Chapter 9. Cisco Security Agent Deployment


A Host Intrusion Prevention System (HIPS) can be an invaluable tool that has the capability to address many of the computer security challenges you might face today. Before you research, evaluate, and purchase a HIPS product, you should have an idea of what's involved in a HIPS deployment. Be sure your expectations related to the deployment are correct.

This chapter helps you know what to expect during a HIPS deployment. It describes the tasks and decisions you need to make during an implementation of a real-world HIPS product, the Cisco Security Agent (CSA). The decisions made by a fictional company, the ACME Corp-oration, are used as examples at each stage in the deployment project.

ACME is headquartered in Austin, Texas. It employs approximately 9500 persons. It uses nearly 10,000 desktops and 300 servers. The company has sizable offices in New York, New York; Atlanta, Georgia; Chicago, Illinois; Portland, Oregon; and San Diego, California. The company also has manufacturing plants in DeKalb, Illinois; Midland, Texas; Gary, Indiana; and Huntsville, Alabama. Also, somewhere around 20 small sales offices are scattered around the U.S. ACME makes a wide variety of small home appliances, such as blenders, toaster ovens, irons, electronic clocks, and so on. It sells these items to retail establishments.

CSA deployment has seven major phases:

Step 1.

Understand the product

Step 2.

Predeployment planning

Step 3.

Implement management

Step 4.

Pilot

Step 5.

Tuning

Step 6.

Full deployment

Step 7.

Finalize the project

Note

This chapter is not a deployment guide and should not be used as a best practices reference. It accurately describes many of the decisions you would have to make during a CSA deployment, but it is not a full-blown deployment guide.





Intrusion Prevention Fundamentals
Intrusion Prevention Fundamentals
ISBN: 1587052393
EAN: 2147483647
Year: N/A
Pages: 115

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net