Fidelis Blog


Halo Foundations Training Videos: Self-service Onboarding

Get your teams up to speed quickly with our Halo Foundations training videos, whether you’re an existing Halo customer or evaluating Halo to unify and automate your cloud security. In this series of 17 short self-service videos, you’ll get comfortable using Halo, learn the basics about administration and monitoring, and maybe discover a few features you haven’t used yet. These videos are your solution to your team educating themselves at their own pace—remotely, quickly, and at no cost.

You can access all the videos at CloudPassage Halo Foundations – Self Service Training Videos, or click on the individual video images below.

Halo Foundations Training Videos Enable Automated Cloud Security Operations

Improving your cloud security posture and maintaining compliance requires the right tools and the right strategy. Halo is easy-to-use security that’s built for the cloud, and putting it in place can go a long way toward securing your cloud resources. However, our most successful customers follow specific steps that lead from asset awareness, through survivability and threat detection, and finally to streamlined, continuous compliance and automated remediation.

Halo Foundations Training Videos Process
Figure: Halo customers who follow specific steps achieve superior outcomes, faster

The Halo Foundations training videos empower you with the knowledge you need to accelerate your success with Halo. And after completing your basic training, the Halo Operations Guide, provided through the Halo portal, and the Halo REST API Developer’s Guide are in-depth resources that help you enable fully automated cloud security operations.

Halo self-service onboarding
Figure: The Halo video training series accelerates implementation of a fully automated Halo operational model

Inside the Halo Foundations Training Video Series

Bringing your staff up to speed quickly can accelerate your time to value with any new software product or platform, whether you’ve just installed the solution or you’ve hired new staff. Halo self-service training videos can help you quickly learn the basics, from navigating the portal, to site, group, user, and asset administration, to security automation and alert monitoring, and more.

The Halo Foundations training videos give newcomers a chance to learn quickly and effectively through short, guided presentations, and it allows seasoned users to brush up on unfamiliar product features. You’ll also get tips on best practices, and you’ll find references to related documentation for deeper learning.

Below is a summary of the 17 Halo Foundations training videos currently available.

Key Activities of a Successful Halo Project

By approaching Halo integration as a formal project, with an executive sponsor and a dedicated project team, you can have Halo up and running in your environment quickly. In this introductory Halo Foundations training video, we walk through the key activities of a successful Halo project, including:

  • Building an effective project team
  • Defining scope
  • Identifying use cases
  • How to incorporate Halo into your workflows
  • How to use CloudPassage Support services
Halo training video: Key Activities of a Successful Halo Project
Figure: HaloTraining Video: Key Activities of a Successful Halo Project – Duration: 4:35

Since security is a cross-cutting requirement for any organization, implementing a new security platform requires buy-in and participation by many different teams. By following the steps in this video, you can accelerate your success with Halo, and you can make sure you’re including all the right stakeholders.

Navigating the Portal

In just over six minutes, this guided tour of the Halo portal teaches you how to navigate the Halo portal, including:

  • Navigating the Overview, Assets, Issues, Events, and Policies screens
  • Finding important site administration functions, including user management, authentication parameters, configurable audit events, integrations, agent and cloud service provider settings, and advanced options
  • How to find and navigate the Halo documentation library
Navigating the Portal
Figure: Halo Training Video: Navigating the Portal – Duration: 6:01

This video is the starting point for getting new users up to speed with the Halo portal, and it sets them up for success as they dive deeper into the Halo Foundations training videos.

User Administration

Halo site administrators are responsible for user administration. Based on a user’s scope and roles, they gain access to the various features within Halo. It’s important to understand user administration so that the Halo portal itself is protected from misuse. In this video, you will learn how to:

  • Add new users
  • Edit existing users
  • Delete or deactivate users
  • Understand user scope and user roles
Halo training video: User Administration
Figure: Halo Training Video: User Administration – Duration: 4:42

After watching the Halo User Administration video, you can build on your knowledge by watching the Halo Site Administration and Role-Based Access Control (RBAC) User Administration videos.

Halo Site Administration

This short, impactful Halo training video familiarizes Halo administrators with all administrative screens, except user administration, including:

  • Authentication settings
  • Automatic scan configurations
  • Halo agent settings
  • Audit policies
Site Administration
Figure: Halo Training Video: Halo Site Administration – Duration: 9:44

The Halo Site Administration video goes beyond a simple tour by giving you tips on best-practice configurations throughout each of the screens. The user administration screen is covered in detail in Designing an Effective Group Hierarchy and Role-Based Access Control (RBAC) User Administration.

Role-Based Access Control (RBAC) User Administration

Learn about RBAC and how it’s used within Halo for user administration, and how it relates to group administration for asset access control. This video provides a step-by-step guide for:

  • Defining groups, adding assets to groups, installing agents, and assigning roles
  • Creating new users and assigning that user to groups
  • Changing user roles or scope of access
Halo training video: Role Based Access Control (RBAC) User Administration
Figure: Halo Training Video: Role-Based Access Control (RBAC) User Administration – Duration: 12:35

The RBAC User Administration video also provides brief descriptions, access rights, and limitations of each of the Administrator, Standard, Auditor, and GhostPorts Halo roles.

Designing an Effective Group Hierarchy

An effective group hierarchy strategy is fundamental to group-based policy management in Halo. This eleven-minute video teaches you group hierarchy best practices, and gives you tips on how to:

  • Understand how Halo utilizes groups for policy assignment
  • Decide on a group hierarchy that matches your organizational structure or your servers’ functions, roles, or types, depending on your company’s goals
  • Use groups to logically separate assets for both organization purposes and access control
Designing an Effective Group Hierarchy
Figure: Halo Training Video: Designing an Effective Group Hierarchy – Duration: 10:54

By watching, understanding, and implementing the concepts taught in this Halo Foundations training video will help ensure that your Halo configuration provides effective visibility into your security posture. You’ll also create a group hierarchy that can scale across any number of servers or cloud environments without introducing unnecessary complexity.

Attribute-based Policy Assignment

With attribute-based policy assignment (APA), you can specify how CSM, FIM, and LIDS server policies are assigned within the policy itself, using attributes of the target assets, such as OS distribution and OS version, as assignment criteria. This short video covers:

  • The benefits of APA
  • How APA works within Halo
  • Examples of APA within the Halo portal
Attribute-based Policy Assignment
Figure: Halo Training Video: Attribute-based Policy Assignment – Duration: 3:43

Alert Profiles

Alert profiles in Halo are policies that control the alerts that you receive, including who receives the notifications and at what frequency. The Alert Profiles Halo training video teaches you:

  • Why alert profiles are important
  • How to create and manage alert profiles and assign them to groups
  • How to respond to alerts
Halo training video: Alert Profiles
Figure: Halo Training Video: Alert Profiles – Duration: 9:08

After watching this video, you’ll be able to configure alert profiles to email important security events to your security and operations groups, and you’ll know how to configure alert frequency based on the criticality of the security event.

SIEM Integrations

This walkthrough covers how the Halo Event Connector works to transfer event data to integrated analysis platforms, including Splunk, ArcSight, and others. The topics covered include:

  • An overview of security information and event management (SIEM)
  • Understanding SIEM
  • Splunk integration with Halo
SIEM Integrations
Figure: Halo Training Video: SIEM Integrations – Duration: 7:04

The video walks you through the import and configuration of the CloudPassage Halo Event Connector in Splunk as an example of how to manage the connection between Halo and your SIEM platform.

Single Sign-On

Single Sign-on (SSO) is a convenient and secure way to provide access to all authorized resources across your company. Halo offers Security Assertion Markup Language (SAML) based SSO integration with common identity providers. In this Halo Foundations training video, you’ll learn about:

  • Different types of SAML-based SSO
  • Integrating Halo with identity provider-initiated login
  • Integrating Halo with OneLogin
Halo training video: Single Sign-On
Figure: Halo Training Video: Single Sign-On – Duration: 7:25

You’ll also learn requirements for using SSO login, best practices for enforcing SSO, and how to use Halo with SSO as a GhostPorts user.

Using CloudPassage API and Python SDK

Once you’ve configured your Halo administration portal, you’ll be ready to integrate Halo automation throughout your servers, applications, containers, and CI/CD pipeline. In this video, you’ll see:

  • An introduction to the Halo API
  • How to set up the API
  • How to use the Python SDK to interact with the API
  • Turnkey CloudPassage tools
Using CloudPassage API and Python SDK
Figure: Halo Training Video: Using CloudPassage API and Python SDK – Duration: 16:43

This video gives you a brief introduction to the Python SDK for CloudPassage Halo API and a few examples to get you started building efficient API integrations. Be sure to follow the links provided in the video to the Halo REST API Developer Guide and community GitHub repositories so you can dig deeper into the vast potential of the APIs that serve as the foundation for security automation in Halo.

File Integrity Monitoring

File Integrity Monitoring (FIM) is a feature of CloudPassage Halo Server Secure that protects the integrity of the system software and application stack on your Linux or Windows servers. It regularly monitors your servers for unauthorized or malicious changes to system binaries and configuration files. This three-part video series includes:

  • How FIM works, and how to set up and run a FIM scan in Halo
  • Targets, baselines, and managing ongoing monitoring
  • Addressing FIM findings, the FIM integrity monitoring API, and best practices for FIM
Halo training videos: File Integrity Monitoring Parts 1, 2, and 3
Figure: Halo Training Videos: File Integrity Monitoring Part 1 – Duration: 7:04

View FIM Part 2 – Duration: 6:32

View FIM Part 3 – Duration: 4:48

Automating FIM as part of your CI/CD pipeline can significantly reduce the chance of untested or compromised binaries making it into production. By understanding how FIM works in Halo, you can add this crucial security check without introducing bottlenecks to your DevOps process.

Security Events History

This short video demonstrates how to search for security events that have occurred across your Halo-monitored environments. You’ll learn:

  • What defines a security event and how security event records can be used
  • How and where to configure security events
  • How to view and filter security events
Security Events History
Figure: Halo Training Video: Security Events History – Duration: 2:28

You’ll also see an example of a security event alert email, and how to use the automated emails to navigate directly to the related events in the Halo portal.

Understanding Scans, Findings, Events, and Issues

Halo automatically scans your assets and reports on issues. The lifecycle of an issue spans from issue detection to final resolution, and consists of scans that evaluate servers based on policies, finding from scans, and logged events. By understanding how to use scans, findings, and events to identify and diagnose issues, you can better secure your IaaS resources, servers and containers. In just over fourteen minutes, you’ll get:

  • An overview of scans, findings, events, and issues
  • Tips on how to interpret Halo security scan findings
  • How to search and review security and audit events
Halo training video: Understanding Scans, Findings, Events, and Issues
Figure: Halo Training Video: Understanding Scans, Findings, Events, and Issues – Duration: 14:23

In this video, you’ll walk through scans, and drill down into the findings and event logs that could indicate issues within your systems. You’ll also learn how to add exceptions for vulnerabilities, how to find resolved issues and manually resolve outstanding issues.

Customer Success – CloudPassage Support

As a SaaS solution provider, CloudPassage offers a wide range of customer support, including customer on-boarding, trouble tickets, and engineering support. This video familiarizes new Halo users with the support teams, options, and contact methods available. You’ll learn:

  • The make-up of the Halo customer support teams and support availability
  • Where and how to create Halo support user accounts
  • Where you can find online support options
  • How to file a support request from within the Halo portal
Halo training video: Customer Success
Figure: Halo Training Video: Customer Success – Duration: 2:26

Access the Halo Foundations Training Videos

Many InfoSec teams are being asked to do more with fewer resources and lower budgets. These videos are free to our Halo users and can be accessed by your team at any time, on-demand. We also offer all of the topics shown here as in-person classes, both on-site or remote, if you prefer.

CloudPassage Halo Foundations – Self Service Training Videos

More Self-Service Videos Coming

Soon we will be releasing self-service training videos for Server Secure, Cloud Secure, and Container Secure.  Watch for our upcoming announcements.

Stay up to date on all things security

Subscribe to the Threat Geek Blog