Advanced Security for Field Engineers Exam

The Advanced Security for Field Engineers 642-567 ASFE is the exam associated with the Cisco Advanced Security Field Specialist certification. Candidates can prepare for this exam by taking the Advanced Security for Field Engineers (ASFE) course. This exam tests a candidate's knowledge of certain Cisco security products and their deployment in a Cisco Self-Defending Network strategy. Topics covered include Cisco Security Appliance (ASA), PIX Firewall, IDS/IPS, VPN, Security Management, CS-MARS and NAC Appliance.

The following information provides general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes the guidelines below may change at any time without notice.

Implement Cisco NAC

• Identify the components, technologies and features used for Cisco Network Access Control
• Configure Cisco Secure ACS for NAC
• Verify and Troubleshoot Cisco Secure ACS operation
• Configure Cisco Routers as network access devices
• Verify and Troubleshoot Cisco router configuration and operation
• Configure Cisco Switches as network access devices
• Verify and Troubleshoot Cisco switch configuration and operation
• Configure AV vendor policy server
• Troubleshoot the interaction between the ACS and AV vendor policy server
• Install Cisco NAC agents from Trend policy server
• Troubleshoot the interaction between the NAC agents and network access device

Implement Cisco Clean Access

• Identify the components and features used for Cisco Clean Access
• Configure CAM and CAS to support CCA Out-of-Band server solution
• Configure CAM and CAS to support CCA In-Band server solution
• Configure CCA-related user roles
• Configure CCA network scanning
• Configure CAM to implement Clean Access Agent on user devices
• Administer and monitor a CCA solution

Install and configure the CS MARS product

• Identify the components, features and functions of MARS
• Install the CS MARS appliance
• Add Cisco reporting devices into the CS MARS appliance
• Add non-Cisco reporting devices into the CS MARS appliance
• Use configured security devices to generate interesting events that constitute an attack scenario and have CS MARS collect the interesting events for incident investigation
• Configure the CS MARS appliance to send alerts
• Create and view a long-duration query on the CS MARS appliance
• Configure a rule (or rules) to detect interesting patterns of network activity and other anomalous network behavior
• Use the management features in the CS MARS to assign event, addressing, service, and user information
• Configure the CS MARS appliance hardware maintenance chores
• Utilize the Global Controller to manage multiple CS MARS appliances

Advanced Security for Field Engineers (ASFE) is the recommended training for this exam.

Courses listed are offered by Cisco Learning Partners, the only authorized source for Cisco IT training delivered exclusively by Certified Cisco Instructors. Check the Global Learning Partner Locator for a Cisco Learning Partner near you.

A variety of Cisco Press titles may be available for this exam. These titles can be purchased through the Cisco Marketplace Bookstore, directly from Cisco Press.

Return to Top