WA1392 WebSphere Portal v5.1 Security Training and Courseware

This training course introduces the students to the security features of WebSphere Portal Server v5. During the course, students get introduced to the architecture of WebSphere Portal Server and understand the portal server security model and integration with external security tools. The course also lists the common security vulnerabilities covers some best practices for reducing those vulnerabilities.

Basic objectives of the course are as follows:

• Understand the various WebSphere Portal Components
• Describe Portal Server and Portal Engine Architecture
• Understand the relationship between WAS and WPS
• Understand the various types of security and security policies.
• Describe the various types of Defense mechanism such as authentication, authorization, delegation, firewalls and encryption
• Describe a Portal Document Manager
• Learn to configure a PDM portlet
• Learn to assign users and groups to various roles in portal server
• Understand the process of approval workflow
• Understand the various configuration utilities that come with portal server.
• Describe the process involved in moving the portal server database (Cloudscape) to DB2 or Oracle.
• Explain the process of enabling security with Member Manager Database
• Enable security with LDAP
• Understand the structure and components of Credential Vault
• Learn to perform Vault Administration
• Understand the need for External Authentication
• Understand the features of Tivoli Access Manager (TAM)
• Describe the security policy in TAM
• Explain the concept of Trust Association Interceptor (TAI) in WebSphere Application Server and it's role in integrating with third party security tools
• List top 10 Internet Security Vulnerabilities for Windows and UNIX
• Understand the Best Practices for Reducing Vulnerabilities
• List the points for Risk Control Checklist and understand Best Practices
• Prepare a Security Checklist for security both software and network systems

• WPS Introduction
• Security Concepts
• WP Roles and Authorization
• WP Security - Authentication
• Document Manager
• Configuration Management
• Implementing Portal Security
• TAM Implementation with WPS V5
• Risks and Controls in Web and distributed systems

• Protect pages and portlets based on user role.
• Configure WebSphere Portal Server v5.1 to use a LDAP user registry.
• Migrate portal server to use DB2 or Oracle as data storage.
• Use an external security manager such as Tivoli Access Manager (TAM).