Basic Information
- New training based on midPoint 4.9
- Subscribers gain free access to this self-paced training
- Place: Evolveum Learning Portal
- Estimated Delivery Time: 16h
- 6 modules
- Certificate of Completion
Description
Join our pre-recorded course, a continuation of the First Steps training, where you will extend your knowledge from managing users and their accounts to roles and groups. The main part of the course is dedicated to the migration of the existing group management to midPoint. The course includes recordings, hands-on labs, quizzes, and a certificate awarded upon successful completion.
Target Audience
This training is useful for IT administrators, system engineers, identity architects, and deployment partners at all seniority levels who have successfully passed First Steps training.
Trainer
This training is hosted by our Expert Identity Engineer, Ivan Noris.
Prerequisites
You need to complete the MidPoint Deployment: First Steps Training as a prerequisite. No additional midPoint knowledge is required. The course is based on Evolveum’s Group Synchronization Methodology.
Skills Gained
Upon completion of this course, you should be able to:
- Increase your knowledge of user/account management with groups/roles
- Learn new deployment methodology
- Learn selected new features of midPoint 4.9
- Import and manage groups and group memberships as midPoint roles
- Configure resources for group synchronization and role assignments
- Migrate group management to midPoint using phased strategies
- Automate group creation, role assignments, and the detection of unauthorized changes
- Understand application roles, business roles, and basic principles of role engineering
Course Content
This course progresses through 6 modules:
Module 1: Reviewing the Environment
In this module, we will review the environment in which we are about to continue the midPoint deployment. We will define the main goals of the training and introduce the Group Synchronization Methodology.
Objectives:
- Review the environment after the First Steps training
- Define the main goals of group synchronization
- Introduce the Group Synchronization Methodology
Module 2: Importing Groups
In this module, we will import groups from the AD resource as midPoint roles. We will exclude legacy groups from migration at this time. We will also describe the main concepts of entitlements used during group management migration.
Objectives:
- Configure the AD resource for group import
- Import the AD groups
- Configure the AD resource for the AD application group import
- Import the AD application groups
Module 3: Importing Group Membership
In this module, we will import group membership as midPoint role assignments. We will also describe the main concepts of associations used during group management migration.
Objectives:
- Configure the AD resource for the group membership import
- Import the AD group membership as role assignments
- Configure the AD resource for the AD application group membership import
- Import the AD application as role assignments
- Add object collection views for new roles
Module 4: Migrating Group Management to MidPoint
In this module, we will introduce strategies for entitlement and association migration to midPoint. We will add outbound provisioning configuration for groups and group membership and start the group management migration.
Objectives:
- Configure the AD resource for the AD group / application group provisioning
- Configure the AD resource for the AD group / application group membership provisioning
- Use different strategies to migrate the management of AD groups / application groups to midPoint
Module 5: Automating Group Integration
In this module, we will start creating new groups using midPoint even before the migration has been completed. We will also finish legacy group migration and detect unauthorized group creation and deletion after migration. We will start using roles in an archetype for birthrights.
Objectives:
- Create and use roles for the new AD groups / application groups
- Finish the AD group management migration
- Detect unauthorized group creation and deletion after migration
- Use the archetype for automating role assignment
Module 6: Managing Roles
In this module, we will introduce role engineering and maintenance.
Objectives:
- Understand the concept of applications and application roles
- Understand role decommissioning
- Understand the concept of business roles and the migration of application roles to business roles
- Understand basic role-related reporting
Price for the self-paced First Steps Training Course
- Price: 700 EUR / person excluding VAT
- Price: USD 800/ person excluding taxes
- Before signing up for the training course, we recommend reading our Terms and Conditions.
- After you sign up for the training, follow the instructions to access the Learning Portal.
Discounts for the Self-Paced Training Course
| Discount | |
|---|---|
| Subscriber* | Free of Charge |
| Academia &NGO | 20% |
*The self-paced MidPoint Deployment: Group Synchronization Training can be accessed for free by all active subscribers. Follow these instructions or contact sales@evolveum.com for more information.
How to become a subscriber?
For information about becoming a subscriber, please visit https://evolveum.com/services/subscribing-to-support/ or contact sales@evolveum.com.