Contenido
About this Course
This three-day instructor-led course provides the knowledge and skills that IT Professionals need to configure identity and access solutions with Windows Server 2008 Active Directory.
Audience Profile
The audience for this course is IT Professionals interested in learning how to implement IDA solutions in an enterprise environment. Most students will be IT professionals who are responsible for integrating applications and platforms with enterprise directory and security services while increasing access to a growing number of customers and partners.
At Course Completion
After completing this course, students will be able to:
•Describe identity and access solutions.
•Configure Active Directory Certificate Services.
•Deploy and manage certificates.
•Configure Active Directory Lightweight Directory Services.
•Configure Active Directory Federation Services.
•Configure Active Directory Rights Management Services.
•Maintain access management solutions.
•Troubleshoot identity and access solutions.
Module 1: Exploring IDA Solutions
Lessons
•Overview of IDA Management
•Active Directory Server Roles in IDA Management
•Overview of ILM 2007
Lab : Exploring IDA Solutions
•Explore how Active Directory Server Roles will provide IDA Management solutions
After completing this module, students will be able to:
•Describe IDA Management.
•Identify Active Directory server roles in IDA Management.
•Identify the key aspects of ILM 2007.
Module 2: Configuring AD CS
Lessons
•Overview of PKI
•Deploying a CA Hierarchy
•Installing AD CS
•Managing CA
Lab : Configuring AD CS
•Installing the AD CS Server Role
•Issuing and Installing a Subordinate Certificate
•Publishing the CRL
After completing this module, students will be able to:
•Describe Public Key Infrastructure.
•Deploy a Certification Authority hierarchy.
•Install Active Directory Certificate Services.
•Manage a Certification Authority.
Module 3: Deploying and Managing Certificates
Lessons
•Deploying Certificates by Using AD CS
•Deploying Certificates by Using Autoenrollment
•Revoking Certificates
•Configuring Certificate Templates
•Configuring Certificate Recovery
Lab : Deploying and Managing Certificates
•Configuring AD CS Web Enrollment
•Configuring Certificate Enrollment
•Configuring AD CS Certificate Revocation
•Configuring AD CS Certificate Templates
•Managing Key Archival and Recovery
After completing this module, students will be able to:
•Deploy certificates by using AD CS.
•Use autoenrollment to deploy certificates.
•Revoke certificates.
•Configure certificate templates.
•Configure certificate recovery.
Module 4: Configuring AD LDS
Lessons
•Installing and Configuring AD LDS
•Configuring AD LDS Instances
•Configuring AD LDS Replication
•Configuring AD LDS Integration with AD DS
Lab : Configuring AD LDS
•Configuring an AD LDS instance and an application partition
•Configuring AD LDS Access Control
•Configuring AD LDS Replication
•Configuring AD DS and AD LDS synchronization
After completing this module, students will be able to:
•Install and configure AD LDS.
•Configure AD LDS instances.
•Configure AD LDS replication.
•Configure AD LDS integration with AD DS.
Module 5: Configuring AD FS
Lessons
•Overview of AD FS
•AD FS Deployment Scenarios
•Deploying AD FS
•Implementing AD FS Claims
Lab : Configuring AD FS for Federated Web SSO by Using Forest Trust Scenario
•Installing the AD FS Server Role
•Configuring Certificate Requirements
•Configuring the AD FS Web Agent
•Configuring the Web Server application on a virtual computer
•Configuring the Forest Trust and the Federated Trust Policies
•Configuring the Federation Service Within the Internal Network
•Configuring the Federation Service Within the Extranet
•Testing the AD FS Implementation
Lab : Configuring Active Directory Federation Services by Using Federated Web SSO Scenario
•Installing the AD FS Server Role
•Configuring Certificate Requirements
•Configuring the AD FS Web Agent
•Configuring the Web Server application on a virtual computer
•Configuring the Federation Trust Policies
•Configuring the Account Partner Federation Service
•Configuring the Resource Partner Federation Service
•Testing the AD FS implementation
After completing this module, students will be able to:
•Identify the key aspects of AD FS.
•Explore AD FS deployment scenarios.
•Deploy AD FS.
•Implement AD FS claims.
Module 6: Configuring AD RMS
Lessons
•Overview of AD RMS
•Installing and Configuring AD RMS Server Components
•Administering AD RMS
•Implementing AD RMS Trust Policies
Lab : Configuring AD RMS
•Installing the AD RMS Server Role
•Managing AD RMS rights policy templates
•Configuring Trust Policies
•Testing AD RMS functionality
After completing this module, students will be able to:
•Identify the key aspects of AD RMS.
•Install and configure AD RMS server components.
•Administer AD RMS.
•Implement AD RMS Trust Policies.
Module 7: Maintaining Access Management Solutions
Lessons
•Supporting AD CS
•Maintaining AD LDS
•Maintaining AD FS
•Maintaining AD RMS
Lab : Maintaining Access Management Solutions
•Configuring CA Event Auditing
•Implementing role-based administration in AD CS
•Backing up a CA
•Reconfiguring AD RMS cluster settings
•Generating AD RMS Reports
•Configuring AD RMS logging
After completing this module, students will be able to:
•Support AD CS.
•Maintain AD LDS.
•Maintain and Monitor AD FS.
•Maintain AD RMS.
Module 8: Troubleshooting IDA Solutions
Lessons
•Troubleshooting AD CS
•Troubleshooting AD LDS
•Resolving AD FS Issues
•Solving AD RMS Issues
Lab : Troubleshooting IDA Solutions
•Identifying Tools and Troubleshooting Techniques of IDA Solutions
After completing this module, students will be able to:
•Troubleshoot AD CS.
•Troubleshoot AD LDS.
•Resolve AD FS issues.
•Solve AD RMS issues.