-
This two-day, hands-on course will provide you with the advanced knowledge, skills and tools you need to perform advanced operations and troubleshoot VMware Carbon Black Cloud. This course will cover integrating VMware Carbon Black Cloud with other third-party components and utilizing the API and SDK to automate operations within the product and your security stack. This course will also enable you to troubleshoot common issues with sensor installation, operation, and within the VMware Carbon Black Cloud console using hands-on lab problems.
-
Course Contents
-
- Course Introduction
- VMware Carbon Black Cloud Integrations
- VMware Carbon Black Cloud Syslog Integration
- Using Postman
- Using the VMware Carbon Black Cloud Python SDK
- Automating Operations
- Sensor Installation Troubleshooting
- VMware Carbon Black Cloud Console Troubleshooting
- Sensor Operations Troubleshooting
-
Target Group
-
Experienced security administrators and security analysts who are already familiar with VMware Carbon Black Cloud
-
Knowledge Prerequisites
-
Before attending this course, you should have completed the VMware Carbon Black Cloud: Plan and Deployment course.
In addition, you should have the following knowledge:
- Good understanding of managing and working with various Linux and Windows operating systems
- Knowledge and work experience in security operations
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 VMware Carbon Black Cloud Integrations |
| • Describe the integration capabilities with VMware Carbon Black Cloud |
| • Determine integration use cases for VMware Carbon Black Cloud |
| • Identify required components for integrating VMware Carbon Black Cloud |
| • Differentiate VMware Carbon Black Cloud integration vendors |
| 3 VMware Carbon Black Cloud Syslog Integration |
| • Describe the function of the Syslog Connector |
| • Generate API and SIEM keys from the Cloud console |
| • Validate a successful Syslog integration |
| • Describe how to automate the Syslog Connector |
| • Troubleshoot problems with the Syslog integration |
| 4 Using Postman |
| • Explain the concept and purpose of an API |
| • Interpret common REST API Status codes |
| • Recognize the difference between platform and product APIs |
| • Using the Postman Client to initiate API calls |
| • Create a custom access level and respective API key |
| • Create a valid API request |
| 5 Using the VMware Carbon Black Cloud Python SDK |
| • Install the VMware Carbon Black Cloud Python SDK |
| • Describe the different authentication methods |
| • Evaluate the best authentication method for a given task |
| 6 Automating Operations |
| • Automate basic Incident Response tasks using the VMware Carbon Black Cloud SDK and API |
| • Automate basic watchlist interactions using the VMware carbon Black Cloud SDK and API |
| 7 Sensor Installation Troubleshooting |
| • Describe sensor install log collection process |
| • Identify sensor install log parameters |
| • Create a detailed sensor install log |
| • Locate sensor install logs on an endpoint |
| • Interpret sensor install success from an install log |
| • Determine likely cause for install failure using sensor logs |
| • Propose resolution steps for a given sensor install failure |
| 8 VMware Carbon Black Cloud Console Troubleshooting |
| • Identify sensor bypass status reasons |
| • Simplify console data exports using search |
| • Describe differences in Audit Log detail levels |
| • Locate built-in browser tools |
| • Gather console diagnostics logs from a browser |
| • Review console diagnostics logs |
| 9 Sensor Operations Troubleshooting |
| • Identify available types of diagnostic logs |
| • Gather appropriate diagnostic logs for a given issue |
| • Identify steps for resolving software interoperability problems |
| • Identify steps for resolving resource problems |
| • Identify steps for resolving network problems |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.-
This two-day, hands-on course will provide you with the advanced knowledge, skills and tools you need to perform advanced operations and troubleshoot VMware Carbon Black Cloud. This course will cover integrating VMware Carbon Black Cloud with other third-party components and utilizing the API and SDK to automate operations within the product and your security stack. This course will also enable you to troubleshoot common issues with sensor installation, operation, and within the VMware Carbon Black Cloud console using hands-on lab problems.
-
Course Contents
-
- Course Introduction
- VMware Carbon Black Cloud Integrations
- VMware Carbon Black Cloud Syslog Integration
- Using Postman
- Using the VMware Carbon Black Cloud Python SDK
- Automating Operations
- Sensor Installation Troubleshooting
- VMware Carbon Black Cloud Console Troubleshooting
- Sensor Operations Troubleshooting
-
Target Group
-
Experienced security administrators and security analysts who are already familiar with VMware Carbon Black Cloud
-
Knowledge Prerequisites
-
Before attending this course, you should have completed the VMware Carbon Black Cloud: Plan and Deployment course.
In addition, you should have the following knowledge:
- Good understanding of managing and working with various Linux and Windows operating systems
- Knowledge and work experience in security operations
| 1 Course Introduction |
| • Introductions and course logistics |
| • Course objectives |
| 2 VMware Carbon Black Cloud Integrations |
| • Describe the integration capabilities with VMware Carbon Black Cloud |
| • Determine integration use cases for VMware Carbon Black Cloud |
| • Identify required components for integrating VMware Carbon Black Cloud |
| • Differentiate VMware Carbon Black Cloud integration vendors |
| 3 VMware Carbon Black Cloud Syslog Integration |
| • Describe the function of the Syslog Connector |
| • Generate API and SIEM keys from the Cloud console |
| • Validate a successful Syslog integration |
| • Describe how to automate the Syslog Connector |
| • Troubleshoot problems with the Syslog integration |
| 4 Using Postman |
| • Explain the concept and purpose of an API |
| • Interpret common REST API Status codes |
| • Recognize the difference between platform and product APIs |
| • Using the Postman Client to initiate API calls |
| • Create a custom access level and respective API key |
| • Create a valid API request |
| 5 Using the VMware Carbon Black Cloud Python SDK |
| • Install the VMware Carbon Black Cloud Python SDK |
| • Describe the different authentication methods |
| • Evaluate the best authentication method for a given task |
| 6 Automating Operations |
| • Automate basic Incident Response tasks using the VMware Carbon Black Cloud SDK and API |
| • Automate basic watchlist interactions using the VMware carbon Black Cloud SDK and API |
| 7 Sensor Installation Troubleshooting |
| • Describe sensor install log collection process |
| • Identify sensor install log parameters |
| • Create a detailed sensor install log |
| • Locate sensor install logs on an endpoint |
| • Interpret sensor install success from an install log |
| • Determine likely cause for install failure using sensor logs |
| • Propose resolution steps for a given sensor install failure |
| 8 VMware Carbon Black Cloud Console Troubleshooting |
| • Identify sensor bypass status reasons |
| • Simplify console data exports using search |
| • Describe differences in Audit Log detail levels |
| • Locate built-in browser tools |
| • Gather console diagnostics logs from a browser |
| • Review console diagnostics logs |
| 9 Sensor Operations Troubleshooting |
| • Identify available types of diagnostic logs |
| • Gather appropriate diagnostic logs for a given issue |
| • Identify steps for resolving software interoperability problems |
| • Identify steps for resolving resource problems |
| • Identify steps for resolving network problems |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.