Detailed Course Outline
Overview of Access Manager
- Explain the salient features of Oracle Access Manager
- Explain the key products that comprise the Oracle Access Management Suite
- Explain the functional areas for each of the Oracle Access Management products
- Explain Oracle Access Manager overall architecture
- Explain Oracle Access Manager run-time architecture
- Identify key Oracle Access Manager 11g R2 PS3 new features
- OIF enhancements to the OAM admin console to support SP functionality
- SAML attributes can be configured for OAM policy , SAML attribute can be used by OAAM risk analysis
Installation and Configuration
- Explain key definitions and terminologies
- Describe the prerequisites for installing Oracle Access Manager
- Install Oracle WebLogic Server (WLS)
- Configure seeded database schemas by using the Repository Creation Utility
- Install and configure Oracle Access Manager
- Perform post-installation validation checks
- Perform an uninstallation
System Configuration: Servers, Datasources and Agents
- Manage Servers using OAM Administration Console and Oracle Web Logic Server Admin Console
- Manage data sources - User Identity Store
- Installing and Configuring Agents
- Registering Agents – OAM Admin Console, In-Band, Out-of-Band Understanding WLS Agents
- Manage agents using OAM Admin Console
- Extends 11g Webgate with an option to enable Credential Collection capability (Authentication Gate)
- Separating from server operations, External (Distributed) Credential Collector (Collect in DMZ)
Policy Configuration: Shared Components and Application Domains
- Explain Access Control - Authentication and Authorization
- Detached Credential Collector
- Authentication Modules and SchemesUnderstanding Policy Objects and Policy Model
- Understanding Policy Objects and Policy Model
- Two-factor/Multi-factor authentication
- Resource matching and Excluded resources
- Complex LDAP AuthZ and Response Filters, Authorization expressions
- LDAP search Filter support
SSO and Session Management
- OAM single sign-on and single logout
- Sessions life cycle, caching and cookies
- Configuring single sign-on and single logout
- Customizing the ECC login and logout pages
- Customizing user defined error msgs
- Implementations of custom login pages for DCC
- Impersonation
- Errors codes, information and password policy validation errors
Using Oracle Access Manager With WebLogic Applications
- Protecting WLS applications with OAM
- Identity assertion providers
- OAM authenticator
Auditing and Logging
- Fusion Middleware audit framework
- Audit output options
- Configure audit settings
- Audited events and recorded data
- Generating audit reports
- Configuring logging settings
- Locating and examining logging output
- Locating log files from other servers
Troubleshooting and Management
- Work with Access Tester
- Identifying connectivity issues between agents and servers (impact of load balancers and firewalls)
- Understand OAM specific WLST commands
- Work with Oracle Enterprise Manager Fusion Middleware Control
- Explain EM FMW Control integration
- Server processes and charts
- Topology viewer
- Farm and domain
Securing Communication between WebGate and OAM Server
- Setting up communication in Simple transport mode
- Outline of Steps to setup Cert mode communication