Forgerock Identity Management (IDM)

In this lab participants learn how to install and deploy ForgeRock Identity Management (IDM) in an on-prem or self-managed cloud environment to manage the lifecycle and relationship of digital identities. Topics include how to model identity objects in IDM, create connector configurations and synchronization mappings (sync mappings) to manage the flow identity objects and properties with various external identity resources, manage workflows, and deploy IDM within a cluster. This lab explores the identity management-related features in depth, how they work, and the configuration options available during implementation.

 

Course modules:

Module-1: Installing IDM

• Install and start IDM
• Start IDM with a sample configuration
• Configure IDM to run as a background process

Module-2: Modeling an Identity Profile

• Access and explore the IDM deployment and UIs
• Map an identity object to a managed object
• Model a managed user object in IDM
• Create a new device managed object

Module-3: Querying IDM Objects

• Configure Postman to query IDM
• Query IDM objects using Postman

Module-4: Managing Relationships

• Create and query an object relationship
• Create a dashboard to visualize relationships
• Create a new relationship between managed user objects
• Set up a relationship between device managed objects and user managed objects

Module-5: Managing Organizations

• Implement the organization example

Module-6: Connecting to External Resources Using Connectors

• Add a connector configuration for an external LDAP resource
• Add a connector configuration to import device identities

Module-7: Configuring Connectors Over REST

• Generate a full connector configuration JSON object over REST
• Configure the Database Table Connector
• Create a scripted SQL connector configuration

Module-8: Managing Synchronization and Reconciliation

• Add a sync mapping from IDM to an LDAP server
• Add a sync mapping from an LDAP server to IDs
• Create a sync mapping to provision devices to the IDM repository

Module-9: Running Selective Synchronization and LiveSync

• Run selective synchronization using filters
• Trigger LiveSync on a connector
• Schedule LiveSync with an external resource

Module-10: Configuring Role-Based Provisioning

• Query the role assignment properties using the REST interface
• Provision attributes to a target resource based on static role assignments
• Provision attributes to a target resource based on dynamic role assignments
• Add temporal constraints to a role

Module-11: Deploying and Starting a Workflow

• Configure a sample: Contractor Onboarding
• Run the sample
• Enable the workflow service in IDM and examine a sample workflow

Module-12: Deploying and Creating a Workflow

• Examine the Flowable UI
• Examine Contractor Onboarding workflow
• Examine a Manual Interaction Form
• Create and Deploy a Simple Workflow Using Flowable UI
• Create and deploy a new workflow from scratch

Module-13: Monitoring and Troubleshooting

• Set up monitoring in IDM
• Examine the different log files in IDM

Module-14: Implementing Explicit Mapping

• Implement generic mappings with a JDBC repository
• Implement explicit mappings with a JDBC repository
• Implement explicit mappings with a DS repository

Module-15: Deploying IDM in a Cluster

• Add an IDM instance to a cluster
• Enable clustered reconciliation on a sync mapping
• Schedule tasks across the cluster

Module-16: Delegating Administration

• Add a new internal role and set up privileges to delegate administration
• Upgrade a stand-alone IDM instance