C'est la vie !

As discussed in a previous posting, Sun Learning has come up with a great Federation bootcamp. I’ve received many inquiries for additional information and I’m happy to report that there is now an official email address fm-bootcamp-AT-sun-DOT-com you can contact (remember, this for Sun’s employees & partners for now).

Below is the “official” description of what’s on the menu for 5 great days...

 

COURSE DESCRIPTION

 

The Federation Boot Camp course provides students with an opportunity to

learn about identity federation. Students learn about federation

concepts and specifications, then use Sun Java(TM) System Federation

Manager (Federation Manager) and Sun Java(TM) System Access Manager

(Access Manager) as a platform for demonstrating the concepts.

 

Topics include federation concepts, federation specifications and standards,

implementing federation frameworks, web services, programming and

customization, privacy, security, and high availability.

 

This course does not cover Lightweight Directory Access Protocol (LDAP),

Sun Java System Directory Server (Directory Server) concepts, and Sun

Java System Web Server (Web Server) concepts.

 

Students spend the majority of class time gaining hands-on experience

performing a variety of tasks typical of a federation deployment. Students

are quizzed at the end of each lecture and tested at the end of the boot camp.

 

 

WHO CAN BENEFIT

 

Students who can benefit from this course are consultants, architects,

systems engineers, technical support personnel, and systems administrators

specializing in designing and deploying federation services using

Federation Manager and Access Manager software.

 

 

PREREQUISITES

 

To succeed fully in this course, students should be able to:

 

* Demonstrate proficiency with the Solaris(TM) Operating System

  (Solaris OS)

* Demonstrate proficiency with XML and interpret Document Type

  Definition (DTD) files

* Demonstrate familiarity with Hypertext Markup Language (HTML)

* Demonstrate familiarity with Java programming and JavaServer

  Pages(TM) [JSP(TM) pages]        

* Demonstrate familiarity with secure sockets layer (SSL), LDAP, and

  load balancers

 

SKILLS GAINED

 

Upon completion of this course, students should be able to:

 

1. Describe identity federation and identify problems that

   identity federation solves

2. Describe the Security Assertion Markup Language (SAML) 1, SAML 2,

   and Liberty federation frameworks, and deploy and configure Federation

   Manager to support those frameworks

3. Configure Federation Manager to support Liberty web services

4. Customize federation deployments

5. Identify security and privacy issues in a federation deployment

6. Configure Federation Manager to use Directory Server repositories

7. Deploy Federation Manager in a highly available configuration

 

 

RELATED COURSES

 

Before:

 

* AM-3480: Sun Java(TM) System Access Manager: Configuration and

  Customization

* WZT-AM-3481: Sun Java(TM) System Federation Manager: Getting Started

 

 

COURSE OUTLINE

 

Preparation Lab 1 - Federation Manager Installation

 

* Install Federation Manager

 

Preparation Lab 2 - SAML 1.1 Single Sign-on

 

* Configure and deploy SAML 1.1 single sign-on

 

Preparation Lab 3 - Liberty Circle of Trust

 

* Configure and deploy a Liberty circle of trust

 

Preparation Lab 4 - SAML 2 Circle of Trust

 

* Configure and deploy a SAML 2 circle of trust  

 

Module 1 - Identity Federation Concepts

 

* Describe identity federation principles

* Describe problems that identity federation attempts to solve

* Use identity federation terminology

 

Module 2 - Standards and Specifications

 

* Describe the principal identity federation standardization efforts

* Describe the SAML and Liberty federation frameworks

* Analyze federation use cases and apply federation techniques to

  real-life scenarios

 

Module 3 - Federation Product Introduction

 

* Describe the federation features in Federation Manager and Access Manager

* Describe when to deploy Access Manager and when to deploy Federation Manager

 

Module 4 - Implementing Federation Frameworks

 

* Implement single sign-on (SSO) with Federation Manager and SAML 1.0  

  or SAML 1.1

* Implement a Liberty Identity Federation Framework (ID-FF)

* Implement a SAML 2 federation framework

 

Module 5 - Liberty Web Services Framework

 

* Describe the Liberty Identity Web Services Framework (ID-WSF)

  specification

* Understand the Federation Manager Liberty web services implementation

 

Module 6 - Programming and Customization

 

* Describe the nuts and bolts details of federation

* Configure Federation Manager with metadata, a circle of trust, and a SAML2

  authentication module

* Integrate JSP pages and the SAML2 API into a web application for federation

* Demonstrate a federated web application

 

Module 7 - Privacy

 

* Describe privacy in the context of federated identity

* Describe examples of existing privacy laws and organization

* Describe how the Liberty Alliance guidelines protect a principal's privacy

* Describe which product features implement or violate privacy protection

 

Module 8 - Security

 

* Describe vulnerabilities and risks associated with federated identity, and

  describe mitigation strategies

* Describe how the Sun Systemic Security program and how its security

  principles can drive a secure federated identity implementation

* Deploy a secure federation using Federation Manager

 

Module 9 - LDAP Back end for Federation Manager

 

* Configure Federation Manager to use an LDAP back end for configuration data

* Configure Federation Manager to use an LDAP back end for user profiles

* Configure Federation Manager to use an LDAP back end for user

  authentication information

 

Module 10 - High Availability

 

* List basic high availability concepts

* Deploy Federation Manager in a high availability configuration

* Describe implementation challenges and limitations