Identity and Access Manager Boot Camp
$3500/Student
Duration: 5 Days
In the OpenIAM Identity and Access Management boot camp is a comprehensive 5 day class room based course where students learn how to install, administer and customize the solution. Upon completion students will be able to:
- Reconcile from source and target systems
- Manage the user life cycle
- Manage user access rights
- Self-Service
- Configure Single Sign-On
- Define business rules for reconciliation, synchronization and attribute mapping
- Customize and create new workflows
- Customize the Self-Service applications
- Develop new connectors using scripting
Module 1
Introduction to Identity and Access Management
Module 2
Installing OpenIAM
Prerequisites: VM contains MySQL, Java and OpenLDAP
Installing the OpenIAM product in a 1-tier architecture
- Install DB schema
- Install and configure application on JBoss 7.x
- Install Proxy
- Post-installation validation steps
Deployment architecture and Multi-tier deployments using Tomcat and JBoss
Configuring OpenIAM for high availability
Enabling communication over SSL
Configuring OpenIAM for high availability
Module 3
Provisioning and Connector Configuration
What is Provisioning and De-Provisioning?
Overview of our connector architecture and how it fits into Provisioning
Connector Configuration
- LDAP
- Active Directory (Powershell connector)
- Google Apps
Module 4
Reconciliation
Overview of Reconciliation
Configure Reconciliation
- Selecting Users and Query Filters
- User Matching options
- Handling reconciliation “Situations”
Scheduling options
Reconciling Groups and Non-User Objects
Module 5
Password Management and Synchronization
Overview of Password Management and Synchronization
Configure the password policy
Policy Association
Password Reset vs. Change Password
Challenge Questions
Synchronizing passwords from Windows
- Installing and configuring the Active Directory Password Filter
Module 6
Managing Organizations
Concepts related to organization objects
Modeling the Organizational structure
Synchronizing Organizations
Module 7
Managing Entitlements
Overview of the OpenIAM Entitlement model and Concepts
Managing access for Identity and Access Manager
Controlling access to functionality within the OpenIAM applications
Module 8
Managing Users
Overview of the user management capabilities
Describe how admins can:
Create users
Reset password
Change user status
Manage identities
Module 9
Self-service Configuration Options
Overview the configuration options
Configuring workflow approvals
Configuration user access using the delegation filter
Defining User Profile Templates (Self Registration, Create User, Edit User)
Module 10
Integrating External User Directories
Overview to support the use of on or more user external directories
Configure LDAP as external Directory
Attribute Mapping
Module 11
Authentication
Overview of authentication
Configuring Authentication through policies
Configuring a basic authentication policy
Certificate based authentication
Kerberos based authentication (Native Windows based authentication)
Step-up Authentication
Chained Authentication
Risk based authentication
Module 12
Single Sign-On using Federation
Overview of SAML 2 and Key Concepts
Overview of OpenID
Configure SSO with a Google Apps
Configuring Google to use the OpenIAM IdP
Configure the OpenIAM IdP to interoperate with Google
Entitling a user to use Google
Module 13
Reverse Proxy and Single Sign-On to Legacy applications
Overview of the challenges involved in SSO
OpenIAM reverse proxy
Authentication and Session Management
Access Control
URI Patterns
Authentication Rules
SSO using metadata rules
Module 14
Developing Attribute Policies
Overview of the connector architecture
Developing attribute polices
Module 15
Reconciliation
Overview of the reconciliation process
Developing custom reconciliation rules for mapping data, filtering users, etc.
Module 16
Active Identity Synchronization
Overview of synchronization
Configure Synchronization
Developing scripts for synchronization
Develop matching rules
Scheduling synchronization tasks
Module 17
Workflows
Overview of the workflow engine and integration within IAM
Customizing Workflows
Developing new workflows
Module 18
Schedule Tasks
Overview
Create a scheduled task
Integrating the task into the identity manager
Module 19
Reports
Overview of the OpenIAM Reporting architecture
Designing a new report
Defining the report data source
Testing the report
Integrating the report
Scheduled reports
Module 20
Connector Development
Overview of the connector architecture and interface
Developing a new connector using the script connector
Module 21
Customizing the Selfservice Application
Overview of customizations options
Customizing the branding
Adding new functionality using the Selfservice-Extension module
Module 22
Developing Applications using the Service API
Overview of the SOAP and REST APIs
Testing the Services using SOAP UI
Using the API in your application