Kurser

Kursusadministration

Brug for hjælp?

  • Gregersensvej 8
  • 2630 Taastrup
Google MapsApple MapsRejseplanen
  • Forskerparken Fyn, Forskerparken 10F
  • 5230 Odense M
Google MapsApple MapsRejseplanen
  • Teknologiparken Kongsvang Allé 29
  • 8000 Aarhus C
Google MapsApple MapsRejseplanen
  • NordsøcentretPostboks 104
  • 9850Hirtshals
Google MapsApple MapsRejseplanen
  • Gammel Ålbovej 1
  • 6092Sønder Stenderup
Google MapsApple MapsRejseplanen

Masterclass: Administering and Configuring Active Directory Federation Services and Claims

Lær, hvordan du installerer og administrerer Active Directory Federation Services, så du ved hjælp af claims kan logon-validere og give adgang til data på en sikker måde. Undervisningen foregår på engelsk.

Evaluering

4stjerner

Alle arrangementer på Teknologisk Institut bliver evalueret af deltagerne. Stjernerne angiver deltagernes gennemsnitlige tilfredshed.

Evalueringen er baseret på: 12 besvarelser

Active Directory Federation Services and Claims workshop is the best way to learn how to implement the most business oriented server role! Federated Identity and claims based applications are becoming more and more popular – they simplify the resource access both for your employees and business partners. The course focuses on implementation scenarios, including practice in the newest technologies and solutions delivered with Windows Server 2012 R2. When the world becomes more focused on solving ‘Bring Your Own Device’ issues, it is time to become more up to date with the newest technology capabilities: Active Directory Federation Services and Active Directory Domain Services have been extended to comprehend the most popular mobile devices and provide conditional access and access policies.

Deltagerprofil

This course is intended for IT professionals who would like to implement and administer Active Directory Federation Services within the organization. Prerequisite for the course is to have a medium level knowledge about Active Directory Domain Services.

Indhold

Module 1 introduction
  • Introduction
  • What are Claims
  • Dynamic Access Control
  • Lab (Dynamic Access Control in 2012 R2)
  • Lab [Optional] (DAC and Groups)
Module 2 Authentication mechanism
  • What are current authentication mechanism in use
  • LAB Working with SPN
  • Services Accounts – threats and gMS
  • Lab - Enabling gMSA Creation
  • Lab (Optional) – service credentials recovery (Windows)
  • Lab(Optional) – IIS app pool password recovery
  • PKI – Quick Overview of certification services – internal and 3rd party
  • LAB – requesting certificates
  • LAB: Installing ADFS
Module 3 Designing Modern Authentication
  • Designing Modern Authentication
  • ADFS Overview
  • LAB (Optional/demo) – Installing ADFS Cluster
Module 4 Working with ADFS
  • Working with ADFS - enable applications
  • LAB - Install Simple Claims applications
  • LAB(Optional) – verify application config
  • ADFS Basics – Rules and Rule flow
  • Lab – Configuring Issuing rules
Module 5 Relaying Parties
  • Thick applications, and working with multiple Relaying Parties
  • LAB - Configuring Dynamics CRM
  • LAB - Testing with Outlook
  • LAB (Optional) – testing with Windows 8.1
  • Attribute Stores
  • LAB – configuring application Store
  • LAB – configuring authorization rules
  • LAB (optional) – using groups in authorization rules
Module 6 Web Application Proxy
  • Web Application Proxy
  • LAB – installing WAP
  • LAB – configuring ADFS publishing
  • LAB – configuring Claims-aware application
  • LAB (optional) – Configure via application
  • LAB (Optional) – configure pass-through application
Module 7 Customization and troubleshooting
  • Customizing ADFS
  • LAB: ADFS Customization
  • Troubleshooting ADFS
  • LAB: ADFS Troubleshooting
  • Working with MFA
Module 8 Device Registration Service
  • Enabling Device Registration Service
  • LAB: Enabling Device Registration Service and working with claims
  • Summary and review
  • Exchange and claims (Additional content)
  • SharePoint and claims (Additional content)
  • WorkFolders (additional content)

Form

All exercises are based on Windows Server 2012 R2 and Windows 8.1. Some examples are also shown on Windows Server 2012 to accommodate the difference.
At the end of the course you will be able to:

  • Design AD Federation Services infrastructure and identify the implementation requirements
  • Deploy AD Federation Services to provide claims-aware authentication in a single organization
  • Implement AD Federation Services high availability
  • Deploy Web Application Proxy (previous: AD Federation server proxy) to securely publish web applications
  • Deploy Device Registration Service to enable control of user devices
  • Deploy Claims-enabled ACLs on File Servers

Course materials: Exercises, presentation slides with notes.


Underviser

CQURE Chris

Chris Pietrzak is a system architect and consultant. He is designing and implementing solutions for Security, Network & Management area, mainly for Microsoft platform. The leader of the Microsoft Security Solutions User Group.

Har du faglige spørgsmål så kontakt
Andre kurser