MS50412

Ladda ner som PDF

Implementing Active Directory Federation Services 2.0 - Optimized

This three-day (Informator Optimized) instructor-led course provides students with the knowledge and skills to install and configure Active Directory Federation Services 2.0 (AD FS). 

Målgrupp

This course is intended for Windows IT professionals who want to become Active Directory Federation Services (AD FS) enterprise administrators, and move into the role of designing AD FS environments.

Förkunskaper

Before attending this course, students must have: Basic understanding of networking, Intermediate understanding of network operating systems, An awareness of security best practices, Basic knowledge of server hardware, Some experience creating objects in Active Directory, Foundation course (6424) or equivalent knowledge, Basic concepts of backup and recovery in a Windows Server Environment.

Kursmaterial

Microsoft dMOC

Kursen är optimerad till 3 från 4 dagar

Module 1: Introducing Claims-based Identity

  • Introducing the Identity Metasystem
  • Existing Solutions for Managing Identities
  • The Benefits of Claims-based Identity
  • The Evolution of AD FS
  • Use Cases for AD FS
  • AD FS and Claims-based Terminology

Lab : Familiarizing Yourself with the Lab Environment

  • Accessing Servers Using Hyper-V
  • Accessing Servers Using Remote Desktop

Module 2: AD FS Prerequisites

  • Windows Prerequisites
  • Introducing Directory Services
  • Active Directory and Active Directory Lightweight Directory Services
  • Web Services, Standards, and Interoperability
  • Internet Information Services

Lab : Installing Windows Prerequisites for AD FS 2.0

  • Configuring DNS Forwarders
  • Configure a Sample WIF Application

Module 3: Public Key Infrastructure (PKI) 

  • Introducing the Public Key Infrastructure
  • PKI Basics
  • Introduction to Cryptography
  • PKI Design
  • Installing and Configuring Certificate Services

Lab : Installing and Configuring a Public Key Infrastructure (PKI)

  • Installing and Configuring an Enterprise Root CA in the A. Datum Active Directory
  • Configure an SSL Certificate for the Web Server
  • Import Certificates in the Necessary Locations

Module 4: AD FS 2.0 Components

  • The Federation Server Role
  • Claims Types, Endpoints, and Attribute Stores
  • AD FS Security
  • The Federation Server Proxy Role
  • Administering AD FS
  • Windows Identity... Läs mer

Kursen är optimerad till 3 från 4 dagar

Module 1: Introducing Claims-based Identity

  • Introducing the Identity Metasystem
  • Existing Solutions for Managing Identities
  • The Benefits of Claims-based Identity
  • The Evolution of AD FS
  • Use Cases for AD FS
  • AD FS and Claims-based Terminology

Lab : Familiarizing Yourself with the Lab Environment

  • Accessing Servers Using Hyper-V
  • Accessing Servers Using Remote Desktop

Module 2: AD FS Prerequisites

  • Windows Prerequisites
  • Introducing Directory Services
  • Active Directory and Active Directory Lightweight Directory Services
  • Web Services, Standards, and Interoperability
  • Internet Information Services

Lab : Installing Windows Prerequisites for AD FS 2.0

  • Configuring DNS Forwarders
  • Configure a Sample WIF Application

Module 3: Public Key Infrastructure (PKI) 

  • Introducing the Public Key Infrastructure
  • PKI Basics
  • Introduction to Cryptography
  • PKI Design
  • Installing and Configuring Certificate Services

Lab : Installing and Configuring a Public Key Infrastructure (PKI)

  • Installing and Configuring an Enterprise Root CA in the A. Datum Active Directory
  • Configure an SSL Certificate for the Web Server
  • Import Certificates in the Necessary Locations

Module 4: AD FS 2.0 Components

  • The Federation Server Role
  • Claims Types, Endpoints, and Attribute Stores
  • AD FS Security
  • The Federation Server Proxy Role
  • Administering AD FS
  • Windows Identity Foundation

Lab : Installing AD FS Server

  • Installing AD FS on ADATUM-DC1
  • Installing AD FS on CONTOSO-DC1

Module 5: Claims-based Authentication in a Single Organization

  • Preparing for AD FS in a Single Organization
  • AD FS Within a Single Organization
  • Understanding Claims and Claim Types
  • Claim Rules and Claim Rule Templates
  • Creating Claim Rules from Templates
  • Configuring AD FS in a Single Organization

Lab : Configuring Claims-based Authentication in a Single Organization

  • Prepare CONTOSO-DC1 with Certificates and Claim Rules
  • Configure the Sample WIF SDK Application Using FedUtil.exe
  • Configure a Relying Party Trust to the WIF SDK Sample Application
  • Configuring Claims-aware Access to SharePoint 2010

Module 6: Claims-based Authentication in a Business-to-Business Federation

  • Deploying AD FS in a Federated Environment
  • Configuring a Claims Provider Trust
  • Understanding Home Realm Discovery
  • Managing Claims Across Organizations

Lab : Configuring Claims-based Authentication in a Business-to-Business Federation

  • Configure the WIF Sample Application for B2B Federated WebSSO
  • Configure SharePoint 2010 for Federated WebSSO Access

Module 7: Advanced AD FS Deployment Scenarios

  • Implementing the Federation Server Proxy
  • Planning for High Availability
  • Additional AD FS Configuration Scenarios
  • AD FS 2.0 and SAML Interoperability

Lab : Advanced AD FS Deployment Scenarios

  • Install and Configure the AD FS Proxy
  • Install and Configure an AD LDS Attribute Store

Module 8: The AD FS Claims Rule Language

  • Reviewing the Claims Pipeline and Claims Engine
  • Introducing the Claims Rule Language

Lab : The AD FS Claims Rule Language

  • Create Rules Using the Claim Rule Language
  • Query an AD FS Attribute Store

Module 9: AD FS Troubleshooting

  • Configuring Auditing for AD FS
  • AD FS Troubleshooting
  • Tracing AD FS Traffic

Lab : AD FS Troubleshooting

  • View AD FS Troubleshooting Information
  • View AD FS Web Browser Traffic

Utbildningen levereras i samarbete med

Kurs-ID: MS50412
Längd: 3 dagar
Kan betalas med:
TRAINING CARD SA-VOUCHER

Lämna dina kontaktuppgifter om du önskar en företagsintern utbildning.