WebSphere Application Server 8.5.5.x - Advanced Security

PT10150
Summary
The WebSphere Application Server 8.5.5.x - Advanced Security Concepts course provides the student with a detailed example-based guide which takes the student through how to configure Global Security for a Standalone Repository for the express purpose of connecting WAS to Microsoft AD, and enabling Full Single Sign on. This course covers how to set up Windows 2012 Server as a Primary Domain Controller and enabled a Windows 8.1 workstation as part of the full-enabling and testing of a fully functioning SSO solution. Included in this course are Jython and shell scripts and even a Java Web Application that is used to prove that SSO is indeed working as intended.
Prerequisites
Basic knowledge of Linux/Windows commands is expected. Prior experience in administering WebSphere Application Server version 6.1-8.x servers is expected, as is basic shell-scripting and Jython understanding, and a good knowledge of Microsoft Windows Server concepts.
Duration
3 Days/Lecture & Lab
Audience
This course is designed for:Experienced JEE Developers and Administrators having good experience with WebSphere Application Servers.People looking to upgrade their skills as a WebSphere Application Server administrator, and understand how configure Kerberos security for WAS environments where Microsoft AD is used for Single Sign On.
Topics
  • Benefits of Using Kerberos
  • Glossary of Terms
  • How Kerberos Works
  • Setting Up Kerberos Using Microsoft Active Directory
  • Microsoft Kerberos KDC
  • Creating a Domain Name System (DNS) Server
  • Promoting the Win2012 Server to Become a Domain Controller
  • Creating a DNS Server
  • The Microsoft Kerberos KDC
  • Installing the KDC (Key Distribution Service)
  • Creating a Kerberos Service Principal Name
  • Creating a Keytab File
  • Configuring Single Sign on WAS Using SPNEGO
  • Overview of the Scenario
  • SPNEGO and Windows SSO Scenario Steps
  • Joining the Workstation to the Domain
  • Configuring the Crypto System for an AD User
  • Configuring WAS and Preparing AD as a User Registry
  • LDAP Settings
  • Configuring the SPNEGO Web Authentication in WAS
  • Creating a Server to which We Will Deploy an Application
  • Enabling Application Security
  • Creating a Virtual Host Definition
  • Deploying the Application
  • Testing the Application
  • Enabling Windows Authentication in Internet Explorer (IE)
  • Using Other Browsers
  • Using Kerbtray.Exe
  • Troubleshooting Keytab Files

Related Scheduled Courses