Oracle University Contact Us: 1.800.529.0165 Oracle Identity Manager 11g: Essentials Duration: 4 Days What you will learn Oracle Identity Manager 11g (11.1.1.3.0) is a highly flexible and scalable enterprise identity management system that manages access privileges of users within enterprise IT resources. This course helps to answer the critical compliance questions of "Who has access to what, when, how and why?" Learn To: Build authorization policies to manage access rights. Access Oracle Identity Manager reports using Oracle BI Publisher. Enable auditing for Oracle Identity Manager. Use Oracle Enterprise Manager Fusion Middleware Control to access logs and monitor the state of Oracle Identity Manager. Export and import Oracle Identity Manager configuration objects. Create, load and manage Oracle Identity Manager users, organizations and roles. Automate provisioning users through a request and approval workflow. Benefits to You: Secure your organization's critical applications and sensitive data to lower operational costs. Manage the entire user identity life cycle across all enterprise resources. Part 1 First, you'll gain an understanding of the importance, benefits, terminology, functional aspects and infrastructure of identity management and identity administration. Part 2 Next, you'll learn about Oracle Identity Manager, including how it uses connectors to manage reconciliation and provisioning workflows. Types of Reconciliation You'll also learn about two types of reconciliation: authoritative reconciliation and account reconciliation. Instructors will review how authoritative reconciliation is used to identify new user accounts on trusted sources and transfer them into Oracle Identity Manager. Similarly, you'll learn how account reconciliation is used to recognize changes to user accounts on non-authoritative sources. Enterprise Manager Fusion Middleware Explore Oracle Enterprise Manager Fusion Middleware Control, including how to use this tool to view logs and monitor Oracle Identity Manager and its components. Audience Copyright 2013, Oracle. All rights reserved. Page 1
Business Analysts End Users Functional Implementer Project Manager Reports Developer Security Administrators System Integrator Web Administrator Related Training Required Prerequisites A general comprehension of Oracle WebLogic Server 11g and Oracle Database 11g A good familiarity with a Windows-based environment A high-level understanding of Service Oriented Architecture (SOA), BPEL, and JDeveloper Suggested Prerequisites A good familiarity with a Linux-based environment Oracle WebLogic Server 11g: Administration Essentials Course Objectives The purpose of predefined Oracle Identity Manager connectors, including benefits, best practices, and real-world scenarios for using these connectors Direct and automated provisioning workflows, including how to implement these workflows to create user accounts in external resources manually and automatically How to build request templates, incorporate request datasets, and build approval policies for a request workflow used to provision resources to users Two types of reconciliation workflows: authoritative reconciliation and account reconciliation How to enable auditing and use Oracle Enterprise Manager Fusion Middleware Control to monitor and view the logs for Oracle Identity Manager and its components How to create and manage authorization policies in Oracle Identity Manager How to access operational, historical, exception, entitlement, and custom reports in Oracle Identity Manager How to transfer Oracle Identity Manager configurations The importance, benefits, terminology, functional aspects, and infrastructure of identity management and identity administration Copyright 2013, Oracle. All rights reserved. Page 2
Oracle Identity Manager, including how it uses connectors to manage reconciliation and provisioning workflows How to create and manage organizations, roles, and users Course Topics Introduction to Oracle Identity Manager 11g Discuss the course agenda and objectives Identity Management and Identity Administration: Overview Discuss the importance of identity management Discuss identity management benefits, values, terminology, and functional aspects Describe the identity administration infrastructure Launching Oracle Identity Manager Compare Oracle WebLogic Server, Oracle Identity Manager Server, and Oracle SOA Server Start the Oracle WebLogic Server, the Oracle Identity Manager Server, and the Oracle SOA Server Start the Oracle Identity Manager Web-based Console Start the Oracle Identity Manager Design Console Start the Oracle SOA web-based consoles Identify the differences among the consoles from Oracle Identity Manager and Oracle SOA Understanding Oracle Identity Manager Identify the Oracle Identity Management product suite Explain the role of Oracle Identity Manager in identity management Discuss business challenges and solutions Oracle Identity Manager addresses Identify tiers and components of the Oracle Identity Manager architecture Discuss use cases for Oracle Identity Manager Explain key features of Oracle Identity Manager for identity management: reconciliation and provisioning Understanding Organizations, Roles, and Users Compare users, roles and organizations Compare organizations and child roles Compare parent roles and child roles Group roles into a category Compare types of Oracle Identity Manager users Recognize Oracle Identity Manager user membership in organizations and roles Create, read, update, and delete records and attributes for Oracle Identity Manager organizations, users, and roles Assign a role to an Oracle Identity Manager user Using Predefined Connectors (Initial Onboarding) Identify an Oracle Identity Manager connector List the connectors in the Oracle Identity Manager Connector Pack Describe the ways to transfer connectors from one environment to another Take advantage of the benefits and best practices of using connectors Identify two tools used to import and export connectors: Connector Installer and Deployment Manager Explain how the Connector Installer is used to import connectors for external resources Configure a connector to make it operable within the Oracle Identity Manager environment Understanding Manual and Automated Provisioning Copyright 2013, Oracle. All rights reserved. Page 3
Identify and compare resources and Oracle Identity Manager connectors Describe how connectors are used to assign resources to users Explain how assigning resources to users differs from provisioning resources to users. Discuss three ways to assign and provision a resource to an Oracle Identity Manager user: Compare manual provisioning and autoprovisioning Understanding Approval Processes and Requests Explain the request workflow and approval process Define the components for the request workflow and approval processes Examine how the components affect a provisioning process Identify default request datasets and request templates Use JDeveloper to deploy SOA composites Model a request template and dataset Assign an approval process to an approval policy Create requests Understanding Reconciliation Define reconciliation Identify and compare two types of reconciliation associated with Oracle Identity Manager: authoritative and account recon Discuss three reconciliation events that Oracle Identity Manager can perform with a resource Explain authoritative reconciliation and account reconciliation conceptually Identify scheduled tasks Discuss the role that scheduled tasks have with authoritative reconciliation and account reconciliation Explain how to implement authoritative reconciliation and account reconciliation workflows Managing Authorization Policies Define the concept of authorization and differentiate it from authentication Identify the components of an authorization policy Decide when to implement authorization policies Describe out-of-the-box authorization policies and the roles associated with those policies Identify the entity types available when defining authorization policies Create authorization policies assigning entity-specific permissions and attributes Specify data constraints for an authorization policy Managing Reports Identify and compare six types of reports that an administrator can create for Oracle Identity Manager organizations, roles List different reports available with Oracle Identity Manager Identify Oracle Business Intelligence (BI) Publisher, the reporting tool for Oracle Identity Manager Explain how to configure Oracle BI Publisher so that it can be used to create reports for Oracle Identity Manager organiza Create reports with Oracle BI Publisher Auditing, Monitoring, and Logging for Oracle Identity Manager Identify and compare auditing, monitoring, and logging in the Enterprise Manager Fusion Middleware Control Discuss requirements and business challenges associated with auditing Identify the Oracle Fusion Middleware Audit Framework Describe features, the architecture, data flow, and technical concepts of this framework Explain how Oracle Identity Manager framework is used for monitoring purposes Discuss benefits of logging Identify log files specific to Oracle Identity Manager Transferring Oracle Identity Manager Configurations Identify and describe the Deployment Manager Copyright 2013, Oracle. All rights reserved. Page 4
Describe the methods, advantages, and best practices for transferring configurations from one Oracle Identity Manager e Discuss how to export and import configurations Copyright 2013, Oracle. All rights reserved. Page 5