6426 Configuring and Troubleshooting Identity and Access
Solutions with Windows Server 2008 Active Directory
About this Course
This three-day instructor-led course provides in-depth knowledge
on configuring and troubleshooting Identity and Access (IDA)
solutions with Windows Server 2008 Active Directory.
WE CAN CUSTOMIZE THIS COURSE FOR YOU, LEARN MORE.
Audience Profile
This course is intended for those who want to understand how IDA
solutions are implemented in Windows Server 2008. This course
provides a technology overview of IDA and PKI solutions, and
details the implementation of each of the roles in Windows Server
2008 that implement the IDA solution. Also architects, IT
professionals, and developers who are responsible for integrating
applications and platforms with enterprise directory and security
services would benefit from this course.
At Course Completion
After completing this course, students will be able to:
- Explore Identity and Access (IDA) solutions.
- Deploy and Manage Active Directory Certificate Services (AD
CS).
- Deploy and Manage Certificates.
- Configure Active Directory Lightweight Directory Services (AD
LDS).
- Configure Active Directory Federation Services (AD FS).
- Configure Active Directory Rights Management Services (AD
RMS).
- Maintain access management solutions.
- Troubleshoot IDA solutions.
Course Outline
Module 1: Exploring Identity and Access
Solutions
Exploring Identity and Access Solutions introduces Identity and
Access Management (IDA Management) solutions. You will learn to
identify Active Directory server roles in IDA Management. The
module will also describe the concept of Identity Lifecycle Manager
(ILM).
Lessons
- The Business Case for Identity and Access Control
- Active Directory Server Roles in IDA Management
- Overview of Identity Lifecycle Manager 2007
Lab : Exploring IDA Solutions
Exploring How Active Directory Server Roles Provide IDA
Management Solutions
After completing this module, students will be able to:
- Identify and define IDA Solutions
- Identify Active Directory Server Roles in IDA Management
- Identify the uses and features of ILM 2007
Module 2: Deploying and Managing Active Directory
Certificate Services
Deploying and Managing Active Directory Certificate Services
explains the concepts of public key infrastructure (PKI). You will
also learn to deploy a certification authority (CA) hierarchy and
install AD CS. Finally, the module describes how to configure AD
CS.
Lessons
- Overview of PKI
- Deploying a CA Hierarchy
- Installing AD CS
- Managing CAs
Lab : Installing and Configuring AD CS
- Installing the AD CS Server Role
- Issuing and Installing a Subordinate Certificate
- Publishing the CRL
After completing this module, students will be able to:
- Describe Public Key Infrastructure.
- Deploy a Certification Authority hierarchy.
- Install Active Directory Certificate Services.
- Manage a Certification Authority.
Module 3: Deploying and Managing
Certificates
Deploying and Managing Certificates describes the deployment of
certificates by using AD CS. In addition, the module elaborates on
usage of autoenrollment to deploy certificates, certificate
revocation, and configuration of certificate template and
certificate recovery.
Lessons
- Configuring Certificate Templates
- Deploying Certificates by Using AD CS
- Deploying Certificates by Using Autoenrollment
- Revoking Certificates
- Configuring Certificate Recovery
Lab : Deploying and Managing Certificates
- Configuring AD CS Certificate Templates
- Configuring AD CS Web Enrollment
- Configuring Certificate Autoenrollment
- Configuring AD CS Certificate Revocation
- Managing Key Archival and Recovery
After completing this module, students will be able to:
- Deploy certificates by using AD CS.
- Use autoenrollment to deploy certificates.
- Revoke certificates.
- Configure certificate templates.
- Configure certificate recovery.
Module 4: Configuring Active Directory Lightweight
Directory Services
Configuring Active Directory Lightweight Directory Services
elaborates on the installation of AD LDS, and the configuration of
AD LDS, its instances, replication, and integration with AD DS.
Lessons
- Installing and Configuring AD LDS
- Configuring AD LDS Instances
- Configuring AD LDS Replication
- Configuring AD LDS Integration with AD DS
Lab : Configuring AD LDS
- Configuring an AD LDS Instance and an Application
Partition
- Configuring AD LDS Access Control
- Configuring AD LDS Replication
- Configuring AD DS and AD LDS Synchronization
After completing this module, students will be able to:
- Install and configure AD LDS.
- Configure AD LDS instances.
- Configure AD LDS replication.
- Configure AD LDS integration with AD DS.
Module 5: Configuring Active Directory Federation
Services
Configuring Active Directory Federation Services presents the
concept of AD FS and its deployment scenarios. The module also
describes how to deploy AD FS and implement AD FS claims.
Lessons
- Overview of AD FS
- AD FS Deployment Scenarios
- Deploying AD FS
- Implementing AD FS Claims
Lab : Configuring AD FS by Using the Federated Web SSO
with Forest Trust Scenario
- Installing the AD FS Server Role
- Configuring Certificate Requirements
- Installing the AD FS Web Agent
- Configuring the Web Server Application on the 6426B-NWTDC01
Virtual Computer
- Configuring the Forest Trust and the Federated Trust
Policies
- Configuring the Federation Service Within the Internal
Network
- Configuring the Federation Service Within the Extranet
- Testing the AD FS Implementation
Lab : Configuring AD FS by Using the Federated Web SSO
Scenario
- Installing the AD FS Server Role
- Configuring Certificate Requirements
- Configuring the AD FS Web Agent
- Configuring the Web Server Application on the 6426B-NWTDC01
Virtual Computer
- Configuring the Federation Trust Policies
- Configuring the Account Partner Federation Service
- Configuring the Resource Partner Federation Service
- Testing the AD FS Implementation
After completing this module, students will be able to:
- Identify the key aspects of AD FS.
- Explore AD FS deployment scenarios.
- Deploy AD FS.
- Implement AD FS claims.
Module 6: Configuring Active Directory Rights Management
Services
Configuring Active Directory Rights Management Services explains
the concept of AD RMS. The module describes how to install and
configure AD RMS server components. The module also explains the
administration of AD RMS and implementation of AD RMS trust
policies.
Lessons
- Overview of AD RMS
- Installing and Configuring AD RMS Server Components
- Administering AD RMS
- Implementing AD RMS Trust Policies
Lab : Configuring AD RMS
- Installing the AD RMS Server Role
- Managing AD RMS Rights Policy Templates
- Configuring Trust Policies
- Testing AD RMS Functionality
After completing this module, students will be able to:
- Identify the key aspects of AD RMS.
- Install and configure AD RMS server components.
- Administer AD RMS.
- Implement AD RMS Trust Policies.
Module 7: Maintaining Access Management
Solutions
Maintaining Access Management Solutions explains the maintenance
of AD CS, AD LDS, AD FS, and AD RMS.
Lessons
- Supporting AD CS
- Maintaining AD LDS
- Maintaining AD FS
- Maintaining AD RMS
Lab : Maintaining Access Management
Solutions
- Configuring CA Event Auditing
- Implementing Role-Based Administration in AD CS
- Backing Up a CA
- Reconfiguring AD RMS Cluster Settings
- Generating AD RMS Reports
- Configuring AD RMS Logging
After completing this module, students will be able to:
- Support AD CS.
- Maintain AD LDS.
- Maintain and Monitor AD FS.
- Maintain AD RMS.
Module 8: Troubleshooting Identity and Access
Solutions
Troubleshooting Identity and Access Solutions describes how to
troubleshoot AD CS, AD LDS, AD FS, and AD RMS.
Lessons
- Troubleshooting AD CS
- Troubleshooting AD LDS
- Resolving AD FS Issues
- Solving AD RMS Issues
Lab : Troubleshooting IDA Solutions
- Identifying Tools and Troubleshooting Techniques of IDA
Solutions
After completing this module, students will be able to:
- Troubleshoot AD CS.
- Troubleshoot AD LDS.
- Resolve AD FS issues.
- Solve AD RMS issues.