This course provides the information you need to set up and configure PingAccess as a policy server to protect both web applications and APIs. After completing this course, you will know how to configure PingAccess in both a gateway and agent model, and configure different types of policies that PingAccess offers.

Target Audiences

The target audiences for this course include:

• PingAccess Administrators
• PingAccess Developers

Objectives

Upon completion of this course, you should be able to:

• Discover how to configure PingAccess as a reverse proxy, and connect PingAccess to a token provider (PingFederate)
• Configure PingAccess as a Reverse Proxy
• Configure policies in PingAccess to further bolster administration capabilities

Prerequisites

The following are the prerequisites for successfully completing this course:

• Completion of the following courses: https://backstage.pingidentity.com/university/on-demand/category/PING
  • Introduction to PingAccess
  • Getting Started With PingAccess
  • Introduction to PingFederate
  • Getting Started With PingFederate

Duration

2 days

Course Contents

Chapter 1: Configuring and Connecting PingAccess

Discover how to configure PingAccess as a reverse proxy, and connect PingAccess to a token provider (PingFederate).

Lesson 1: Configuring PingAccess as a Reverse Proxy (Gateway Model)

Describe how to configure PingAccess as a reverse proxy (gateway model):

• Introduce the gateway model
• Enable PingAccess as a reverse proxy
• Configure PingAccess resources and rewrite rules

Lesson 2: Connecting PingAccess to a Token Provider (PingFederate)

Describe the responsibilities of token providers and how to configure PingAccess to use PingFederate as a token provider:

• Introduce token providers
• Configure OAuth2 in PingFederate
• Configure PingAccess using the gateway model

Chapter 2: Configuring PingAccess Applications, Agents, and Sites

Configure PingAccess as a Reverse Proxy.

Lesson 1: Protecting Web Apps

Describe how to protect web apps by configuring them with PingAccess and OpenID Connect (OIDC):

• Define the OIDC protocol
• Introduce web sessions
• Create a web session using OIDC claims

Lesson 2: Working With Sites

Create identity mappings and advanced web session:

• Create identity mappings and advanced web sessions

Lesson 3: Working With Rules and Policies

Describe how to work with rules and policies within PingAccess:

• Describe the rules and policies process
• Create web access rules
• Create API access control rules

Chapter 3: Configuring Policies and Administration

Configure policies in PingAccess to further bolster administration capabilities.

Lesson 1: Maintaining PingAccess

Discuss how to maintain PingAccess through resources, audit logs, and redirection:

• Dive deeper into resources
• Examine audit logs
• Manage redirection

Lesson 2: Configuring PingAccess as a Policy Server (Agent Model)

Configure PIngAccess to be a policy server by implementing the agent model:

• Introduce the agent model

Lesson 3: Optimizing and Configuring PingAccess

Optimize PingAccess through configuration, single sign-on (SSO), and the admin API:

• Implement improvements
• Enable PingAccess administrator SSO
• Use the PingAccess administrative API
• Increase the JVM Heap Size

Lesson 4: Creating PingAccess Clusters

Create PingAccess clusters to increase resilience and simplify procedures:

• Deploy clusters
• Configure simple clusters in PingAccess (Optional)