ForgeRock Directory Services Core Concepts (DS-400)

The ForgeRock Directory Services Core Concepts course is for students who want to learn how to implement ForgeRock Directory Services (DS) in a ForgeRock Identity platform deployment and as a standalone service. Current platform best practices are used to deploy and maintain DS. Using lab exercises in this course, students gain hands-on experience with the important features and capabilities of ForgeRock Directory Services, which they can use to deploy ForgeRock Directory Services on the job.
Note that Revision A of this course is built on version 6.0 of ForgeRock Directory Services.
Target Audiences
The following are the target audiences for this course:
  • System Integrators
  • System Consultants
  • System Architects
  • System Administrators
  • Web Developers
Upon completion of this course, you should be able to:
  • Understand how DS is used in a ForgeRock Identity platform deployment
  • Install DS as a standalone service or as an external data store for the ForgeRock Identity platform
  • Monitor and tune DS for different deployment types using HTTP and LDAP
  • Implement access control and privileges
  • Configure delegated administration
  • Backup and restore backends
  • Import and export data
  • Manage custom attributes
  • Manage log publishers
  • Manage entries using CLI and REST
  • Implement High Availability using Replication
  • Monitor and Troubleshoot Replication
  • Manage DS in a ForgeRock Identity Management deployment
  • Manage DS in a ForgeRock Access Management deployment
  • Deploy a distributed topology
The following are the prerequisites to successfully completing this course:
  • Basic knowledge and skills using the Linux operating system to complete labs
  • Basic knowledge of LDAP, JSON, REST, Java
5 days
Details anzeigen
Course Contents
Chapter 1: Introducing ForgeRock Directory Services (DS)
Lesson 1: Understand how DS is used in the ForgeRock Identity Platform
  • Describe how the platform uses ForgeRock Directory Services
  • Describe deployment options
Lesson 2: Installing DS
  • Describe request processing
  • Understand where data is stored
  • Understand the installation process
Lesson 3: Managing entries
  • Manage the configuration
  • Manage Entries
Lesson 4: Protecting entries
  • Understand how access control is applied
  • Display privileges
Lesson 5: Locating default log files
  • Describe log publishers
  • Describe default log files
Lesson 6: Understanding DS monitoring capabilities
  • Describe DS monitoring
  • Describe HTTP monitoring
  • Describe LDAP monitoring
  • Describe SMTP monitoring
  • Describe JMX monitoring
Chapter 2: Maintaining DS in a ForgeRock Access Management Deployment
Lesson 1: Preparing an external configuration and identity store
  • Describe a default AM Deployment
  • Configure external configuration and identity stores
Lesson 2: Preparing an external CTS
  • Describe CTS deployment options
  • Configure an external CTS
Lesson 3: Performing essential administration tasks
  • Backup and restore an AM data store
  • Configure a highly available CTS
  • Enable secure communication between AM and DS
Lesson 4: Monitoring and tuning DS in an AM deployment
  • Monitor and tune DS for AM data stores
Lesson 5: Troubleshooting DS in an AM deployment
  • Enable platform transaction ID propagation
  • Configure log filtering
Chapter 3: Deploying DS as a User Store
Lesson 1: Populating backends
  • Populate a backend
Lesson 2: Managing custom attributes
  • Add custom schema
  • Configure virtual attributes
Lesson 3: Delegating administration
  • Assign administrators to groups
  • Assign access control to subscriber entries
  • Grant privileges to administrators
Lesson 4: Managing authentication policies
  • Configure authentication policies
Lesson 5: Using REST to manage entries
  • Describe REST
  • Configure embedded REST API
  • Configure REST to LDAP gateway
  • Perform RESTful operations
Lesson 6: Implementing high availability and scalability through replication
  • Deploy a replication topology
  • Manage a replication topology
Lesson 7: Monitoring and tuning a user store
  • Configure SNMP monitoring
  • Monitor indexes
  • Measure throughput and response times
  • Understand areas that affect performance
Lesson 8: Troubleshooting replication
  • Identify replication issues
  • Backup and restore a replicated topology
Chapter 4: Maintaining DS in a ForgeRock Identity Management Deployment (IDM)
Lesson 1: Managing repositories
  • Explore the default repository
  • Configure an external DS repository
Lesson 2: Provisioning subscribers
  • Describe how IDM synchronizes data
  • Provision subscribers
Lesson 3: Synchronizing passwords
  • Enable mutual authentication
  • Install DS password synchronization plugin
Lesson 4: Monitoring and troubleshooting DS in an IDM deployment
  • Monitor DS and IDM logs
  • Troubleshoot password synchronization
Chapter 5: Creating a Distributed Topology
Lesson 1: Exploring DS scalability options
  • Describe scaling options
  • Scale DS for read operations
  • Scale DS for write operations
Lesson 2: Configuring a distributed topology
  • Configure regional data stores
  • Enable standalone replication servers
  • Configure data confidentiality
  • Install and configure Directory Proxy servers
Lesson 3: Monitoring and tuning a distributed topology
  • Monitor a distributed topology
  • Tune DS for multiple backends