Who should attend
Security professionals involved in the management, configuration, administration, and monitoring of FortiWeb in small to large enterprise deployments should attend this course.
Prerequisites
You must have an understanding of the topics covered in NSE 4 - FortiOS Administrator, or have equivalent experience.
It is also recommended that you have an understanding of the following topics:
- HTTP protocol
- Basic knowledge of HTML, JavaScript, and server-side dynamic page languages, such as PHP
Course Objectives
After completing this course, you will be able to:
- Define web application firewall and describe its role in the network
- Perform basic configuration and initial deployment
- Configure FortiWeb for deployment in a load balanced network environment
- Implement SSL/TLS encryption, including inspection and offloading
- Configure and customize FortiWeb signatures
- Configure FortiWeb to protect against DoS
- Configure API protection and bot mitigation
- Implement FortiWeb machine learning capabilities
- Configure user authentication and access control features
- Configure FortiWeb to ensure Payment Card Industry Data Security Standard (PCI DSS) compliance of your web applications
- Configure FortiWeb to perform HTTP content based routing, rewriting, and redirection
- Perform basic troubleshooting of FortiWeb
Detailed Course Outline
- 1. Introduction
- 2. Basic Setup
- 3. Web Application Security
- 4. API Discovery and Protection
- 5. Bot Mitigation
- 6. Application Delivery
- 7. Additional Configuration
- 8. Compliance
- 9. Troubleshooting