In this course, a follow on to the Sun Identity Manager: Deployment Fundamentals (IDM-345) course, students will be instructed in how to complete a four-phase deployment scenario. In phase three of the deployment scenario, students use Active Sync synchronization to synchronize identity information between a data feed from the human resources (HR) department, an Active Directory instance, a Corporate LDAP directory service, a contractor SQL database, and the Solaris Operating System. In phase four of the deployment scenario, students build an end user self-service provisioning strategy that lets contractors perform self-registration and lets contractors and employees request system resources with resource approvals. Students implement the necessary forms, rules, and workflow to meet the business requirements of the given case study and learn how to further customize the Sun Identity Manager (Identity Manager) system. The hands-on labs offered in this course might involve accessing equipment that resides at a location other than where the training is delivered. This course features Identity Manager 8.1, the NetBeans Integrated Development Environment, as well as the GlassFish application server. Sun Identity Manager is a complete, highly scalable solution for managing, auditing, protecting, sharing and storing identity data. It helps ensure ongoing and sustainable regulatory compliance, role-based provisioning, data synchronization among multiple identity data stores, and end user self-registration.

Request a Course Search for a Course Email This Item to a Friend

ILT

Students who can benefit from this course are experienced identity management deployment engineers, architects, implementers, professional services consultants, partners, and other technical personnel directly responsible for deploying an identity management solution using Identity Manager.

To succeed fully in this course, students should have successfully completed IDM-345 Sun(TM) Identity Manager: Deployment Fundamentals. In addition, a minimum of six weeks of Identity Manager deployment experience is highly recommended.

Perform Active Sync operations

• Implement advanced Active Sync configurations
• Develop custom end user self-service requests
• Develop custom anonymous self-service requests
• Integrate the deferred task scanner and account renames into default and custom workflows
• Build custom Active Sync and reconcile workflows

Module 1 - Examining an Existing Identity Manager Deployment

• Summarize the course case study
• Describe a phased approach to deploying Identity Manager
• Examine the existing lab environment (Lab)
• Create a work environment (Lab)

• Describe the case study requirements for implementing Active Sync for existing users
• Describe Active Sync processing at a high level
• Describe the basic components of an Active Sync configuration
• Configure an Active Sync resource adapter
• Control and monitor the operation of Active Sync
• Configure identity attributes and the Human Resources (HR) flat file Active Sync (FFAS) feed to synchronize attributes for existing users (Lab)
• Configure identity attributes and the HR FFAS feed to automatically provision existing users and into a new corporate LDAP resource (Lab)

• Describe the case study requirements for implementing Active Sync for new users
• Describe advanced Active Sync adapter features
• Describe Active Sync form processing
• Describe Active Sync event processing
• Describe the Active Sync configuration modes
• Define the attribute requirements (Lab)
• Configure identify attributes for create user processing (Lab)
• Build rules to determine the complex attribute logic in the proxy administrator form (Lab)
• Update the synchronization policy and enable the HR proxy form (Lab)
• Test the HR Feed Active Sync process (Lab)

• Describe the case study requirements for configuring Active Sync using the input form
• Decide when to use input form mode in an Active Sync implementation
• Describe input form mode implementation details
• Describe best practices for Active Sync implementation when using an input form
• Synchronize Active Directory and the corporate LDAP with the HR feed using a
• custom Active Sync input form (Lab)

• Describe the case study requirements for using custom rules and forms in end user self-service requests
• Build custom interactive forms
• Create manual actions and work items
• Build custom workflow tasks
• Authorize end-user actions
• Create end user rules (Lab)
• Create a custom request form (Lab)

• Describe the case study requirements for using custom tasks in end user self-service requests
• Customize workflow components for the basic user create workflow
• Customize workflow components for a better user create workflow
• Implement an update user workflow with a find user sub-process
• Create an end user request access task (Lab)

• Describe the case study requirements for developing custom anonymous self-service user requests
• Build anonymous self-service tasks
• Use built-in anonymous enrollment
• Create an approval process that is role and resource aware (Lab)
• Configure an anonymous task interface (Lab)
• Build a contractor self-registration task (Lab)

• Describe the case study requirements for deferred tasks
• Implement deferred tasks
• Implement a custom workflow notification process to send notifications before a contractor?s contract end date (Lab)

• Describe the case study requirements for account renames
• Implement account rename operations in Identity Manager
• Implement an account rename process (Lab)

• Describe the case study requirements for using custom Active Sync tasks
• Customize Active Sync and reconcile tasks
• Create a custom Active Sync process workflow (Lab)

• Evaluate implementation challenges and value added