Visão Geral

Este Curso ForgeRock - Identity Governance fornece conhecimento para configurar e usar a solicitação de acesso para permitir que os usuários finais solicitem acesso a vários direitos, configurar e usar a revisão de acesso para criar campanhas de certificação que certificam o acesso de usuários e funções, e configurar e usar o Identity Reporting para criar relatórios para fins de auditoria.

Objetivo

Após concluir este Curso ForgeRock - Identity Governance, você será capaz de:

• Forneça uma visão geral do ForgeRock Identity Governance e software relacionado no contexto da ForgeRock Identity Platform.
• Execute as tarefas administrativas e de usuário final necessárias para criar e usar os recursos de solicitação de acesso do Access Request.
• Execute as tarefas de governança administrativa da Revisão de Acesso necessárias para criar e executar campanhas de certificação de usuários e funções.
• Use o recurso Identity Reporting para fazer upload das consultas SQL necessárias para gerar relatórios, configurar as conexões com as origens do banco de dados de destino e criar agendamentos de relatórios.
• Instale os módulos de software Access Review, Access Request e Identity Reporting em cima de uma implantação IDM existente para habilitar os serviços do ForgeRock Identity Governance.

Publico Alvo

• Públicos técnicos responsáveis ​​pela implantação e utilização do software ForgeRock Identity Governance em uma implantação IDM.

Pre-Requisitos

• Participe de um treinamento sobre ForgeRock Identity Management ou experiência prática equivalente
• O conhecimento básico dos objetos gerenciados pelo IDM, dos esquemas relacionados, dos conectores para recursos externos e dos mapeamentos de sincronização ajudam a compreender as tarefas do administrador relacionadas à governança de identidade.
• O conhecimento de LDAP e grupos LDAP também seria útil.

Materiais

Conteúdo Programatico

ForgeRock Identity Governance Overview

• Getting Started with Identity Governance

1. Describe the role of ForgeRock Identity Governance in the ForgeRock Identity Platform
2. Describe the features and benefits provided by Access Request
3. Describe the features and benefits provided by Access Review
4. Describe the features and benefits provided by Identity Reporting
5. List the resources available for implementing ForgeRock Identity Governance

• Assessing the Identity Governance Environment

1. Describe the identity management and identity governance roles
2. View the seeding data and IDM deployment configuration
3. Identify identity governance data

Access Request

• Getting Started With Access Request

1. Describe the main use cases for Access Request
2. Describe the roles and responsibilities in managing and using Access Request
3. Describe a typical access request process flow

• Configuring Access Request

1. Configure the default approvers, display, and search properties
2. Update the email notification templates

• Managing Access Requests

1. Request access with auto-approval
2. Create a requestable bundle
3. Create additional access requests

• Managing the Glossary

1. Define the purpose of the Glossary
2. Describe how to define a glossary item
3. Update the glossary for a new role

Access Review

• Getting Started With Access Review

1. Describe the main use cases for Access Review
2. Describe the roles and responsibilities for managing and using Access Request
3. Describe a typical access review process flow

• Configuring Access Review

1. Describe the global system settings
2. Configure the glossary for Access Review
3. Modify the notification templates

• Managing User Certifications

1. Validate that an end user should have access to an entitlement
2. Verify a user certification campaign
3. Use the scheduler to launch a user certification process on a periodic basis
4. Trigger a user certification based on a user property change
5. Define a multi-stage user certification
6. Test workflow remediation to revoke a role

• Managing Policy Violations

1. Describe the policy violation features
2. Describe a typical policy violation process flow
3. Create a policy violation rule that detects a toxic combination and remediate as the policy owner

• Managing Role Certifications

1. Describe a typical role management process flow
2. Create a role certification

Identity Reporting

• Getting Started With Identity Reporting

1. Describe the role and main use case for using Identity Reporting
2. Upload the SQL queries for Identity Reporting
3. Configure the data sources for accessing report data
4. Generate an on-demand report

Installing ForgeRock Identity Governance

• Installing Access Request

1. List the prerequisites for adding Access Request
2. Install Access Request
3. Perform post-installation tasks

• Installing Access Review

1. List the prerequisites for adding Access Review
2. Install Access Review
3. Perform post-installation tasks
4. Explore the changes made to IDM after installing Access Review

• Installing Identity Reporting

1. List the prerequisites for using and installing Identity Reporting
2. Install Identity Reporting
3. Verify Identity Reporting is installed and operational

• Seeding IDM with Identity Governance Data

1. Describe the given seeding script package
2. Prepare the IDM deployment
3. Seed the IDM deployment with identity governance data
4. Validate the seeding data and configuration