Microsoft 50382 Training
Implementing Forefront Identity Manager 2010 (GK Premier)
- Course Availability
Implementing Forefront Identity Manager 2010 M50382
Course Title: Implementing Forefront Identity Manager 2010
Course Code: M50382
Version: A
Level: 200
Duration: 4 Days
Course Overview
The Implementing Forefront Identity Manager 2010 M50382 instructor-led training course has been designed to introduced and explain the features and capabilities of Microsoft Forefront Identity Manager 2010 (FIM), and provide an overview of the solution scenarios that FIM addresses. The course includes presentations, discussions, demonstrations, and many hands-on exercises. This course is intended for candidates who have no previous Forefront Identity Manager 2010 or Microsoft Identity Lifecycle Manager 2007 (ILM) experience.Target Audience
Candidates who should consider attending the M50382 Microsoft training course are Systems Engineers, Developers, Architects, and Project Leaders who need to gain a good understanding of how Forefront Identity Manager 2010 can be applied to manage identity information across a number of directories or databases. The course is equally suitable for those who simply want to review the technology in some depth.Course Objectives
On successfully completing the M50382 course candidates will be able to:- Understand FIM concepts and components
- Identify appropriate FIM scenarios
- Manage users, groups, and passwords using FIM
- Synchronise identity data across systems, such as Active Directory and HR
- Understand the issues involved in loading data (initial load, backup, and disaster recovery)
- Configure security for different levels of user
- Manage password self-service reset and synchronisation
- Automate run cycles
- Handle sets, simple workflows, and management policy rules (MPRs)
Course Prerequisites
Candidates attending the M6234 Microsoft training course should have a sound understanding of the purpose and some experience of the workings of: Active Directory, Microsoft Exchange Server and Microsoft SQL Server.Testing and Certification
There are currently no exams or Microsoft Certification directly associated to this course however this course may assist in preparing candidates for other exams that are closely associated with this technology.Course Content
Module 1: Introducing Forefront Identity Manager 2010In this module candidates will about the many built-in features of FIM focusing on the user experience. Candidate will explore the FIM interface, the high level architecture of FIM, and the business needs that FIM addresses and examine FIM in its installed and configured state, whereas the rest of the course will be spent understanding how FIM works, and building the fully configured FIM from a raw installation. The lab explores creating a new user, managing groups and credentials for that user, and the experience of that new user.
Lessons:
- Introducing FIM
- Synchronisation Concepts
- Other FIM Concepts
- Log on and examine the environment
- Add some new users and examine group memberships
- Examine how groups are managed
- The user experience
- Understand what an identity management system is for, and how FIM meets these requirements
- Operate FIM as a user, while understanding the high level functionality
Module 2: The Synchronisation Service Manager
In this module candidates will learn about the FIM Synchronisation Service Manager and explains its features through scenarios that do not use the FIM Portal. The module introduces the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic configuration of a Management Agent along with run profiles, results verification, and simple Metaverse search. Candidates will then create a new Management Agent for a simple HR system in the lab.
Lessons:
- The Synchronisation Service
- The Synchronisation Service Manager: The Management Agents Tool
- Synchronisation Service Manager: Other Tools
- Connect to an HR data source and import identity data
- Examine the metaverse
- Importing changes
- Understand the purpose, architecture, and functionality of the Synchronisation Service
- Understand the purpose of the Synchronisation Service Manager
- Create a simple SQL Server management agent, import identity data, and manage it
Module 3: More About Synchronisation
In this module candidates will learn about the various types of Management Agent (MA), including LDAP and file-based sources. The module covers concepts such as schema discovery, filters, join and projection rules, connectors and disconnectors, joining, provisioning, deprovisioning, and different kinds of attribute flow. Candidates then create two more Management Agents in the lab, and establish a simple data-driven scenario for managing a directory (AD LDS).
Lessons:
- Inbound Synchronisation
- Outbound Synchronisation
- Creating and configuring the MA
- Importing, synchronising, and joining data
- Breadcrumbing and testing
- Creating an AD LDS MA
- Provisioning AD LDS
- Understand the Synchronisation Service at a more detailed level
- Configure inbound and outbound synchronisation for different types of MA
- Apply "classic" rules to simple identity synchronisation requirements
Module 4: The FIM Service and Portal
In this module candidates will learn about the FIM Synchronisation Service Manager and its features through scenarios that do not use the FIM Portal. The module introduce the main tools (such as Metaverse Designer, Operations Tool, and Joiner), and covers the basic configuration of a Management Agent along with run profiles, verifying results, and simple Metaverse search. Candidates then create a new Management Agent in the labs for a simple HR system.
Lessons:
- Introducing the Portal
- Integrating the FIM Service and FIM Synchronisation Service
- Examining simple sets and MPRs
- Create and modify a user
- Create the FIM MA
- Synchronising data
- Understand the key FIM service concepts such as sets, workflows, and management policy rules
- Navigate the FIM Service Portal, and use the portal`s permission-granting system
- Edit identity data in the FIM Portal
- Integrate the FIM Service and the FIM Synchronisation Service
Module 5: Managing Synchronisation from the Portal
In this module candidates will learn about the creation of an Active Directory MA, and configuration via the portal to manage mailbox-enabled users in AD. Aspects of this process include synchronisation rules, workflows, and management policy rules, including complex attribute flows. Candidates then configure FIM in the labs so that users are automatically created (provisioned) into AD, renamed, and removed (deprovisioned) as necessary.
Lessons:
- Synchronisation Rules
- Outbound Synchronisation Rules
- Managing Users in Active Directory
- More About Synchronisation Rules
- Using a synchronisation rule to manage the HR data MA
- Provision users in Active Directory
- Configure automatic OU provisioning and population based on DN
- Understand inbound and outbound synchronisation rules and how these relate to "classic" rules
- Create and configure synchronisation rules to manage identity data, including Active Directory (AD) Users
- Control AD users including enable/disable and DN renames
Module 6: Managing Credentials with FIM
In this module candidates will learn about passwords. The module first addresses the essentials of Certificate Management, and then thoroughly explores the self-service password reset and password synchronisation functions. The two labs cover all aspects of password management in FIM (with the exception of writing custom password management workflows and extensions).
Lessons:
- FIM Password Management
- Password Self-service Reset
- Synchronising Passwords - PCNS
- FIM Certificate Management
- Verify and modify the environment
- Modify the configuration for password registration and reset
- Testing password registration and reset
- Configuring password reset lockout
- Configuring PCNS
- Configure self-service password reset (and lockout) for chosen FIM Portal users
- Configure password synchronisation across systems
- Identify where the use of Certificate Management might be appropriate
Module 7: Group Management
In this module candidates will learn about the management of distribution and security groups, including the relationship between groups in Active Directory and other systems. Synchronisation rules, workflows, and MPRs are explored further, along with the configuration of workflow approvals.
Lessons:
- Groups and the Portal
- Managing Groups in Active Directory
- Distribution groups
- Provisioning distribution groups in Active Directory
- Security groups
- Provisioning security groups in Active Directory
- Manage various types of groups in the FIM Portal, including self-service and member approval workflows
- Configure FIM so that portal groups manage the corresponding AD groups
Module 8: Other Considerations
In this module candidates will learn about management policy rules (MPRs)-perhaps the most important feature of FIM. The module explores the different types of management policy rules, their different uses, how they are processed, and how to troubleshoot them. It then examines some operational considerations, such as the management of run cycles using scripts, and also covers backup, restore, and disaster recovery.
Lessons:
- Managing MPRs
- Operations
- Configuring portal permissions
- Examine the requests concerning group membership changes
- Perform a data reload
- Backup
- Restore
- Running MA run profiles with scripts
- Finishing touches
- Understand the various types of MPR, why they are used, and where they are used
- Understand the nature of requests, and how requests can be managed and tracked
- Configure a system for a regular cycle of Management Agent runs
- Deal with simple backup and recovery scenarios
This Website is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc. CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, Cisco IOS, Cisco Systems, the Cisco Systems logo, and Networking Academy are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks mentioned in this web site are the property of their respective owners.
