M50412: Implementing Active Directory Federation Services 2.0
Book Now - 1 Delivery Method Available:Scheduled Online Onsite
This four-day instructor-led course provides students with the knowledge and skills to install and configure Active Directory Federation Services 2.0 (AD FS). The course focuses on terminology, user interfaces, and common configuration scenarios for AD FS. Students will learn how to design AD FS environments and supporting technology such as a Public Key Infrastructure. Students will also learn how to design AD FS for security and high availability.
On completion of this course, delegates will be able to:
- Define key concepts and terminology relating to Active Directory Federation Services 2.0.
- Install and configure Windows prerequisites for AD FS 2.0.
- Install and configure Public Key Infrastructure (PKI) for AD FS 2.0.
- Deploy AD FS 2.0 to provide claims-aware authentication in a single organization.
- Configure AD FS 2.0 to provide claims-aware authentication in a business-to-business federation.
- Design and deploy advanced AD FS 2.0 scenarios, including providing for high availability and SAML interoperability.
- Use the AD FS 2.0 claims rule language to create custom claim rules.
We work with the following best of breed training partners using our bulk buying power to bring you a wider range of dates, locations and prices.
Introducing Claims-based Identity (7 topics)
- Introducing the Identity Metasystem
- Existing Solutions for Managing Identities
- The Benefits of Claims-based Identity
- The Evolution of AD FS
- Use Cases for AD FS
- AD FS and Claims-based Terminology
- Lab: Familiarizing Yourself with the Lab Environment
AD FS Prerequisites (6 topics)
- Windows Prerequisites
- Introducing Directory Services
- Active Directory and Active Directory Lightweight Directory Services
- Web Services, Standards, and Interoperability
- Internet Information Services
- Lab: Installing Windows Prerequisites for AD FS 2.0
Public Key Infrastructure (PKI) (6 topics)
- Introducing the Public Key Infrastructure
- PKI Basics
- Introduction to Cryptography
- PKI Design
- Installing and Configuring Certificate Services
- Lab: Installing and Configuring a Public Key Infrastructure (PKI)
AD FS 2.0 Components (7 topics)
- The Federation Server Role
- Claims Types, Endpoints, and Attribute Stores
- AD FS Security
- The Federation Server Proxy Role
- Administering AD FS
- Windows Identity Foundation
- Lab: Installing AD FS Server
Claims-based Authentication in a Single Organization (7 topics)
- Preparing for AD FS in a Single Organization
- AD FS Within a Single Organization
- Understanding Claims and Claim Types
- Claim Rules and Claim Rule Templates
- Creating Claim Rules from Templates
- Configuring AD FS in a Single Organization
- Lab: Configuring Claims-based Authentication in a Single Organization
Claims-based Authentication in a Business-to-Business Federation (5 topics)
- Deploying AD FS in a Federated Environment
- Configuring a Claims Provider Trust
- Understanding Home Realm Discovery
- Managing Claims Across Organizations
- Lab: Configuring Claims-based Authentication in a Business-to-Business Federation
Advanced AD FS Deployment Scenarios (5 topics)
- Implementing the Federation Server Proxy
- Planning for High Availability
- Additional AD FS Configuration Scenarios
- AD FS 2.0 and SAML Interoperability
- Lab: Advanced AD FS Deployment Scenarios
The AD FS Claims Rule Language (3 topics)
- Reviewing the Claims Pipeline and Claims Engine
- Introducing the Claims Rule Language
- Lab: The AD FS Claims Rule Language
AD FS Troubleshooting (4 topics)
- Configuring Auditing for AD FS
- AD FS Troubleshooting
- Tracing AD FS Traffic
- Lab: AD FS Troubleshooting
Before taking this course, students must have: - Basic understanding of networking. - Intermediate understanding of network operating systems. - An awareness of security best practices. - Basic knowledge of server hardware. - Some experience creating objects in Active Directory. - Foundation course (6424) or equivalent knowledge. - Basic concepts of backup and recovery in a Windows Server Environment