|
Course Content
Module 1 - Installing Sun Java System Access Manager
 | Define identity and federated identity |
| Describe the Sun Java System identity management framework |
| Identify Access Manager components |
| Describe Policy Agent software |
| Describe the hardware and pre-installed files on your lab system |
| Install the Sun Java System Directory Server Enterprise Edition and Sun
Java System Web Server software |
| Install the Access Manager software |
Module 2 - Configuring and Deploying Access Manager and Policy Agent
Software
| Identify deployment components |
| List basic deployment scenarios |
| Identify Java ES installation options that impact deployment |
| Describe Access Manager configuration |
| Configure Policy Agent instances |
| Configure the secure sockets layer (SSL) with Access Manager |
| Start and stop Access Manager and Policy Agent instances |
| Secure the Access Manager web container |
| Configure the Access Manager instance |
| Configure the Example Chocolates web site |
| Install and configure Policy Agent software |
Module 3 - Configuring Access Manager Realms
| Describe the types of data that Access Manager uses |
| Describe Access Manager realms |
| Describe realm and legacy modes |
| Describe data store types |
| Configure data stores |
| Describe Access Manager management tools |
| Create and configure realms |
| Prepare the Example Chocolates user directory |
| Create a realm using the CLI |
| Create and configure realms using the console and the CLI |
Module 4 - Configuring Access Manager Services
| Describe Access Manager services |
| Configure Access Manager services using the console |
| Configure Access Manager services using the CLI |
| Describe service configuration for new realms |
| Locate service files |
| Configure the Session Service using the CLI |
| Configure the Session Service using the console |
| Describe the service configuration for a new realm |
Module 5 - Logging, Debugging, and Monitoring
| Locate, configure, and interpret Access Manager log files and database
tables |
| Locate and configure debug files |
| Locate and configure Policy Agent log files |
| Monitor Access Manager instances using Java ES monitoring |
| Review Access Manager log files |
| Log on to a relational database |
| Enable message-level debugging |
| Monitor Java ES objects (optional) |
Module 6 - Configuring Authentication
| Describe the Access Manager authentication process |
| Configure Access Manager authentication |
| Configure Access Manager sessions |
| Describe SSO |
| Configure a customized authentication interface |
| Configure data store authentication |
| Configure an authentication chain with multiple authentication module
instances |
| Configure account lockout for a realm |
| Use Access Manager for programmatic authentication (optional) |
| Customize the authentication interface templates for a realm (optional) |
| Localize the authentication interface for a realm (optional) |
Module 7 - Configuring Policy
| Describe policy |
| Describe the policy architecture |
| Describe policy components |
| Describe policy storage |
| Administer policy |
| Configure policies using the console |
| Delegate administration |
| Configure a different default login URL in the Policy Agent |
| Create policies for the Example Chocolates web site |
| Create a policy that uses realm authentication |
| Delegate administration to users |
Module 8 - Exploring Policy Evaluation
| Describe policy evaluation principles |
| Examine a policy evaluation example |
| Locate policy evaluation request and policy decision documents and review
the Access Manager policy log files |
Module 9 - Analyzing Federated Identity Scenarios
| Define federated identity |
| Identify business scenarios addressed by federated identity |
| Describe basic federated identity technologies and how they solve business
problems |
| Describe federation frameworks |
| Describe the Security Assertion Markup Language (SAML) |
| Analyze business problems addressed by federated identity and describe
technologies that provide solutions |
Module 10 - Configuring SAML Version 1 Single Sign-On
| Describe SAML 1 assertions, protocols, and bindings |
| Describe SAML 1 profiles |
| Configure SAML 1 support on Access Manager |
| Sign SAML assertions |
| Configure SSO using SAML version 1.1 |
Module 11 - Examining Advanced Federation
| Describe advanced federated identity technologies |
| Identify advanced identity federation frameworks |
| Describe framework implementation in Access Manager |
| Federate accounts on an identity provider and a service provider |
| Federate and defederate accounts |
Module 12 - Deploying Access Manager for High Availability
| Describe cross-domain single sign-on (CDSSO) |
| Describe and configure distributed authentication |
| Describe and configure high availability |
| Perform advanced configuration |
| Configure and secure new Web Server instances |
| Configure a second Access Manager instance |
| Configure the Policy Agent to fail over to the second Access Manager
instance |
| Configure the Policy Agent to work with load-balanced Access Manager
instances |
| 
