The Access Manager training course is a 4-day course that will allow you to complete the objectives below.

Objectives

• Explain the architecture of OpenIAM Access Manager.
• Install and configure the OpenIAM Access Manager and related middleware.
• Configure and create users, groups, roles, access control lists, and resources
• Define policies to manage the authentication and authorization of users.
• Create security domain to unify the authentication and authorization of users and policies.
• Create Access Manager Administrators and delegated administrators to delegate responsibilities
  to lower-level administrators.
• Install and configure the reverse proxy
• Configure and demonstrate a variety of authentication methods including basic authentication,
  client-side certificate.
• Configure and demonstrate single sign-on
• Enforce fine grained authorization using the Spring Framework 2.5
• Configure Identity Provider (IdP) and Service Provider (Sp) for SSO based SAML 2.0 federation
• Configure and protect web services using SAML ,WS-Security and WS-Policy
• Configure audit policies and generate reports.
• Create custom reports.

Course Content

Module 1: Installing the OpenIAM Access Manager

• Describe Access Manager Components and roles – Policy server, federation engine, reverse
  proxy and other enforcement points.
•  Describe Rules engine and role in policy management.
• Describe the hardware and pre-installed files on your lab system
• Install and configure OpenIAM Access Manager and related middleware

Module 2 - Configuring Access Manager Security Domains

• Describe the types of data that Access Manager uses
• Describe Access Manager security domains
• Create a security domain for training course.
• Configure and define roles for the security domain

Module 3 – Configuring and Managing Users and Groups

• Describe and create metadata for users
• Describe and create metadata for groups
• Create users using administration tools
• Create groups using administration tools

Module 4 – Reverse Proxy

• Install OpenIAM reverse proxy
• Configure the OpenIAM reverse Proxy

Module 5 - Managing Access Control

• Describe and create resources
• Associate resources to roles
• Assign privileges to resources

Module 6 - Configuring Authentication

• Describe the Access Manager authentication process
• Describe and Configure Access Manager authentication methods
  • Basic Authentication
  • Forms Authentication
  • Certificate based authentication
• Configure Access Manager sessions
• Configure a customized authentication user interface
• Configure an authentication chain with multiple authentication module instances
• Configure account lockout for a security domain

Module 7 -Single Sign-on

• Describe Single Sign-on Concepts
• Basic Authentication Single Sign-on
• Global Sign-on (GSO)
• Forms Single Sign-on and Authorization
• Global logout

Module 8 - Access Control Policy

• Describe policy
• Describe the policy architecture
• Describe policy components
• Administer policy
• Create a policy that uses authenticators in the security domain
• Create policies using the rule builder in the console
• Associated policies to resources and role-resource combination.

Module 9 - Auditing

• Describe the auditing architecture
• Describe how to define auditing policies
• Monitor access to resources using auditing controls
• Define custom reports

Module 10 - Federated Identity Scenarios

• Define federated identity
• Identify business scenarios addressed by federated identity
• Describe basic federated identity technologies and how they solve business problems
• Describe federation frameworks
• Describe the Security Assertion Markup Language (SAML 2)

Module 11- Federation with SAML Version 2 Single Sign-On

• Describe SAML 2 assertions, protocols, and bindings
• Describe SAML 2 profiles
• Configure Identity Provider (IdP) and Service Provider (Sp) support on Access Manager
• Sign SAML assertions
• Configure SSO using SAML version 2.0

Module 12- Protecting Resources in SOA

• Describe challenges of protecting resources
• Deploy webservice on to ESB
• Protect services and methods on a service using OpenIAM, SAML and WS-Security and WSPolicy

Module 13- Protecting fine grained resources using OpenIAM and the Spring Framework

• Describe challenges with protecting fine grained resources
• Describe and configure integration with Spring Security
• Create example to protect fine grained objects such as fields on a screen