Cisco Defense Orchestrator A cloudbased policy management solution
Cisco Defense Orchestrator A cloud-based policy management solution for Cisco security products © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1
The Problem? Manage constant changes in security policy and rules Keep up with business needs Stay ahead of the latest security threats Do more with fewer resources © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 3
Defense Orchestrator Strengthen Your Security Posture End to End Simple Efficient Effective Streamline security policy management and next-gen defense Extend the reach of your resources Achieve better security without adding complexity © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 4
© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 5
Who is our Audience? Security Focused Buyer Net. Ops Buyer Staffed and funded for security analytics, does it today, needs more in intelligence from the network Manages primarily connectivity, needs to care about security but does not responsibility to investigate it Position FMC to Managed Firepower and CDO to Managed ASA Policy! Position CDO to Manage Both ASA and Firepower Policy! © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 6
Multi-Tenancy Environment AUTHORIZATION SERVER APPLICATION SERVER Authenticate Get OAuth Token BROWSER REST Call SPRING FRAMEWORK INJECTED PRINCIPAL Worker Threads MT INFRASTRUCTUR E Connections in the connection pool are unauthenticated. Requires key to access DB Customer A Connection Pool Customer B Send OAuth Token Customer C KEY MANAGER Use OAuth token to retrieve a key to authenticate to the database and encrypt traffic © 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 7
© 2015 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 8
- Slides: 8