Onboarding
Steps:
-
Step 1: Plan for Umbrella Secure Internet Gateway
- Task 1: Familiarize yourself with Umbrella SIG
-
Step 2: Get started with SIG
- Task 2: Learn about available resources
- Task 3: Get to know the Umbrella dashboard
-
Step 3: Log in and manage dashboard access
- Task 4: Log in to the SIG dashboard
- Task 5: Share access to your Umbrella dashboard with another person in your organization
- Task 6: Manage user access in your Umbrella dashboard by assigning user roles
- Task 7: Create custom user roles to provide users with unique Umbrella dashboard access permissions
-
Step 4: Plan for SIG traffic redirection to Umbrella
- Task 8: Add a fixed network identity
- Task 9: Point your DNS to Umbrella
- Task 10: Ensure Umbrella is running properly (Key Step)
-
Step 5: Configure DNS policies
- Task 11: Use the DNS Policy Wizard to guide you through policy creation
- Task 12: Determine your security settings, content category settings, application settings and destination lists.
- Task 13: Drag and drop your policies in the order you want them applied to identities and learn more about policy precedence
- Task 14: Test your policies using our policy tester
-
Step 6: Install and deploy a Root certificate
- Task 15: For identities that are configured to use a DNS policy, install the Cisco Umbrella root certificate
- Task 16: For identities that are configured to use the Web policy, install either the Cisco Umbrella root certificate or your own CA signed root certificate
- Task 17: Test and validate your policies and applications with the SWG agent (only if you have configured the Cisco Secure Client)
-
Step 6: Deploy your virtual appliances
- Task 18: Optimize performance by following virtual appliance best practices
Implement
Steps
- Step 1: Configure your initial web policy
-
Step 2: Implement Secure Web Gateway
- Task 4: Configure the secure web gateway with one of the following deployment methods
- Task 5: Protect end users on and off premise with the Umbrella Module for Cisco Secure Client
- Task 6: Protect your internal network by configuring an IPsec Tunnel
- Task 7: To protect traffic generated from a web browser, you have the option to use PAC files to deploy the Secure Web Gateway
- Task 8: Set up proxy chaining to Umbrella
-
Step 3: Set up the Cloud-Delivered Firewall (CDFW)
- Task 9: Deploy the Cloud-Delivered Firewall with IPsec Tunnels
- Task 10: Firewall policy - add a firewall rule and change a firewall priority
Use
Steps
- Step 1: Enable Umbrella to inspect files for malicious content
- Step 2: Enable advanced web policy components
-
Step 3: Utilize Umbrella Reports
- Task 8: View reports to monitor your security environment and identify security gaps, spikes in threat activity and risky users
- Task 9: View the Activity Search report
- Task 10: View the Admin Audit log
- Task 11: View the Top Threats report
- Task 12: App Discovery: Provides visibility into risky cloud applications used across your organization, so you can identify potential risk and block specific applications easily
- Task 13: Schedule reports to be sent daily, weekly, or monthly
- Task 14: Create custom content category to support customer policies
Engage
Steps
-
Step 1: Set up user provisioning with AD Integration
- Task 1: Provision users on the Umbrella dashboard
- Step 2: Configure SAML integrations
Adopt
Steps
-
Step 1: Export logging events
purchase orders
- Task 1: Export the logs to your own S3 bucket or the Cisco-managed S3 bucket
- Task 2: Change the location of Event Data logs from the default location
-
Step 2: Enable Cloud Malware
- Task 3: Cloud Malware Report: Provides an overview of malicious files within your environment and details their associated risks
-
Step 3: Plan and implement Data Loss Prevention
- Task 4: Add a real-time rule to the DLP policy to define what web proxy traffic to monitor
- Task 5: Add a SaaS API Rule to the DLP policy to leverage the APIs
- Task 6: Data Loss Prevention analyzes data in-line to provide visibility and control over sensitive data leaving your organization
-
Step 4: Configure Umbrella's Intrusion Prevention System (IPS)
- Task 7: Learn how IPS works to protect your environment
- Task 8: Configure IPS settings for your Firewall policy
- Task 9: Select the default or add a custom IPS signature list
-
Step 5: Enable Remote Browser Isolation (RBI)
- Task 10: Learn about the Umbrella package RBI "Add-ons"
- Task 11: Configure a Rule with the Isolate Action
-
Step 6: Complete a health check
- Task 12: Review the Health Checklist to complete a self-guided Health Check
Comments
0 comments
Please sign in to leave a comment.