Course 6426AL:

Configuring Identity and Access Solutions with Windows Server 2008 Active Directory

Length:3 Days
Published:October 03, 2008
Language(s):English, Spanish
Audience(s):IT Professionals
Level:300
Technology:Windows Server 2008
Type:Course
Delivery Method:Instructor-led (online)
About this Course
This distance learning course consists of four weeks of instructor-led training, broken out into eight 2-hour online live sessions. It is intended to be used with additional self-paced eLearning content, scenario-based labs and assessments. This course provides the knowledge and skills that IT professionals need to configure identity and access solutions with Windows Server 2008 Active Directory.
Audience ProfileThe audience for this course is IT Professionals interested in learning how to implement IDA solutions in an enterprise environment. Most students will be IT professionals who are responsible for integrating applications and platforms with enterprise directory and security services while increasing access to a growing number of customers and partners.
At Course Completion
After completing this course, students will be able to:
  • Describe identity and access solutions.
  • Configure Active Directory Certificate Services.
  • Deploy and manage certificates.
  • Configure Active Directory Lightweight Directory Services.
  • Configure Active Directory Federation Services.
  • Configure Active Directory Rights Management Services.
  • Maintain access management solutions.
  • Troubleshoot identity and access solutions.
Course OutlineModule 1: Exploring IDA Management SolutionsThis module introduces IDA management solutions that you can use to centralize the management of user identities and access permissions.Lessons
  • Overview of IDA Management
  • Active Directory Server Roles in IDA Management
  • Overview of ILM 2007
After completing this module, students will be able to:
  • Describe the IDA management solutions.
  • Describe how Active Directory server roles provide an IDA management solution.
  • Describe how ILM can be integrated with an IDA management solution.
Module 2: Configuring Active Directory Certificate ServicesThis module introduces AD CS components, such as PKI and certification authorities.Lessons
  • Overview of PKI
  • Deploying a CA Hierarchy
  • Installing AD CS
  • Managing a CA
Lab : Configuring AD CS
  • Installing the AD CS Server Role
  • Issuing and Installing a Subordinate Certificate
  • Publishing the CRL
After completing this module, students will be able to:
  • Explain PKI.
  • Describe the CA hierarchy models.
  • Describe the considerations for installing AD CS.
  • Describe the methods for managing a CA.
Module 3: Deploying and Managing CertificatesThis module discusses ways to manage certificates. This module also explains how to use certificate templates and how to secure public and private keys.Lessons
  • Deploying Certificates by Using AD CS
  • Revoking Certificates
  • Configuring Certificate Templates
  • Configuring Certificate Recovery
Lab : Deploying and Managing Certificates
  • Configuring AD CS Web Enrollment
  • Configuring Certificate Autoenrollment
  • Configuring AD CS Certificate Revocation
  • Configuring AD CS Certificate Templates
  • Managing Key Archival and Recovery
After completing this module, students will be able to:
  • Identify the methods for deploying certificates by using AD CS.
  • Explain the reasons for revoking a certificate.
  • Describe how to update, modify, and enable certificate templates.
  • Identify the essential aspects of key archival and recovery.
Module 4: Configuring Active Directory Lightweight Directory ServicesThis module describes the configuration of AD LDS and explains the process to configure AD LDS components. This module also discusses AD LDS replication and integration of AD LDS with AD DS.Lessons
  • Installing and Configuring AD LDS
  • Configuring AD LDS Instances
  • Configuring AD LDS Replication
  • Configuring AD LDS Integration with AD DS
Lab : Configuring AD LDS
  • Configuring an AD LDS instance and an application partition
  • Configuring AD LDS Access Control
  • Configuring AD LDS Replication
  • Configuring AD DS and AD LDS synchronization
After completing this module, students will be able to:
  • Describe the installation and configuration of AD LDS.
  • Describe the process to configure AD LDS components.
  • Explain the configuration of AD LDS replication topology.
  • Explain the process to integrate AD LDS with AD DS.
Module 5: Configuring Active Directory Federation ServicesThis module discusses ways to configure, deploy and use AD FS.Lessons
  • Overview of AD FS
  • AD FS Deployment Scenarios
  • Deploying AD FS
  • Implementing AD FS Claims
Lab : Configuring AD FS for Federated Web SSO by Using Forest Trust Scenario
  • Installing the AD FS Server Role
  • Configuring Certificate Requirements
  • Configuring the AD FS Web Agent
  • Configuring the Web Server application on 6426A-CHI-DC1
  • Configuring the Forest Trust and the Federated Trust Policies
  • Configuring the Federation Service Within the Internal Network
  • Configuring the Federation Service Within the Extranet
  • Testing the AD FS Implementation
Lab : Configuring Active Directory Federation Services by Using Federated Web SSO Scenario
  • Installing the AD FS Server Role
  • Configuring Certificate Requirements
  • Configuring the AD FS Web Agent
  • Configuring the Web Server application on the 6426A-CHI-DC1 virtual computer
  • Configuring the Federation Trust Policies
  • Configuring the Account Partner Federation Service
  • Configuring the Resource Partner Federation Service
  • Testing the AD FS implementation
After completing this module, students will be able to:
  • Describe the functioning of AD FS.
  • Explain the deployment of AD FS.
  • Describe the hardware and software prerequisites for using AD FS.
  • Explain the process to map AD FS claims.
Module 6: Configuring Active Directory Rights Management Services
This module introduces AD RMS and its key aspects. This module also describes how to administer AD RMS and deploy trust policies.
Lessons
  • Overview of AD RMS
  • Installing and Configuring AD RMS Server Components
  • Administering AD RMS
  • Implementing AD RMS Trust Policies
Lab : Configuring AD RMS
  • Installing the AD RMS Server Role
  • Managing AD RMS rights policy templates
  • Configuring Trust Policies
  • Testing AD RMS functionality
After completing this module, students will be able to:
  • Identify the key aspects of AD RMS.
  • Explain the process to install and configure AD RMS.
  • Explain AD RMS administration by configuring rights policy templates.
  • Describe the methods to deploy AD RMS trust policies.
Module 7: Maintaining Access Management SolutionsThis module discusses ways to maintain, backup and restore  AD CS, AD LDS, and AD FS. This module also discusses ways to maintain and remove AD RMS.Lessons
  • Maintaining AD CS
  • Maintaining AD LDS
  • Maintaining and Monitoring AD FS
  • Maintaining AD RMS
Lab : Maintaining Access Management Solutions
  • Configuring CA Event Logging
  • Implementing role-based administration in AD CS
  • Backing up a CA
  • Reconfiguring AD RMS cluster settings
  • Generating AD RMS Reports
  • Configuring AD RMS logging
After completing this module, students will be able to:
  • Describe the methods to monitor, back up, and restore AD CS.
  • Explain the methods to monitor, back up, and restore AD LDS.
  • Describe the ways to monitor and back up AD FS.
  • Describe the ways to monitor, use, and remove AD RMS.
Module 8: Troubleshooting IDA Solutions
This module introduces various IDA implementation issues and ways to resolve them. This module discusses ways to troubleshoot issues with AD CS, AD LDS, AD FS, and AD RMS.
Lessons
  • Troubleshooting AD CS
  • Troubleshooting AD LDS
  • Resolving AD FS Issues
  • Resolving AD RMS Issues
After completing this module, students will be able to:
  • Describe the ways to troubleshoot AD CS.
  • Describe the ways to troubleshoot AD LDS.
  • Describe the ways to resolve issues with AD FS.
  • Describe the ways to resolve issues with AD RMS.
Before attending this course, students must have:
  • Technical knowledge equivalent to the course 6424: Fundamentals of Windows Server 2008 Active Directory.
  • Technical background knowledge and hands-on experience of Active Directory Domain Services (AD DS from the AD TS foundation exam). This includes technical knowledge equivalent to the course 6425: Configuring and Troubleshooting Windows Server 2008 Active Directory Domain Services.
Have Questions? For advice about training and certification, connect with peers: For questions about a specific certification, chat with a Microsoft Certified Professional (MCP): To find out about recommended blogs, Web sites, and upcoming Live Meetings on popular topics, visit our community site:
Course index

Find Training Near You

Location:
Eg: Seattle, WA or Paris, France

Related Services