Episode Information
Episode Name: Episode 22 - How Cisco uses the Web Security Appliance to protect its network
Contributors: David White Jr., Blayne Dreier, Jay Johnston, Magnus Mortensen, Zack Shaikh, Jeff Bollinger
Posting Date: August 04, 2011
Description: Jeff Bollinger (Cisco Information Security Investigator), and Zack Shaikh (Cisco TAC engineer specializing in the Ironport Web Security Appliance) join the panel for a discussion about the WSA product. Then Jeff shares how Cisco is dploying WSAs to protect its own network from threats on the web, and some lessons he's learned along the way.
Listen Now (MP3 36 MB; 51:51 mins)
Subscribe to the Podcast in iTunes by clicking the image below:
About the Cisco TAC Security Podcast
The Cisco TAC Security Podcast Series is created by Cisco TAC engineers. Each episode provides an in-depth technical discussion of Cisco product security features, with emphasis on troubleshooting.
Complete episode listing and show information
Show Notes
Borderless Networks Case Study: Cisco Protects Internal Infrastructure from Web-Based Threats
http://www.cisco.com/web/about/ciscoitatwork/network_systems/ironport_web_security_appliance.html
Cisco Ironport Web Security Appliance Deployment at Cisco. Video Blog by Gavin Reid
http://blogs.cisco.com/security/cisco-ironport-web-security-appliance-deployment/
Web Security Deployment Guide (pdf):
http://www.cisco.com/en/US/docs/solutions/Enterprise/Borderless_Networks/Smart_Business_Architecture/H1CY11/SBA_Mid_BN_WebSecurityDeploymentGuide-H1CY11.pdf
HTTPS decryption? (Server vs. CA signing certs)::
http://tinyurl.com/67ejzo
Deploying a Self-Signed Root Certificate with Group Policy to ALL the client in the network:
http://unixwiz.net/techtips/deploy-webcert-gp.html
How do I export and convert a pfx CA root certificate and key from a Microsoft CA server:
http://tinyurl.com/4vk4w5
How do I properly set up NTLM with SSO (credentials sent transparently):
http://tinyurl.com/2n2ykh
WSA Video Knowledge base:
http://www.videokb.com/