Identity and Access Management : Forgerock OpenAM [Part 2]

An In depth and advanced industrial implementations based use cases on Access Manager[unofficial][2024-25]

Identity and Access management is an important part of cyber security.

This is the 2nd part of the course, and mainly designed for them who had successfully implemented the first part and made there basics string from there.

Here the complete focus will be learning advanced features of Access Manager like Web Protection, MFA, REST APIs, Access Controls, Authorization etc.

The training program assumes that candidate have all prerequisite already setup to learn this part , as discussed in previous part of the course.

Also please go through per session until you are not clear with the implementations before proceeding further.

Wish you all the best.

Topic Covered:

1. Introduction

2. Protecting Application on J2EE Server

   1. Understanding Use Case and Application Server

   2. MVC Architecture

   3. Application Server Configuration

   4. Java Agent and Architecture

   5. Java Agent Configuration, testing the protection & cookie analysis

3. Modules and Chain in Access Management

   1. Introduction to Modules and Chain

   2. various Module Criteria and Flags

   3. Authentication Level and it's role  in AM

   4. Various Authentication Modules

4. MFA(Multi factor Authentication) using Chain [with use case]

   1. Implementing MFA using chain

5. Adaptive or Smart or Extended MFA with modules and chain use case

   1. Adaptive MFA with modules and chain

6. Authentication Tree

   1. Introduction to Tree

   2. Types of Nodes

   3. Creating simple login tree

   4. Tree to lock user anonymous login

7. Implementing MFA using Tree

8. Adaptive or Extended MFA using Tree

9. OpenAM REST API For Authentication

   1. Introduction to REST API and Postman

   2. OpenAM REST API Practical

   3. Rest API Problem and Solution