Identity and Access Manager Boot Camp

Price: $3500/Student
Duration: 5 Days

In the OpenIAM Identity and Access Management boot camp is a comprehensive 5 day class room based course where students learn how to install, administer and customize the solution. Upon completion students will be able to:

  • Reconcile from source and target systems
  • Manage the user life cycle
  • Manage user access rights
  • Self-Service
  • Configure Single Sign-On
  • Define business rules for reconciliation, synchronization and attribute mapping
  • Customize and create new workflows
  • Customize the Self-Service applications
  • Develop new connectors using scripting
Module 1: Introduction to Identity and Access Management
Module 2: Installing OpenIAM

Prerequisites: VM contains MySQL, Java and OpenLDAP

Installing the OpenIAM product in a 1-tier architecture

  • Install DB schema
  • Install and configure application on JBoss 7.x
  • Install Proxy
  • Post-installation validation steps

Deployment architecture and Multi-tier deployments using Tomcat and JBoss
Configuring OpenIAM for high availability
Enabling communication over SSL
Configuring OpenIAM for high availability

Module 3: Provisioning and Connector Configuration

What is Provisioning and De-Provisioning?
Overview of our connector architecture and how it fits into Provisioning
Connector Configuration

  • LDAP
  • Active Directory (Powershell connector)
  • Google Apps
Module 4: Reconciliation

Overview of Reconciliation
Configure Reconciliation

  • Selecting Users and Query Filters
  • User Matching options
  • Handling reconciliation “Situations”

Scheduling options
Reconciling Groups and Non-User Objects

Module 5: Password Management and Synchronization

Overview of Password Management and Synchronization
Configure the password policy
Policy Association
Password Reset vs. Change Password
Challenge Questions

Synchronizing passwords from Windows

  • Installing and configuring the Active Directory Password Filter
Module 6: Managing Organizations

Concepts related to organization objects
Modeling the Organizational structure
Synchronizing Organizations

Module 7: Managing Entitlements

Overview of the OpenIAM Entitlement model and Concepts
Managing access for Identity and Access Manager
Controlling access to functionality within the OpenIAM applications

Module 8: Managing Users

Overview of the user management capabilities
Describe how admins can:
Create users
Reset password
Change user status
Manage identities

Module 9: Self-service Configuration Options

Overview the configuration options
Configuring workflow approvals
Configuration user access using the delegation filter
Defining User Profile Templates (Self Registration, Create User, Edit User)

Module 10: Integrating External User Directories

Overview to support the use of on or more user external directories
Configure LDAP as external Directory
Attribute Mapping

Module 11: Authentication

Overview of authentication
Configuring Authentication through policies
Configuring a basic authentication policy
Certificate based authentication
Kerberos based authentication (Native Windows based authentication)
Step-up Authentication
Chained Authentication
Risk based authentication

Module 12: Single Sign-On using Federation

Overview of SAML 2 and Key Concepts
Overview of OpenID
Configure SSO with a Google Apps
Configuring Google to use the OpenIAM IdP
Configure the OpenIAM IdP to interoperate with Google
Entitling a user to use Google

Module 13: Reverse Proxy and Single Sign-On to Legacy applications

Overview of the challenges involved in SSO
OpenIAM reverse proxy
Authentication and Session Management
Access Control
URI Patterns
Authentication Rules
SSO using metadata rules

Module 14: Developing Attribute Policies

Overview of the connector architecture
Developing attribute polices

Module 15: Reconciliation

Overview of the reconciliation process
Developing custom reconciliation rules for mapping data, filtering users, etc.

Module 16: Active Identity Synchronization

Overview of synchronization
Configure Synchronization
Developing scripts for synchronization
Develop matching rules
Scheduling synchronization tasks

Module 17: Workflows

Overview of the workflow engine and integration within IAM
Customizing Workflows
Developing new workflows

Module 18: Schedule Tasks

Create a scheduled task
Integrating the task into the identity manager

Module 19: Reports

Overview of the OpenIAM Reporting architecture
Designing a new report
Defining the report data source
Testing the report
Integrating the report
Scheduled reports

Module 20: Connector Development

Overview of the connector architecture and interface
Developing a new connector using the script connector

Module 21: Customizing the Selfservice Application

Overview of customizations options
Customizing the branding
Adding new functionality using the Selfservice-Extension module

Module 22: Developing Applications using the Service API

Overview of the SOAP and REST APIs
Testing the Services using SOAP UI
Using the API in your application