http://www-03.ibm.com/certify/tests/obj039.shtml
Describe how IBM Tivoli Access Manager for e-business secures access to business applications and resources
Explain the architecture of IBM Tivoli Access Manager for e-business
Describe how IBM Tivoli Access Manager for e-business can integrate with new or existing products to secure business applications and resources
Describe how to install and configure IBM Tivoli Access Manager for e-business and its prerequisites for a particular case study
Describe how to install and configure Web Portal Manager to manage the Access Manager environment
Describe how to install and configure IBM Tivoli Directory Server Web Application Tool in order to ease management of the IBM Tivoli Directory Server user registry
Troubleshoot Access Manager for e-business installations
Describe the role of the user registry in IBM Tivoli Access Manager for e-business implementation
Create users, groups, access control lists, and protected object policies to manage the authentication and authorization of users
Use pdadmin commands and Web Portal Manager to manage users, groups, access control, and WebSEAL environment
Describe authorization rules to customize access control
Create Access Manager domains to unify the authentication and authorization of users
Create Access Manager delegated administrators to delegate domain management responsibilities to lower-level administrators
Use auditing to track users and administrators activities
Implement the Access Manager common auditing and reporting systems (CARS) for historical and operational reporting
Describe how WebSEAL secures Web-based resources
Install and configure WebSEAL
Describe and implement a variety of authentication methods including forms-based single sign-on, cross domain single sign-on, Windows desktop single sign-on (Simple and Protected Negotiation (SPNEGO)), and client-side certificates
Describe Session Management Server (SMS) and WebSEAL shared session management to limit concurrent sessions and terminate or inspect active sessions
Create and manage WebSEAL junctions to unify the Web space of the back-end servers with the Web space of the WebSEAL server
Enable auditing to track user activities
Enable logging to troubleshoot WebSEAL environment
Describe how to tailor a security environment with IBM Tivoli Access Manager for e-business Web server plug-ins
Course outline
--------------------------------------------------------------------------------
IBM Tivoli Access Manager for e-business 6.0 introduction and overview
introduction to IBM Tivoli Access Manager for e-business
IBM Tivoli Access Manager for e-business architecture
IBM Tivoli Access Manager for e-business integration
IBM Tivoli Access Manger for e-business installation and configuration
IBM Tivoli Access Manager for e-business prerequisites
IBM Tivoli Access Manager for e-business installation
IBM Tivoli Access Manager and the Lightweight Directory Access Protocol (LDAP) user registry
what is LDAP?
IBM Tivoli Access Manager and the user registry
installing and configuring the IBM Tivoli Directory Server Web Application Tool
Managing users and groups
using the IBM Tivoli Access Manager Command Line and Graphical User Interface
installing and configuring the Web Portal Manager
using pdadmin commands and Web Portal Manager to manage users, groups, and access control
Managing access control
controlling access with IBM Tivoli Access Manager
Access Control Lists (ACL)
Projected Object Policy (POP)
Internet Protocol (IP) authentication
Introduction to WebSEAL
what is WebSEAL?
WebSEAL authentication
WebSEAL junctions
Web space protection
Web space scalability
single sign-on
WebSEAL installation and configuration
installation prerequisites
installation methods
WebSEAL configuration
WebSEAL instance management
WebSEAL configuration files
WebSEAL authentication mechanisms
authentication overview
authentication methods
basic authentication
forms authentication
client certificate authentication
Hypertext Transfer Protocol (HTTP) header authentication
IP address authentication
token authentication
Advanced authentication methods
multiplexing proxy agents
switch user authentication
re-authentication
external authentication interface
logout and password change operations
login failure policy
WebSEAL junctions
WebSEAL junctions overview
managing junctions with Web Portal Manager
managing junctions with pdadmin utility
standard WebSEAL junctions
transparent path junctions
stateful junctions
junction cookie
junction mapping table
generating a third party Web space (query-contents)
junction throttling
Virtual host junctions
virtual host junction concepts
configuring a virtual host junction
virtual host junctions in object space
commands for virtual host junctions
Single sign-on
single sign-on concepts
single sign-on using HTTP Basic Authentication (BA) headers
supplying client identity and generic password
forwarding original client BA header information
removing client BA header information
supplying user name and password from Global Sign-On (GSO)
GSO
configuring a GSO enabled WebSEAL junction
forms single sign-on authentication
single sign-on to IBM WebSphere Lightweight Third Party Authentication (LTPA)
Windows desktop single sign-on
Windows single sign-on overview
SPNEGO
Active Directory with Windows single sign-on
configuration of Windows single sign-on
CDSSO
CDSSO overview
configuration of CDSSO
extended attributes for CDSSO
SMS
overview of SMS
administration
installation
configuration
SMS and WebSEAL
Domain and policy proxy server
IBM Tivoli Access Manager secure domains
managing secure domains
using policy proxy servers
Authorization rules
authorization rules
creating custom authorization rRules
Delegated administration
domain management responsibilities
delegated administration
delegated user and group administration
delegated object space management
Logging and auditing
policy server auditing
policy server logging
WebSEAL auditing
WebSEAL logging
CARS
CARS overview
CARS installation and configuration
CARS configuration for IBM Tivoli Access Manager policy server
CARS WebSEAL configuration
IBM Tivoli Access Manager reporting with CARS
Describe how IBM Tivoli Access Manager for e-business secures access to business applications and resources
Explain the architecture of IBM Tivoli Access Manager for e-business
Describe how IBM Tivoli Access Manager for e-business can integrate with new or existing products to secure business applications and resources
Describe how to install and configure IBM Tivoli Access Manager for e-business and its prerequisites for a particular case study
Describe how to install and configure Web Portal Manager to manage the Access Manager environment
Describe how to install and configure IBM Tivoli Directory Server Web Application Tool in order to ease management of the IBM Tivoli Directory Server user registry
Troubleshoot Access Manager for e-business installations
Describe the role of the user registry in IBM Tivoli Access Manager for e-business implementation
Create users, groups, access control lists, and protected object policies to manage the authentication and authorization of users
Use pdadmin commands and Web Portal Manager to manage users, groups, access control, and WebSEAL environment
Describe authorization rules to customize access control
Create Access Manager domains to unify the authentication and authorization of users
Create Access Manager delegated administrators to delegate domain management responsibilities to lower-level administrators
Use auditing to track users and administrators activities
Implement the Access Manager common auditing and reporting systems (CARS) for historical and operational reporting
Describe how WebSEAL secures Web-based resources
Install and configure WebSEAL
Describe and implement a variety of authentication methods including forms-based single sign-on, cross domain single sign-on, Windows desktop single sign-on (Simple and Protected Negotiation (SPNEGO)), and client-side certificates
Describe Session Management Server (SMS) and WebSEAL shared session management to limit concurrent sessions and terminate or inspect active sessions
Create and manage WebSEAL junctions to unify the Web space of the back-end servers with the Web space of the WebSEAL server
Enable auditing to track user activities
Enable logging to troubleshoot WebSEAL environment
Describe how to tailor a security environment with IBM Tivoli Access Manager for e-business Web server plug-ins
Course outline
--------------------------------------------------------------------------------
IBM Tivoli Access Manager for e-business 6.0 introduction and overview
introduction to IBM Tivoli Access Manager for e-business
IBM Tivoli Access Manager for e-business architecture
IBM Tivoli Access Manager for e-business integration
IBM Tivoli Access Manger for e-business installation and configuration
IBM Tivoli Access Manager for e-business prerequisites
IBM Tivoli Access Manager for e-business installation
IBM Tivoli Access Manager and the Lightweight Directory Access Protocol (LDAP) user registry
what is LDAP?
IBM Tivoli Access Manager and the user registry
installing and configuring the IBM Tivoli Directory Server Web Application Tool
Managing users and groups
using the IBM Tivoli Access Manager Command Line and Graphical User Interface
installing and configuring the Web Portal Manager
using pdadmin commands and Web Portal Manager to manage users, groups, and access control
Managing access control
controlling access with IBM Tivoli Access Manager
Access Control Lists (ACL)
Projected Object Policy (POP)
Internet Protocol (IP) authentication
Introduction to WebSEAL
what is WebSEAL?
WebSEAL authentication
WebSEAL junctions
Web space protection
Web space scalability
single sign-on
WebSEAL installation and configuration
installation prerequisites
installation methods
WebSEAL configuration
WebSEAL instance management
WebSEAL configuration files
WebSEAL authentication mechanisms
authentication overview
authentication methods
basic authentication
forms authentication
client certificate authentication
Hypertext Transfer Protocol (HTTP) header authentication
IP address authentication
token authentication
Advanced authentication methods
multiplexing proxy agents
switch user authentication
re-authentication
external authentication interface
logout and password change operations
login failure policy
WebSEAL junctions
WebSEAL junctions overview
managing junctions with Web Portal Manager
managing junctions with pdadmin utility
standard WebSEAL junctions
transparent path junctions
stateful junctions
junction cookie
junction mapping table
generating a third party Web space (query-contents)
junction throttling
Virtual host junctions
virtual host junction concepts
configuring a virtual host junction
virtual host junctions in object space
commands for virtual host junctions
Single sign-on
single sign-on concepts
single sign-on using HTTP Basic Authentication (BA) headers
supplying client identity and generic password
forwarding original client BA header information
removing client BA header information
supplying user name and password from Global Sign-On (GSO)
GSO
configuring a GSO enabled WebSEAL junction
forms single sign-on authentication
single sign-on to IBM WebSphere Lightweight Third Party Authentication (LTPA)
Windows desktop single sign-on
Windows single sign-on overview
SPNEGO
Active Directory with Windows single sign-on
configuration of Windows single sign-on
CDSSO
CDSSO overview
configuration of CDSSO
extended attributes for CDSSO
SMS
overview of SMS
administration
installation
configuration
SMS and WebSEAL
Domain and policy proxy server
IBM Tivoli Access Manager secure domains
managing secure domains
using policy proxy servers
Authorization rules
authorization rules
creating custom authorization rRules
Delegated administration
domain management responsibilities
delegated administration
delegated user and group administration
delegated object space management
Logging and auditing
policy server auditing
policy server logging
WebSEAL auditing
WebSEAL logging
CARS
CARS overview
CARS installation and configuration
CARS configuration for IBM Tivoli Access Manager policy server
CARS WebSEAL configuration
IBM Tivoli Access Manager reporting with CARS
