Loading Course Schedule...
PT10150
Training Summary
The WebSphere Application Server 8.5.5.x - Advanced Security Concepts course provides the student with a detailed example-based guide which takes the student through how to configure Global Security for a Standalone Repository for the express purpose of connecting WAS to Microsoft AD, and enabling Full Single Sign on. This course covers how to set up Windows 2012 Server as a Primary Domain Controller and enabled a Windows 8.1 workstation as part of the full-enabling and testing of a fully functioning SSO solution. Included in this course are Jython and shell scripts and even a Java Web Application that is used to prove that SSO is indeed working as intended.
Prerequisites
Basic knowledge of Linux/Windows commands is expected. Prior experience in administering WebSphere Application Server version 6.1-8.x servers is expected, as is basic shell-scripting and Jython understanding, and a good knowledge of Microsoft Windows Server concepts.
Duration
3 Days/Lecture & Lab
Audience
This course is designed for:Experienced JEE Developers and Administrators having good experience with WebSphere Application Servers.People looking to upgrade their skills as a WebSphere Application Server administrator, and understand how configure Kerberos security for WAS environments where Microsoft AD is used for Single Sign On.
Course Topics
- Benefits of Using Kerberos
- Glossary of Terms
- How Kerberos Works
- Setting Up Kerberos Using Microsoft Active Directory
- Microsoft Kerberos KDC
- Creating a Domain Name System (DNS) Server
- Promoting the Win2012 Server to Become a Domain Controller
- Creating a DNS Server
- The Microsoft Kerberos KDC
- Installing the KDC (Key Distribution Service)
- Creating a Kerberos Service Principal Name
- Creating a Keytab File
- Configuring Single Sign on WAS Using SPNEGO
- Overview of the Scenario
- SPNEGO and Windows SSO Scenario Steps
- Joining the Workstation to the Domain
- Configuring the Crypto System for an AD User
- Configuring WAS and Preparing AD as a User Registry
- LDAP Settings
- Configuring the SPNEGO Web Authentication in WAS
- Creating a Server to which We Will Deploy an Application
- Enabling Application Security
- Creating a Virtual Host Definition
- Deploying the Application
- Testing the Application
- Enabling Windows Authentication in Internet Explorer (IE)
- Using Other Browsers
- Using Kerbtray.Exe
- Troubleshooting Keytab Files