Chapter 1. Certification overview
1.3 Recommended educational resources
1.3.1 Courses
This section provides information about the currently available or planned Tivoli Identity Manager V5.0 courses. Refer to the Tivoli software education Web site to find the appropriate courses and education delivery vendor for each geography, available at:
http://www.ibm.com/software/tivoli/education
Note: Course offerings are continuously added and updated. If you do not see courses listed in your geographical location, contact the delivery management team.
General training information is available at:
http://ibm.com/training
You can also refer to the existing Administrator skills roadmap for IBM Tivoli Identity Manager 5.0 and Implementor skills roadmap for IBM Tivoli Identity Manager 5.0 at the following Web site:
ftp://ftp.software.ibm.com/software/tivoli/education/Roadmaps/ITIM_50.pdf
IBM Tivoli Identity Manager V5.0 Introduction
This course introduces the basic concepts of Tivoli Identity Manager 5.0. The students will broaden their knowledge and understanding of Tivoli Identity Manager fundamentals such as value add concepts, provisioning, management of personal information, and workflows. Additionally, students will learn about the components used in Tivoli Identity Manager and the basic architecture of a typical environment.
Course duration
This is a two-hour, self-paced course.
Objectives
After taking this course, you will be able to:
Describe the value proposition of Tivoli Identity Manager V5.0.
Describe policy-based provisioning.
Describe Tivoli Identity Manager functionality, provisioning policies, and workflows to support various types of provisioning scenarios.
Explain how to use Tivoli Identity Manager to grant access.
Describe how to use Tivoli Identity Manager V5.0 to manage personal information, organizations, and people, and how to provision accounts.
Identify the major components of the Tivoli Identity Manager V5.0 system architecture.
Outline
The course follows this outline:
1. Users, Services, and Accounts:
– Introduction to Tivoli Identity Manager
– Identify the types of users in a large environment
– Define services, roles, and accounts as used in Tivoli Identity Manager – Describe how to use Tivoli Identity Manager to manage personal and
organizational information
Chapter 1. Certification overview 29 2. Provisioning:
– Define Tivoli Identity Manager policies and workflows.
– Describe policy-based provisioning.
– Describe how to use Tivoli Identity Manager to provision accounts.
3. Tivoli Identity Manager Architecture:
– Identify the major components of the Tivoli Identity Manager V5.0 system architecture.
– Explain how services receive accounts from Tivoli Identity Manager.
Required skills
Before taking this course, you should possess the following knowledge and skills:
Basic system configuration and management concepts
Database servers
Directory server and LDAP concepts
IT security policy concepts
IBM Tivoli Identity Manager 5.0 Differences and Migration
This course covers differences between the new Tivoli Identity Manager V5.0 product and the last version, Tivoli Identity Manager V4.6. The differences covered in this course are mainly related to the operations that are performed most often by administrators and users, including, but not limited to, creating services, creating provisioning policies, and requesting access. Additionally, new features, such as the self service console, a new auditor role and related reports, access entitlements, and migration from a previous version of Tivoli Identity Manager will be covered.
Course duration
This is a three-day, classroom course.
Objectives
After taking this course, you will be able to:
Identify key new features in Tivoli Identity Manager V5.0
Create and manage access entitlements
Request access using the self service console
Audit request activities
Perform a migration from Tivoli Identity Manager V4.6 to Tivoli Identity Manager V5.0
Outline
The course follows this outline:
Key New Features
Identity Feeds
Adapters and Services
Policies
Workflow Enhancements
Access Entitlements
Self Service
Auditing and Reporting
Migration Required skills
The following skills are required for this course:
IBM WebSphere
DB2
IBM Tivoli Directory Server
IBM Tivoli Directory Integrator
IBM Tivoli Identity Manager
Linux® system administration
IBM Tivoli Identity Manager V5.0 Basic Implementation
This course covers basic implementation of Tivoli Identity Manager 5.0. You will install and configure a typical Tivoli Identity Manager 5 deployment on Linux. This five-day course includes intensive hands-on exercises in addition to the lecture.
Course duration
This is a five-day, classroom course.
Objectives
After taking this course, you will be able to:
Describe the process of creating a needs-assessment document for Tivoli Identity Manager
Describe the value proposition of Tivoli Identity Manager 5.0
Identify the major components of the Tivoli Identity Manager 5.0 system architecture
Install Tivoli Identity Manager 5.0 and prerequisite middleware and any required fixpacks on Linux
Configure organizational units, locations, and administrative domains
Navigate through LDAP directory data
Chapter 1. Certification overview 31
Create static and dynamic organizational roles
Create multiple identity feeds
Create services
Create identity, password, and service selection policies
Configure scheduled and manual reconciliations
Manually request, modify, suspend, restore and delete accounts
Describe workflow elements and create basic workflows
Describe Notifications and use the Notification Post Office
Create groups, views and Access Control Items (ACIs)
Create and manage entitlements
Create provisioning policies and set join directives
Correct noncompliant accounts and adopt orphaned accounts
Manage account request activities
Describe and configure life cycle management
Use the forms customization applet
Configure service forms, password settings and synchronization
Customize the Administration and Self Service Consoles
Generate reports and design custom reports
Audit request activities
Describe methods of problem determination Outline
The course follows this outline:
Introduction
Planning
Installation
Organization Management
User Management and Identity Feeds
Access Control
Services and Policies
Provisioning
Entitlement Workflows
Life Cycle Management
Auditing and Reporting
Customization
Problem Determination Required skills
The following skills are required for this course:
Familiarity with LDAP and TCP/IP fundamentals
Familiarity with JavaScript
Basic administrative skills for:
– Linux
– IBM Tivoli Directory Server
– IBM WebSphere Application Server
IBM Tivoli Identity Manager V5.0 System Administration
The Tivoli Identity Manager V5.0 System Administration course is catered to Tivoli Identity Manager system administrators. Materials covered includes:
system architecture, creating services, creating policies, performing
reconciliations, and loading data. This course is comprised of lecture and labs.
Course duration
This is a three-day, classroom course.
Objectives
After taking this course, you will be able to:
Ensure the health of the Tivoli Identity Manager implementation and middleware
Apply fixes to Tivoli Identity Manager and middleware
Upgrade Tivoli Identity Manager components Outline
The course follows this outline:
Maintaining System Health – Set memory settings (Lab)
– Monitor connectivity to database and LDAP (Lab)
– Monitor disk space of application servers and repositories (Lab) – Track logs and log sizes (Lab)
– Monitor error logs for problems (Lab) – Manage LDAP recycle bin (Lab)
Chapter 1. Certification overview 33 – Monitor cluster members (Lab)
– Schedule system backups
– Configure logging levels, options and file sizes (Lab) – Set messaging - timeout values (Lab)
– Set disk usage limits (Lab) – Set thread count
– Configure recycle bin age limit (Lab)
Problem Determination and management – Gather log files (Lab)
• Review Tivoli Identity Manager log files
• Review middleware logs (DB2, IDS, WebSphere Application Server) – Determine problem category (Lab)
– Increase logging level for appropriate category (Lab) – Reproduce problem if possible
– Take appropriate action
– Given a non-working configuration and access to relevant logs and files, identify the source of problems (Lab)
– Given a problematic data management scenario, identify the source of problems (Lab)
– Given adapter related problems, troubleshoot to identify the source of the problem and resolve if possible (Lab)
Upgrading and Applying System Fixes
– Planning the fix cycle - Production to Test to Production – Moving from Test to Production
• Install upgrade on production server
• Promote Tivoli Identity Manager configuration data to production using appropriate tools
• Promote customizations from test to production using appropriate tools
• Modify services to match production adapters
• Reconcile production adapters
• Test the production system
– Applying Changes to Test Environment
• Request backup of all Tivoli Identity Manager components
• Request backup of all system components
• Create Test environment
• Install upgrade on Test environment (Lab)
• Validate “Test” upgrade environment
Required skills
The following skills are required for this course:
Basic operating-system administrative skills for UNIX® and Windows®
LDAP experience
TCP/IP fundamentals
Firewall concepts
Working knowledge of web protocols (HTTP, XML)
Experience in reading, interpreting, and creating regular expressions
Experience in modifying system parameters
JavaScript writing and reading