This module explores using federated single sign-on and logout on the IBM Access Manager appliance. Using federated single sign-on, your clients can transparently access services offered by your federation partners using SAML 2.0. You learn to create SAML 2.0 federations from the identity provider and service provider partner role.

• Explain the purpose and use of a federation.
• Provide a high-level overview of the SAML 2.0 specification.
• Describe the process flow between federated partners.
• Initiate a signle sign-on action
• Create a federation and federation partners for signle sign-on and single logout
• Create a custom identity map

Security Administrators, Security Architects

Before taking this course, make sure that you have the following skills:

• Basic administration of the IBM Security Access Manager appliance
• SAML 2.0 Specification
• Windows Server
• Linux

Lesson 1: Federated overview
Lesson 2: SAML 2.0 overview
Lesson 3: Initiating a single sign-on action
Lesson 4: IBM Security Acces Access Manager 9.0
Lesson 5: Creating a federation and federation partners
Lesson 6: Creating custom identity maps

Prior to enrolling, IBM Employees must follow their Division/Department processes to obtain approval to attend this public training class. Failure to follow Division/Department approval processes may result in the IBM Employee being personally responsible for the class charges.

GBS practitioners that use the EViTA system for requesting external training should use that same process for this course. Go to the EViTA site to start this process: http://w3.ibm.com/services/gbs/evita/BCSVTEnrl.nsf

Once you enroll in a GTP class, you will receive a confirmation letter that should show:

The current GTP list price

The 20% discounted price available to IBMers. This is the price you will be invoiced for the class.