Application Server 10g: (9.0.4): Enterprise Identity Management

Course Overview

This course explains the role of Oracle Identity Management Infrastructure in the Oracle product stack. The students will learn about the various components of Oracle Identity Management Infrastructure in detail. The course also covers different planning considerations for implementing Oracle Identity Management. It teaches to configure and administer different Oracle Identity Management Infrastructure components. The students will also learn how to integrate Oracle Identity Management with other directory servers and applications.

Audience

• Database AdministratorsSales Consultants
• Support Engineer

Prerequisites

• Introduction to LDAP and Oracle Internet Directory (D13568GC10 - eStudy)
• Oracle Application Server 10g: Administration Ior Basic working knowledge of Web/Application Servers

Skills Gained

• Discuss the role of Oracle Identity Management in Oracle product stack
• Configure and manage each component of the OracleAS Identity Management infrastructure
• Manage and configure OracleAS Certificate Authority
• Integrate Oracle Internet Directory with other directories and data store
• Replicate the Oracle Internet Directory server to achieve high availability
• Configure and Administer OracleAS Single Sign-On server
• Use OID Self Service Console to manage users and groups
• Manage user certificates requests using Oracle Certificate Authority

Course Outline

Introduction to Identity Management

• Describe the benefits of identity management in an enterprise
• Explain the concepts of Oracle Identity Management
• Identify the different components of Oracle Identity Management
• Describe the various terms of Oracle Identity Management

Security in an Enterprise and Web Environment

• Explain the common features of security services in an enterprise
• Describe the security features of Oracle Application Server 10g
• Explain the security model in Oracle Application Server 10g

Installing OracleAS Infrastructure

• Define the installation requirements for OracleAS Infrastructure
• Describe OracleAS Infrastructure installation types
• Install OracleAS Infrastructure
• Verify the working of Oracle Identity Management (OIM) components in an OracleAS Infrastructure installation
• Start and stop OIM components

Planning Oracle Identity Management Deployment

• Plan Oracle Identity Management deployment
• Plan application deployment in replicated directory environments
• Deploy and verify default deployment of OracleAS Single Sign-On, Oracle Delegated Administration Services (DAS), and OracleAS Certificate Authority
• Plan integration with other identity management solutions

Managing Oracle Internet Directory

• Explain directory and LDAP concepts
• Describe Oracle Internet Directory (OID)
• Explain the OID architecture
• Start and stop Oracle Internet Directory processes

Managing Oracle Internet Directory Data

• Connect to and disconnect from the OID by using Oracle Directory Manager
• Use OID command-line tools, such as Bulk tools, LDAP tools

Creating and Managing Oracle Identity Management DIT

• Explain policies for organizing users and groups
• Plan the overall directory structure
• Manage users and groups
• Delegate privileges to users and groups

Configuring Oracle Identity Management Real

• Explain Oracle Identity Management realm
• Plan an Oracle Identity Management realm
• Explain the default configuration of OID
• Customize an existing Oracle Identity Management realm
• List default users in OID

Managing Credentials

• Explain the process of authentication and authorization
• Manage password policies
• Manage password verifiers

Administering the OracleAS Single Sign-On Server

• Discuss OracleAS Single Sign-On server components
• Explain OracleAS Single Sign-On server authentication flow
• Manage and configure the OracleAS Single Sign-On server
• Administer partner and external applications
• Monitor the OracleAS Single Sign-On server

Managing Oracle Delegated Administration Service

• Explain Delegated Administration Services (DAS)
• Describe how DAS works
• Start and Stop DAS
• Access the DAS home page
• Use OID Self-Service Console
• Manage users and group entries using DAS
• Create an Identity Management Realm

Managing SSL Certificates in Oracle Identity Management Infrastructure

• Explain public key infrastructure
• Discuss Oracle Public Key Infrastructure
• Describe OracleAS Certificate Authority
• Explain OracleAS Certificate Authority architecture
• Access the OCA Administration home page

Requesting User Certificates from OCA Server

• Request a user certificate by using SSO authentication, SSL authentication, and manual approval
• Request a server or subordinate CA certificate
• Manage user certificates
• Download the Certificate Revocation List (CRL)

Managing Certificates and Configuring OCA

• Perform certificate management operations such as approve, reject, renew, revoke, and update a certificate revocation list
• Enable collaboration of OracleAS Single Sign-On and OCA
• Configure the OCA server
• Revoke an OCA Web administrator certificate

Managing OracleAS Certificate Authority Policies

• Explain OCA policies
• Describe default OCA policies
• Modify the default policies
• Use predicates

Securing Certificates by Using Oracle Wallet

• Explain Oracle Wallet Manager functionality
• Manage wallets
• Upload and download wallets
• Manage user certificates
• Manage trusted certificates

Integrating Oracle Identity Management Infrastructure with Oracle Directories and Applications

• Describe Oracle Directory Integration and Provisioning Platform
• Explain provisioning versus synchronization
• Describe the Oracle Directory Integration and Provisioning server
• Describe administration and monitoring tools
• Describe an Oracle Directory Integration and Provisioning Platform scenario
• Explain the architecture of the Oracle Directory Integration and Provisioning server
• Register the Oracle Directory Integration and Provisioning server
• Manage the Oracle Directory Integration and Provisioning server

Synchronizing Oracle Identity Management with Other Directories

• Explain connectors and agents
• Register a directory synchronization profile by using ODM and command-line tools
• Deregister a directory synchronization profile by using ODM and command-line tools
• Create a mapping file, and load the mapping file

Configuring Oracle Identity Management Provisioning Integration Service

• Explain the provisioning procedure
• List the steps of interaction between the provisioning integration service, OID, and the application
• Use the Provisioning Subscription tool
• Secure the provisioning profiles
• Troubleshoot the provisioning integration service errors

Oracle Internet Directory Replication Concepts

• Explain OID Replication
• Describe the OID Replication architecture
• Describe the conflict resolution mechanism in OID Replication
• List the OID Replication process

Setting Oracle Internet Directory Replication

• Install and configure the OID Replication server on a node
• Manage the OID Replication server
• Add and delete the replication node based on Oracle9i Advanced Replication and LDAP
• Resolve conflicts manually

Application Server 10g: (9.0.4): Enterprise Identity Management / D17035GC10