Mail : training@ecorptrainings.com
India : +91-8143-111-555
USA : +1-703-445-4802
Whats app : +91-8143-110-555
Facebook Twitter Google Plus Pinit Stumbleupon Youtube Blog

Workday HCM Demo New Batches Starting from Tuesday... 01-11-2016
Search Course Here




Live Chat
Support


Hitachi ID Privileged Access Manager



overview


Hitachi ID Privileged Access Manager is a system for securing access to privileged accounts.

prerequisties

  • None

Duration

Online
  • It is a 16 days program and extends up to 2hrs each.
  • The format is 40% theory, 60% Hands-on.

Corporate
  • It is a 4 days program and extends up to 8hrs each.
  • The format is 40% theory, 60% Hands-on.
Classroom
    Private Classroom arranged on request and minimum attendies for batch is 4.

course content

  • Introduction
  • Install the software
    • Install replica
  • Targets and auto-discovery
    • AD target (source of profiles)
    • AD target (source of computers)
    • Configure the system to omit disabled accounts (for login)
    • Configure the system to "manage" all AD groups (for ACLs)
    • Run and troubleshoot psupdate
    • Log viewer
  • Manual targets and intro to policies
    • Configure a manual WinNT target
    • Configure a manual Linux target
    • Configure a simple MSP for these two targets
      • password policy and randomization schedule
      • account names to include
      • plug-ins to support (cmd-line/putty + RDP)
      • checkout limits
    • Configure a simple User Class for a few users
    • Link the MSP to the User Class to get ACLs
    • Run psupdate to get passwords randomized
    • Show logs and reports that illustrate what happened
  • Basic user experience
    • Sign into the UI with AD creds
    • Checkout access
    • Checkout launch RDP to one system
    • Checkout launch SSH to one system
    • Run reports to show that this activity was captured
  • Infrastructure auto-discovery and import rules
    • Introduce a bunch of fake computers on AD
    • Introduce the simulator for WinNT targets
    • Show the 'discovered systems' and 'system attributes' data that gets loaded into PAM
    • Define some import rules
    • Run through and troubleshoot discovery/import/management
    • Use the simulator to introduce daily evolution of the infrastructure
    • Show that the system responds during PSUPDATE with appropriate discovery and management/unmanagement
    • Discuss "unmanage" rules -- e.g., for systems that have been offline for too long.
  • Ongoing support and maintenance
    • Show the HiPAM dashboard
    • Implement exit traps for various types of failures
      • replication problems
      • psupdate problems
      • failed authentication and authorization
    • Show and use reports:
      • who checked out what?
      • who got rejected?
      • who is busy vis-a-vis the system?
  • Introduce pull mode
    • Motivation
      • laptops
      • mobility, NAT, firewalls, powerdown, etc.
      • scalability
    • Configure and deploy MSI to a WinXP and a Win7 client
  • Workflow for one-off requests
    • Discuss scenarios: where/when to use workflow
    • Request attributes and attribute validation
    • Selecting authorizers (focus on userclass, not plug-ins)
    • Consensus (N of M) and veto power
    • Automatic reminder e-mails
    • Automatic escalation after non-response
    • Early escalation (e.g., if authorizer is out of office)
    • Reports and dashboards: what's going on in the workflow engine?
    • The roles of workflow and delegation managers
  • Service accounts on Windows
    • Intro to the Windows security model (why do we have to manage these darned things?)
    • Cases where service accounts are already managed by Windows (IIS, SCM in some cases)
    • Server-local accounts
    • Domain-level accounts and special challenges due to Microsoft "best practices"
    • Using updsvcpass
    • Reports to find service accounts and see how they are used
  • Embedded accounts and passwords
    • Intro to the problem of embedded passwords in programs and scripts
    • Alternative solution approaches:
      • modify the app to use an API to fetch a current password
      • leave the password where it lies and push new values into the cfg file or similar
    • Security catch-22:
      • authenticating users into the API?
      • caching passwords and securing the cache
    • Introduce the HiPAM API:
      • API-enabling users
      • OTP in authentication
      • IP subnet filtering (CIDR masks)
    • The need for an API wrapper
      • Generating key material with which to obscure cached passwords and OTPs
      • Caching and serialization
      • Simplifying use of the API

Videos

Hitachi ID Privileged Access Videos Manager will be updated soon
To Watch More Videos Click Here

Flash News


AngularJS New Batch Start From 09th OCT & 10th OCT.


Hadoop Dev New Batch Start From 10th OCT & 11th OCT.


IBM COGNOS TM New Batch Start From 11th OCT & 12th OCT.


Informatica Dev New Batch Start From 12th OCT & 13th OCT.


Mean Stack New Batch Start 13th OCT & 14th OCT.

SAP BODS new Batch Starting From 14th OCT & 15th OCT.

SAP S/4 HANA New Batch Start From 15th OCT & 16th OCT
.

Tableau New Batch Start From 16th OCT & 17th OCT

PUBLIC DEMO

(1) Workday Technical Demo Training

Demo Schedule : 09:30A.M EST / 08:30A.M CST / 6:30A.M PST on 13th OCT & 07:00A.M IST on 14th OCT

(2) SAP MII Demo Training

Demo Schedule : 09:30A.M EST / 08:30A.M CST / 6:30A.M PST on 13th OCT & 07:00A.M IST on 14th OCT

SOLVE YOUR QUERIES ONLINE
Email :
Rediff Bol :
ecorptrainings@rediffmail.com
Google Talk :
ecorptrainings@gmail.com
MSN Messenger :
ecorptrainings@hotmail.com
Yahoo Messenger :
ecorptrainings@yahoo.com
Skype Talk :
ecorptrainings