Visão Geral

Este Curso ForgeRock - Directory Services fornece conhecimento para implementar o ForgeRock Directory Services (DS) em uma implantação da ForgeRock Identity Platform (Platform) e como um serviço independente. As práticas recomendadas da plataforma atual são usadas para implantar e manter o DS.

Objetivo

Após concluir este Curso ForgeRock - Directory Services, você será capaz de:

• Entenda como o DS é usado em uma implantação de plataforma
• Instale o DS como um serviço independente ou como um armazenamento de dados externo para a plataforma
• Use perfis de configuração para configurar o DS durante a instalação
• Gerenciar armazenamentos de dados de back-end
• Monitore e ajuste o DS para diferentes tipos de implantação usando HTTP e LDAP
• Implementar controle de acesso e privilégios
• Configurar administração delegada
• Faça backup e restaure back-ends
• Importar e exportar dados
• Gerenciar atributos personalizados
• Gerenciar editores de log
• Substitua certificados de replicação autoassinados
• Planejar uma migração do Oracle Directory Server Enterprise Edition para o DS
• Gerenciar entradas usando CLI e REST
• Implemente alta disponibilidade usando replicação
• Monitore o estado de saúde
• Monitore e solucione problemas de replicação
• Gerencie o DS em uma implantação do ForgeRock Identity Management (IDM)
• Gerencie o DS em uma implantação do ForgeRock Access Management (AM)
• Implantar uma topologia distribuída
• Configurar a confidencialidade dos dados
• Instalar e configurar servidores proxy de diretório
• Configure o Prometheus e o Grafana para monitorar instâncias do DS

Publico Alvo

• Integradores de sistemas
• Consultores de Sistema
• Arquitetos de Sistema
• Desenvolvedores de sistema
• Administradores de sistema

Pre-Requisitos

• Conhecimentos e habilidades básicas usando o sistema operacional Linux
• Conhecimento básico de LDAP, JSON, REST, Java

Materiais

Conteúdo Programatico

Introducing ForgeRock Directory Services (DS)

• Understanding how DS is used in the Platform

1. Describe how the platform uses DS
2. Describe deployment options

• Installing DS

1. Describe request processing
2. Understand where data is stored
3. Understand the installation process

• Managing data stores

1. Manage the configuration
2. Manage data stores
3. Manage Entries

• Protecting entries

1. Understand how access control is applied
2. Display privileges

• Locating default log files

1. Describe log publishers
2. Describe default log files

• Understanding DS monitoring capabilities

1. Describe DS monitoring
2. Describe HTTP monitoring
3. Describe LDAP monitoring
4. Describe SMTP monitoring
5. Describe JMX monitoring
6. Monitor health status

Maintaining DS in an AM Deployment

• Preparing DS as an external configuration and identity store for AM

1. Describe how DS is used in a default AM Deployment
2. Configure DS instances as external configuration and identity stores for AM

• Preparing DS as an external CTS token store for AM

1. Describe CTS deployment options
2. Configure DS as an external CTS token store for AM

• Performing essential administration tasks

1. Backup and restore an AM data store
2. Configure a highly available CTS
3. Enable secure communication between AM and DS

• Monitoring and tuning DS in an AM deployment

1. Monitor replication and disk space
2. Reduce replication traffic
3. Tune LDAP connection pools and AM caches

• Troubleshooting DS in an AM deployment

1. Enable platform transaction ID propagation
2. Configure log filtering

Deploying DS as a User Store

• Populating backends

1. Populate a backend

• Managing custom attributes

1. Add custom schema
2. Configure virtual attributes

• Delegating administration

1. Assign administrators to groups
2. Assign access control to subscriber entries
3. Grant privileges to administrators

• Managing authentication policies

1. Configure authentication policies

• Using REST to manage entries

1. Describe REST
2. Configure embedded REST API
3. Configure REST to LDAP gateway
4. Perform RESTful operations

• Implementing high availability and scalability through replication

1. Deploy a replication topology
2. Manage a replication topology
3. Replace self-signed replication certificates

• Monitoring and tuning a user store

1. Configure SNMP monitoring
2. Monitor indexes
3. Measure throughput and response times
4. Understand areas that affect performance

• Troubleshooting replication

1. Identify replication issues
2. Backup and restore a replicated topology

• Planning for a migration from Oracle DSEE to DS

1. Prepare for a migration from Oracle DSEE to DS

Maintaining DS in a ForgeRock Identity Management Deployment (IDM)

• Using DS as an IDM repository

1. Explore the default DS repository in IDM
2. Configure DS as an external IDM repository

• Provisioning subscribers to DS

1. Describe how IDM synchronizes data
2. Provision subscribers to DS

• Synchronizing passwords between DS and IDM

1. Enable mutual authentication
2. Install DS password synchronization plugin

• Monitoring and troubleshooting DS in an IDM deployment

1. Monitor DS and IDM logs
2. Troubleshoot password synchronization

Creating a Distributed Topology

• Exploring DS scalability options

1. Describe scaling options
2. Protect user privacy

• Configuring a distributed topology

1. Configure regional data stores
2. Upgrade a distributed topology

• Monitoring and tuning a distributed topology

1. Monitor a distributed topology
2. Tune DS for multiple backends