Mail : training@ecorptrainings.com
India : +91-8143-111-555
USA : +1-703-445-4802
uk : +44-20-3287-2021
Whats app : +91-8143-110-555
Facebook Twitter Google Plus Pinit Stumbleupon Youtube Blog

Workday HCM Demo New Batches Starting from Monday... 13-11-2017
Search Course Here




Live Chat
Support


Hitachi ID Privileged Access Manager



overview


Hitachi ID Privileged Access Manager is a system for securing access to privileged accounts.

prerequisties

  • None

Duration

Online
  • It is a 16 days program and extends up to 2hrs each.
  • The format is 40% theory, 60% Hands-on.

Corporate
  • It is a 4 days program and extends up to 8hrs each.
  • The format is 40% theory, 60% Hands-on.
Classroom
    Private Classroom arranged on request and minimum attendies for batch is 4.

course content

  • Introduction
  • Install the software
    • Install replica
  • Targets and auto-discovery
    • AD target (source of profiles)
    • AD target (source of computers)
    • Configure the system to omit disabled accounts (for login)
    • Configure the system to "manage" all AD groups (for ACLs)
    • Run and troubleshoot psupdate
    • Log viewer
  • Manual targets and intro to policies
    • Configure a manual WinNT target
    • Configure a manual Linux target
    • Configure a simple MSP for these two targets
      • password policy and randomization schedule
      • account names to include
      • plug-ins to support (cmd-line/putty + RDP)
      • checkout limits
    • Configure a simple User Class for a few users
    • Link the MSP to the User Class to get ACLs
    • Run psupdate to get passwords randomized
    • Show logs and reports that illustrate what happened
  • Basic user experience
    • Sign into the UI with AD creds
    • Checkout access
    • Checkout launch RDP to one system
    • Checkout launch SSH to one system
    • Run reports to show that this activity was captured
  • Infrastructure auto-discovery and import rules
    • Introduce a bunch of fake computers on AD
    • Introduce the simulator for WinNT targets
    • Show the 'discovered systems' and 'system attributes' data that gets loaded into PAM
    • Define some import rules
    • Run through and troubleshoot discovery/import/management
    • Use the simulator to introduce daily evolution of the infrastructure
    • Show that the system responds during PSUPDATE with appropriate discovery and management/unmanagement
    • Discuss "unmanage" rules -- e.g., for systems that have been offline for too long.
  • Ongoing support and maintenance
    • Show the HiPAM dashboard
    • Implement exit traps for various types of failures
      • replication problems
      • psupdate problems
      • failed authentication and authorization
    • Show and use reports:
      • who checked out what?
      • who got rejected?
      • who is busy vis-a-vis the system?
  • Introduce pull mode
    • Motivation
      • laptops
      • mobility, NAT, firewalls, powerdown, etc.
      • scalability
    • Configure and deploy MSI to a WinXP and a Win7 client
  • Workflow for one-off requests
    • Discuss scenarios: where/when to use workflow
    • Request attributes and attribute validation
    • Selecting authorizers (focus on userclass, not plug-ins)
    • Consensus (N of M) and veto power
    • Automatic reminder e-mails
    • Automatic escalation after non-response
    • Early escalation (e.g., if authorizer is out of office)
    • Reports and dashboards: what's going on in the workflow engine?
    • The roles of workflow and delegation managers
  • Service accounts on Windows
    • Intro to the Windows security model (why do we have to manage these darned things?)
    • Cases where service accounts are already managed by Windows (IIS, SCM in some cases)
    • Server-local accounts
    • Domain-level accounts and special challenges due to Microsoft "best practices"
    • Using updsvcpass
    • Reports to find service accounts and see how they are used
  • Embedded accounts and passwords
    • Intro to the problem of embedded passwords in programs and scripts
    • Alternative solution approaches:
      • modify the app to use an API to fetch a current password
      • leave the password where it lies and push new values into the cfg file or similar
    • Security catch-22:
      • authenticating users into the API?
      • caching passwords and securing the cache
    • Introduce the HiPAM API:
      • API-enabling users
      • OTP in authentication
      • IP subnet filtering (CIDR masks)
    • The need for an API wrapper
      • Generating key material with which to obscure cached passwords and OTPs
      • Caching and serialization
      • Simplifying use of the API

Videos

Hitachi ID Privileged Access Videos Manager will be updated soon
To Watch More Videos Click Here

Flash News


AngularJS New Batch Starting From 14th NOV & 15th NOV.


Hadoop Dev New Batch Starting From 15th NOV & 16th NOV.


IBM COGNOS TM New Batch Starting From 16th NOV & 17th NOV.


Informatica Dev New Batch Starting From 17th NOV & 18th NOV.


Mean Stack New Batch Starting From 18th NOV & 19th NOV.

SAP BODS new Batch Starting From 19th NOV & 20th NOV.

SAP S/4 HANA New Batch Starting From 20th NOV & 21st NOV
.

Tableau New Batch Starting From 21st NOV & 22nd NOV

PUBLIC DEMO


(1) Workday Technical Demo Training

Demo Schedule : 09:30 P.M EST / 08:30 P.M CST / 6:30 P.M PST on 13th NOV & 07:00 A.M IST on 14th NOV

SOLVE YOUR QUERIES ONLINE
Email :
Rediff Bol :
ecorptrainings@rediffmail.com
Google Talk :
ecorptrainings@gmail.com
MSN Messenger :
ecorptrainings@hotmail.com
Yahoo Messenger :
ecorptrainings@yahoo.com
Skype Talk :
ecorptrainings