pane of glass" for the Firepower ecosystem of products. When you're finished with this course, you'll have the skills and knowledge of security programmability needed to confidently build, design, and operate professional-grade automation solutions.
About the author
Nick Russo, CCDE #20160041 and CCIE #42518, is your go-to-guy for all things networking and automation. Nick loves training online and speaking at industry conferences sharing his expertise.
More from the author
Section Introduction Transcripts
Course Overview
[Autogenerated] Hi, everyone. My name is Nick Russo and welcome to my course titled Automating Cisco S A and Firepower Policies using APIs. Anyone who has worked in Network Security knows how tedious it can be to manage firewall policies manually. I'll teach you how to automate that process. Using popular automation tools specifically will cover three main topic areas. Cisco Adaptive Security Appliance or S a policy automation using answerable, Cisco Firepower, Threat Defense or FTD Policy Automation using python and rest APIs and managing distributed FTD deployments with Fire Power Management center or FMC, also using python and rest APIs. After completing this course, you'll know how to design, operate and maintain various automation scripts to help translate your business intent into a compliant security policy. Before beginning this course ID, recommend the following prerequsites courses. These three courses provide the foundation of software development and program ability skills that are extended in this course. The content around Cisco product APIs will be especially helpful. I'm assuming you already have a strong background in python programming. This fourth course focuses on enterprise network automation, which will provide useful context before digging into security program ability topics. I hope you'll join me on this journey to improve your programming skills with Cisco S, A, F T D and FMC Automation at Pluralsight.