ForgeRock® Access Management Product Overview
(AM-100)
This seminar is FREE of charge and will provide students with a high-level overview of the core ForgeRock® Access Management (AM) functionality. The seminar includes a mix of slides and demos, and does not include labs.
For labs and hands-on experience, come to one of the Deep Dive classes:
- AM-410: ForgeRock Access Management Deep Dive
- IDM-420: ForgeRock Identity Management Deep Dive
- DS-440: ForgeRock Directory Services Deep Dive
- IG-430: ForgeRock Identity Gateway Deep Dive
Note this course is built on version 7.x of AM.
Target Audiences
This seminar is aimed at IT professionals who are interested in the advantages and functionality of ForgeRock Access Management:
- System Integrators
- System Consultants
- System Architects
- System Administrators
Objectives
Upon completion of this course, you should be able to:
- Describe ForgeRock Entertainment Company (FEC), including the use case, customer identity and access management (CIAM) solution, the FEC portal, FEC AuthN and AuthZ requirements, and FEC requirements for authentication, authorization, federation, registration, and synchronization
- Explain REST, when to use it, and integration accelerators such as agents and IG
- Define context-related authorization, including static context and dynamic context
- Discuss classic OAuth 2.0, including a calendar printing app, how to share subscriptions with a mobile device, and proof of possession (POP), as well as OpenID Connect (OIDC)
- Describe how SAML works, list SAML features, introduce the players in a SAML scenario, and compare related technologies
- Explain tooling including auditing and monitoring, and online and in-person resources
Prerequisites
There are no prerequisites.
Duration
1/2 day
Certification
Earn a Digital Badge from attending this course. Learn more about ForgeRock badges at www.youracclaim.com/organizations/forgerock/badges
Course Contents
Chapter 1: Introducing the FEC Use Case
Lesson 1: The FEC Use Case
- Introduce the ForgeRock Entertainment Company (FEC) use case
- Review the FEC customer identity and access management (CIAM) solution
- Understand how the FEC portal works
- Understand FEC authentication, authorization, and federation requirements
Chapter 2: Authentication (AuthN)
Lesson 1: Authentication Mechanism (Trees)
- Introduce authentication
- Understand security requirements and authentication features, including features from the ForgeRock Marketplace and custom features
- Review authentication versus known identity
- Explain flexible authentication and intelligent authentication
Lesson 2: Session Management
- Understand the challenge of using a stateless protocol, such as HTTP
- Learn about the advantages of server sessions and client sessions
Lesson 3: SSO
- Understand why single sign-on (SSO) is used
- Introduce domain cookies, including advantages, challenges, and solutions
Chapter 3: Integrating a resource to protect
Lesson 1: REST
- Introduce the REST interface
Lesson 2: Integration Accelerators
- Introduce agents
- Understand the ForgeRock Identity Gateway (IG) flow
- Review the features IG adds to your application
- Introduce policy agents
- Understand the difference between IG and policy agents
- Review scenarios for protecting a service
Chapter 4: Context-related authorization (AuthZ)
Lesson 1: Classic Authorization
- Introduce the main types of authorization: static and classic
Lesson 2: Extending Authorization
- Review the different ways to extend authorization including using scripts and writing code
Chapter 5: OAuth 2.0 and OIDC
Lesson 1: OAuth 2.0
- Introduce OAuth 2.0
- Understand the OAuth 2.0 protocol flow
- Review classic use cases
- Understand OAuth 2.0 in the mobile world
- Learn about proof of possession (PoP)
Lesson 2: OIDC
- Introduce OIDC
- Learn about OIDC versus OAuth 2.0
- Review an OIDC token example
- Discuss a typical use case
Lesson 3: UMA
- Introduce UMA
- Review typical use cases
- Understand UMA architecture
- Review an UMA federated authorization grant flow
Chapter 6: SAML
Lesson 1: How SAML Works
- Learn how SAML works
- Review SSO cookies versus SAML versus OIDC
- Understand SAML features and players
Chapter 7: Tools
Lesson 1: Auditing
- Introduce auditing, including the common audit framework
Lesson 2: Monitoring
- Introduce monitoring
- Review monitoring tools, including Prometheus and Grafana
- Understand Prometheus and its architecture
- Understand how to use Grafana to visualize data
Lesson 3: Additional Resources
- Learn about other resources available to you, including online resources such as Backstage, Knowledge Base, Marketplace, and in-person resources such as conferences, Meetups, and ForgeRock University courses
Lesson 4: Trending
- Introduce current trends including microservices, the cloud deployment model, and supported clouds
- Review about ForgeRock DevOps and deployment technology
- Learn about ForgeRock University courses