|
|
This course focuses on addressing customer business needs by emphasizing specific product features. Initially using out of the box features that do not require in-depth technical knowledge and experience. Students configure roles, resources, reconciliation, and user objects in ways that are useful for meeting customer requirements. In addition, students distribute administrative tasks to other users to model a delegated administrative environment.
The attendees will then learn how to complete a four phase deployment scenario that includes (In phase three) Active Sync synchronization to synchronize identity information between a data feed from the human resources (HR) department, an Active Directory instance, a Corporate LDAP directory service, a contractor SQL database, and the Solaris operating system.
- Intensive Hands-On Training utilizing Lecture, Lab, Review delivery
- Comprehensive Study Materials, Courseware and Self-Testing software
- Fully instructor-led with 24 hour lab access
- Examination vouchers
- On site testing
- Accommodation, breakfast and lunch, beverages and snacks
- Examination passing policy
Duration: 7 extended days (Monday - Sunday)
Languages
English
Back to top
Who Can Benefit
Students who can benefit from this course are identity management deployment engineers, architects, implementors, professional services consultants, partners, and other technical personnel directly responsible for deploying an identity management solution using Identity Manager.
Back to top
Prerequisites
To succeed fully in this course, students should have previous experience with enterprise software deployment and web application servers, and have basic system administration skills. Previous experience with Java(TM) technology, pages created with the JavaServer Pages(TM) software (JSP[TM] pages), eXtensible Markup Language (XML), Lightweight Directory Access Protocol (LDAP), and identity management is strongly recommended.
Back to top
Skills Gained
Upon completion of this course, students should be able to:
- Describe how Identity Manager can be used as an identity management solution
- Implement a basic Identity Manager configuration to support regulatory compliance
- Implement a password management and pass-through authentication strategy to support corporate password policies and password self-service requirements
- Customize the Identity Manager User and Administrative interfaces to meet corporate branding and password management requirements
- Write XPRESS code to transform and validate data to help implement business logic in Identity Manager
- Implement a delegated administration environment and customize standard rules, forms, and workflow to support project-based administration requirements
- Perform Active Sync operations
- Implement advanced Active Sync configurations
- Develop custom end user self-service requests
- Develop custom anonymous self-service requests
- Integrate the deferred task scanner and account renames into default and custom workflows
- Build custom Active Sync and reconcile workflows
Back to top
Course Content
Module 1 - Sun Java System Identity
Manager Overview
- Describe the problems that Identity Manager is designed to address
- List Identity Manager features
- Describe the Identity Manager architecture
- Describe a typical Identity Manager implementation
- Summarize the course case study
- Discuss a phased approach to deploying Identity Manager
- Install and initialize Identity Manager software
- Secure Identity Manager after an installation
- Plan for an Identity Manager deployment
- Create a developmental work area
- Redirect email notifications to a file
- Use the Identity Manager Console command-line utility
Module 2 - Connecting to Remote Systems
- Describe the case study requirements for implementing regulatory compliance and self-service
- Describe how to configure connectivity to remote systems
- Connect to Identity Manager resources +
Module 3 - Creating Administrative Objects
- Describe the case study requirements for implementing regulatory compliance and self-service
- Describe the basic Identity Manager administrative objects
- Create Identity Manager organizations, administrators, and users +
Module 4 - Selecting a Primary Resource to Seed Identity Manager Users
- Describe the case study requirements for implementing regulatory compliance and self-service
- Describe the identity seeding process
- Describe how to select a primary resource to seed Identity Manager users
- Select a primary resource using the case study data to see Identity Manager users+
Module 5 - Seeding Identity Manager Using Reconciliation
- Describe the case study requirements for implementing regulatory compliance and self-service
- Describe how to seed Identity Manager users using reconciliation
- Describe the reconciliation situations and responses
- Seed Identity Manager users using reconciliation
Module 6 - Running Basic Identity Manager Reports
- Describe the case study requirements for implementing regulatory compliance and self-service
- Describe the basic Identity Manager reports available for helping achieve regulatory compliance
- Run Identity Manager reports
- Save changes to Identity Manager objects
Module 7 - Implementing Password Management
- Describe the case study requirements for managing passwords
- Describe Identity Manager passwords
- Describe Identity Manager password policies
- Describe approaches to common password challenges
- Configure self-service password reset +
- Create a password reset administrator +
- Run password-related reports +
Module 8 - Implementing Pass-through Authentication
- Describe the case study requirements for pass-through authentication
- Describe pass-through authentication in Identity Manager
- Enable pass-through authentication to a simulated resource +
- Save changes to Identity Manager objects +
Module 9 - Customizing Identity Manager Interfaces
- Describe the case study requirements for branding and modifying the Identity Manager interfaces
- Describe how to customize the look-and-feel of the Identity Manager User and Administrative interfaces
- Describe how a custom message catalog can be used for displaying user-defined messages on the interfaces
- List the Identity Manager forms used to customize the default end-user experience
- Describe how to disable the Forgot Your Password button
- Customize the Identity Manager User interface
- Customize the Identity Manager Administrative interface
Module 10 - Implementing Business Logic in Identity Manager
- Describe XPRESS, its rationale, and its uses
- Describe the differences between XPRESS and the XML Object language
- Describe and evaluate XPRESS functions
- Describe the methods of creating XPRESS
- Describe the methods for debugging XPRESS
- Describe rules and rule syntax
- Describe how to use the BPE to create and test rules
- Describe how to create and use rule libraries
- Use the BPE to manipulate libraries and rules
- Evaluate the output of existing XPRESS code and create XPRESS code to accomplish simple tasks +
- Write advanced rules to interface into Identity Manager objects
Module 11 - Implementing a Delegated Administration Environment
- Describe the case study requirements for creating a delegated administration environment
- Describe the Identity Manager delegated administration model
- Describe the use of organizations to control administration scope
- Describe the use of administrative capabilities to assign rights to users
- Describe the use of forms to control administrator visibility to attributes
- Describe the use of Admin Roles to provide granularity of administration
- Describe the use of approvals within delegated administration
- Implement a delegated administration environment
Module 12 - Generic Objects, Path Expressions, and View Data in Identity Manager
- Describe the case study requirements that require form customization
- Describe how Generic Objects and path expressions are used to represent and reference Identity Manager data
- Describe how Identity Manager views are used to manage a user's identity
- Use the BPE to open a user view
Module 13 - Creating Custom Forms
- Describe the case study requirements that require form customization
- Describe form processing and the various form components that you use to create custom forms
- Describe how you can use business logic in forms to manipulate form data
- List guidelines for form customization
- Create an edit form for help desk administrators +
- Use the Business Process Debugger to debug forms +
- Create user-defined forms based on default forms +
- Create a user edit form for managers +
- Implement a project assignment form for project managers +
+ Lab exercise
Module 14 - Overview of Workflow in Identity Manager
-
Describe workflow in Identity Manager
- Describe workflow debugging and tracing
- Analyze the Update User workflow +
- Turn workflow tracing on or off+
Module 15 - Customizing Workflow in Identity Manager
- Describe the case study requirements that require workflow customization
- Describe the workflow components used to create custom workflows
- Describe the default provisioning tasks to manage resource accounts
- Describe the life cycle of a view
- Describe typical customizations to user provisioning
- Customize workflow to incorporate approvals
- Create an employee termination workflow process
Module 16 - Examining an Existing Identity Manager Deployment
- Summarize the course case study
- Describe a phased approach to deploying Identity Manager
- Examine the existing lab environment
Module 17 - Synchronizing Identity Data With Active Sync
- Describe the case study requirements for implementing Active Sync
for existing users
- Describe Active Sync processing at a high level
- Describe the basic components of an Active Sync configuration
- Configure an Active Sync resource adapter
- Control and monitor the operation of Active Sync
- Configure identity attributes and the Human Resources (HR) flat file Active
Sync (FFAS) feed to synchronize attributes for existing users
- Configure identity attributes and the HR FFAS feed to automatically
provision existing users and into a new corporate LDAP resource
Module 18 - Implementing Active Sync For New Users
- Describe the case study requirements for implementing Active Sync
for new users
- Describe advanced Active Sync adapter features
- Describe Active Sync form processing
- Describe Active Sync event processing
- Describe the Active Sync configuration modes
- Define the attribute requirements
- Configure identify attributes for create user processing
- Build rules to determine the complex attribute logic in the proxy
administrator form
- Update the synchronization policy and enable the HR proxy form
- Test the HR Feed Active Sync process
Module 19 - Implementing Active Sync Using a Custom Input Form
- Describe the case study requirements for configuring Active Sync
using the input form
- Decide when to use input form mode in an Active Sync implementation
- Describe input form mode implementation details
- Describe best practices for Active Sync implementation when using
an input form
- Synchronize Active Directory and the corporate LDAP with the HR
feed using a custom Active Sync input form
Module 20 - Developing Custom End User Self-Service Requests - Rules and Forms
- Describe the case study requirements for using custom rules and forms
in end user self-service requests
- Build custom interactive forms
- Create manual actions and work items
- Build custom workflow tasks
- Authorize end-user actions
- Create end user rules
- Create a custom request form
Module 21 - Developing Custom End User Self-Service Workflow Components
- Describe the case study requirements for using custom tasks in end
user self-service requests
- Customize workflow components for the basic user create workflow
- Customize workflow components for a better user create workflow
- Implement an update user workflow with a find user sub-process
- Create an end user request access task
Module 22 - Developing Custom Anonymous Self-Service User Requests
-
Describe the case study requirements for developing custom anonymous
self-service user requests
- Build anonymous self-service tasks
- Use built-in anonymous enrollment
- Create an approval process that is role and resource aware
- Configure an anonymous task interface
- Build a contractor self-registration task
Module 23 - Implementing a Custom Workflow Notification Process Using
- Describe the case study requirements for deferred tasks
- Implement deferred tasks
- Configure and test a contract end date notification process
Module 24 - Implementing an Account Rename Process to Facilitate Name Changes
- Describe the case study requirements for account renames
- Implement account rename operations in Identity Manager
- Implement an account rename process
Module 25 - Customizing Active Sync Workflows
- Describe the case study requirements for using custom Active Sync tasks
- Customize Active Sync and reconcile tasks
- Create a custom Active Sync process workflow
Module 26 - Advantages and Disadvantages of Custom Workflows
- Evaluate implementation challenges and value added
Back to top
Browse Other Course Topic Areas
|
|
