新进化论

道生一,一生二,二生三,三生万物。

  博客园 :: 首页 :: 博问 :: 闪存 :: 新随笔 :: 联系 :: 订阅 订阅 :: 管理 ::
http://www-03.ibm.com/certify/tests/obj039.shtml 
 Describe how IBM Tivoli Access Manager for e-business secures access to business applications and resources
Explain the architecture of IBM Tivoli Access Manager for e-business
Describe how IBM Tivoli Access Manager for e-business can integrate with new or existing products to secure business applications and resources
Describe how to install and configure IBM Tivoli Access Manager for e-business and its prerequisites for a particular case study
Describe how to install and configure Web Portal Manager to manage the Access Manager environment
Describe how to install and configure IBM Tivoli Directory Server Web Application Tool in order to ease management of the IBM Tivoli Directory Server user registry
Troubleshoot Access Manager for e-business installations
Describe the role of the user registry in IBM Tivoli Access Manager for e-business implementation
Create users, groups, access control lists, and protected object policies to manage the authentication and authorization of users
Use pdadmin commands and Web Portal Manager to manage users, groups, access control, and WebSEAL environment
Describe authorization rules to customize access control
Create Access Manager domains to unify the authentication and authorization of users
Create Access Manager delegated administrators to delegate domain management responsibilities to lower-level administrators
Use auditing to track users and administrators activities
Implement the Access Manager common auditing and reporting systems (CARS) for historical and operational reporting
Describe how WebSEAL secures Web-based resources
Install and configure WebSEAL
Describe and implement a variety of authentication methods including forms-based single sign-on, cross domain single sign-on, Windows desktop single sign-on (Simple and Protected Negotiation (SPNEGO)), and client-side certificates
Describe Session Management Server (SMS) and WebSEAL shared session management to limit concurrent sessions and terminate or inspect active sessions
Create and manage WebSEAL junctions to unify the Web space of the back-end servers with the Web space of the WebSEAL server
Enable auditing to track user activities
Enable logging to troubleshoot WebSEAL environment
Describe how to tailor a security environment with IBM Tivoli Access Manager for e-business Web server plug-ins


Course outline

--------------------------------------------------------------------------------

IBM Tivoli Access Manager for e-business 6.0 introduction and overview

introduction to IBM Tivoli Access Manager for e-business
IBM Tivoli Access Manager for e-business architecture
IBM Tivoli Access Manager for e-business integration
IBM Tivoli Access Manger for e-business installation and configuration

IBM Tivoli Access Manager for e-business prerequisites
IBM Tivoli Access Manager for e-business installation
IBM Tivoli Access Manager and the Lightweight Directory Access Protocol (LDAP) user registry

what is LDAP?
IBM Tivoli Access Manager and the user registry
installing and configuring the IBM Tivoli Directory Server Web Application Tool
Managing users and groups

using the IBM Tivoli Access Manager Command Line and Graphical User Interface
installing and configuring the Web Portal Manager
using pdadmin commands and Web Portal Manager to manage users, groups, and access control
Managing access control

controlling access with IBM Tivoli Access Manager
Access Control Lists (ACL)
Projected Object Policy (POP)
Internet Protocol (IP) authentication
Introduction to WebSEAL

what is WebSEAL?
WebSEAL authentication
WebSEAL junctions
Web space protection
Web space scalability
single sign-on
WebSEAL installation and configuration

installation prerequisites
installation methods
WebSEAL configuration
WebSEAL instance management
WebSEAL configuration files
WebSEAL authentication mechanisms

authentication overview
authentication methods
basic authentication
forms authentication
client certificate authentication
Hypertext Transfer Protocol (HTTP) header authentication
IP address authentication
token authentication
Advanced authentication methods

multiplexing proxy agents
switch user authentication
re-authentication
external authentication interface
logout and password change operations
login failure policy
WebSEAL junctions

WebSEAL junctions overview
managing junctions with Web Portal Manager
managing junctions with pdadmin utility
standard WebSEAL junctions
transparent path junctions
stateful junctions
junction cookie
junction mapping table
generating a third party Web space (query-contents)
junction throttling
Virtual host junctions

virtual host junction concepts
configuring a virtual host junction
virtual host junctions in object space
commands for virtual host junctions
Single sign-on

single sign-on concepts
single sign-on using HTTP Basic Authentication (BA) headers
supplying client identity and generic password
forwarding original client BA header information
removing client BA header information
supplying user name and password from Global Sign-On (GSO)
GSO
configuring a GSO enabled WebSEAL junction
forms single sign-on authentication
single sign-on to IBM WebSphere Lightweight Third Party Authentication (LTPA)
Windows desktop single sign-on

Windows single sign-on overview
SPNEGO
Active Directory with Windows single sign-on
configuration of Windows single sign-on
CDSSO

CDSSO overview
configuration of CDSSO
extended attributes for CDSSO
SMS

overview of SMS
administration
installation
configuration
SMS and WebSEAL
Domain and policy proxy server

IBM Tivoli Access Manager secure domains
managing secure domains
using policy proxy servers
Authorization rules

authorization rules
creating custom authorization rRules
Delegated administration

domain management responsibilities
delegated administration
delegated user and group administration
delegated object space management
Logging and auditing

policy server auditing
policy server logging
WebSEAL auditing
WebSEAL logging
CARS

CARS overview
CARS installation and configuration
CARS configuration for IBM Tivoli Access Manager policy server
CARS WebSEAL configuration
IBM Tivoli Access Manager reporting with CARS 
posted on 2012-07-12 12:39  岌岌可危  阅读(313)  评论(0编辑  收藏  举报