Getting Started with ForgeRock® Identity Cloud

FR-300 Revision B.2

Description

This course takes students from a high-level understanding of how ForgeRock® Identity Cloud (Identity Cloud) works, through the various online resources available to them, to a fully functional hands-on development environment, where they learn how to implement the many features of Identity Cloud in a training environment. Students take real-world use cases and implement them in a provided live Identity Cloud environment, where they learn the concepts and tasks necessary to successfully manage identities, applications, and user journeys in their own Identity Cloud.

 

Target Audiences

The target audiences for this course include:

  • ForgeRock Identity Cloud Administrators
  • Technical users new to ForgeRock Identity Cloud and other ForgeRock products
  • Those new to Identity Cloud and considering taking the certification exam

 

Objectives

Upon completion of this course, you should be able to:

  • Describe the benefits and features of Identity Cloud, understand how to access an Identity Cloud tenant and your CloudShare lab environment
  • Manage the onboarding of users through self-service, importing bulk identities, and synchronizing identities between Identity Cloud and external resources
  • Create new user journeys to support how end users authenticate and perform self-service with Identity Cloud
  • Integrate application client profiles and gateway profiles into Identity Cloud to support external applications accessing Identity Cloud for identity and access management services
  • Manage federation to let employees with credentials stored in a remote Active Directory data store access services in Identity Cloud

 

Prerequisites

The following are the prerequisites for successfully completing this course:

 

Duration

3 days

 

Course Contents

Chapter 1: Introducing Identity Cloud

Describe the benefits and features of Identity Cloud, understand how to access an Identity Cloud tenant and your CloudShare lab environment.

Lesson 1: Introducing ForgeRock Identity Cloud

Provide an overview of Identity Cloud, starting with what students should already know about it, and relate it to their job role, and the tasks they need to perform to support the business requirements supported by Identity Cloud:

  • Describe Identity Cloud
  • Describe the top ten customer business requirements
  • Describe Identity Cloud onboarding services

Lesson 2: Getting Access to Identity Cloud

Describe the onboarding process or procedure for getting access to Identity Cloud:

  • Describe the tenant registration process
  • Describe the Identity Cloud Admin UI

Lesson 3: Accessing Your CloudShare Lab Environment

A short lesson to introduce and access the CloudShare lab environment:

  • Describe the CloudShare lab environment
  • Log in to your CloudShare lab environment

Chapter 2: Managing User Identities

Manage the onboarding of users through self-service, importing bulk identities, and synchronizing identities between Identity Cloud and external resources.

Lesson 1: Managing Identities

Manage user identities as an Identity Cloud administrator using the Identity Cloud Admin UI, which is an administrative interface to manage your tenant settings. Delegate user management in the End User UI to end users:

  • Describe use cases and processes for managing identities
  • Manage identities using the Identity Cloud Admin UI
  • Set up 2-step verification and configure delegated administration
  • Describe use cases and processes for password policy management
  • Configure default password policies

Lesson 2: Onboarding Users With Self-Service

Add new users to your tenant through self-registration

  • Describe use cases and processes for self-registration
  • Create a new user using self-registration
  • Describe use cases and processes for managing personal data and consent
  • Manage personal data and consent

Lesson 3: Adding Identities with Bulk Import

Bulk import user identities from a CSV file:

  • Describe use cases and processes for bulk import
  • Add customers to Identity Cloud
  • Troubleshoot import failures

Lesson 4: Utilizing Placeholder Attributes

Update and extend the managed user object schema to add properties to a user's profile:

  • Describe use cases and processes for placeholder attributes
  • Manage placeholder attributes

Lesson 5: Synchronizing Identities from External Resources

Connect to external resources using a Remote Connector Server, and synchronize identities between Identity Cloud and on-premises resources:

  • Describe use cases and processes for synchronizing identities from an external resource
  • Configure remote connections between your tenant and external ForgeRock® Directory Services (DS)
  • Describe how to synchronize identities
  • Synchronize entries between DS and Identity Cloud
  • Synchronize entries between Identity Cloud and DS
  • Configure remote connections between your tenant and an external AD server
  • Synchronize AD entries
  • (Optional) Configure a Remote Connector Server cluster

Lesson 6: Managing Provisioning Roles and Assignments

Manage provisioning roles and assignments within the platform to provision attributes to external resources:

  • Describe roles and assignment use cases and processes
  • Create assignments and provisioning roles

Lesson 7: (Optional) Additional Administration Tasks

Discuss and demonstrate additional tasks that an Identity Cloud administrator should be aware of:

  • Describe how to add a custom domain name
  • Describe how to access Identity Cloud using REST API endpoints
  • Describe how to access platform logs
  • Describe how to monitor your environment

Chapter 3: Managing User Journeys

Create new user journeys to support how end users authenticate and perform self-service with Identity Cloud.

Lesson 1: Exploring the User Journeys

Describe the purpose of the preconfigured user journeys included with Identity Cloud, and explore each user journey as an Identity Cloud administrator and an end user:

  • Describe the preconfigured user journeys
  • View the preconfigured user journeys
  • Describe the URLs and realms relationship
  • Describe the preconfigured ProgressiveProfile journey
  • Collect user preferences upon subsequent logins
  • Describe the self-service journeys
  • Recover your forgotten username, reset your password, and update your password

Lesson 2: Modifying the User Journeys

Use the journey editor in Identity Cloud to duplicate and modify the default Login user journey:

  • Describe the role of authentication nodes and trees within Identity Cloud
  • Modify the default Login user journey
  • Modify the UI theme for an organization
  • Make minor branding changes
  • Describe how to modify the preconfigured email templates
  • Modify an email template for the ResetPassword and Registration journeys
  • Describe how to reference variables from within a script

Lesson 3: Configuring User Self-Service

Configure the self-service features of Identity Cloud to empower end users to independently make changes to their identity, instead of going through a help desk:

  • Describe the KBA-related journey
  • Configure the KBA questions and set requirements
  • Describe the Terms and Conditions-related journey
  • Configure and set the Terms and Conditions

Lesson 4: Configuring Social Registration and Authentication

Configure Identity Cloud to let end users register and authenticate new accounts using a social provider:

  • Describe steps for configuring social registration and authentication
  • Configure a social identity provider for Identity Cloud
  • Describe how you can add social registration
  • Add social registration to the preconfigured Registration user journey
  • Describe how you can add social authentication
  • Add social authentication to the preconfigured Login user journey

Chapter 4: Integrating Applications and Gateways

Integrate application client profiles and gateway profiles into Identity Cloud to support external applications accessing Identity Cloud for identity and access management services.

Lesson 1: Defining Applications

Describe the role of an application in Identity Cloud:

  • Describe the role of applications in Identity Cloud
  • Describe the supported application types

Lesson 2: Adding an Application Client Profile

Add a new application client profile in Identity Cloud for a given ForgeRock® SDK sample application, and validate the application can authenticate with Identity Cloud using the client profile:

  • Describe the role of the ForgeRock SDKs within Identity Cloud
  • Describe the tasks for adding a browser-based type application
  • Add a browser-based type application
  • Use an SSO token with a browser-based application

Lesson 3: Integrating Identity Gateway

Add a gateway profile, and supporting application client profile, to integrate ForgeRock® Identity Gateway (Identity Gateway) with Identity Cloud:

  • Describe the Identity Cloud with Identity Gateway use cases
  • Configure Identity Cloud to validate access tokens from Identity Gateway
  • Configure Identity Cloud as an OIDC provider
  • Configure Identity Cloud as an SSO authentication server

Chapter 5: Managing Federation

Manage federation to let employees with credentials stored in a remote Active Directory data store access services in Identity Cloud.

Lesson 1: Integrating Third-Party Services using SAML

Integrate Identity Cloud with a third-party provider using SAML v2.0 to provide SSO services:

  • Describe use cases and processes for integrating with a third-party using SAML
  • Configure Identity Cloud as a SAML Service Provider
  • Configure Relying Party Trust
  • Configure ADFS as a SAML Identity Provider
Train Your Team with ForgeRock Private Training

Request a Private Event

Available Courses
Getting Started with ForgeRock® Identity Cloud
(FR-300-BVP Rev B.2)
ForgeRock University - AMER
Aug 3, 2021 - Aug 5, 2021

Getting Started with ForgeRock® Identity Cloud
(FR-300-BVP Rev B.2)
ExitCertified - Americas Various
Sep 7, 2021 - Sep 9, 2021
Language: en

Getting Started with ForgeRock® Identity Cloud
(FR-300-BVP Rev B.2)
Tech Data UK - Europe Various
Sep 13, 2021 - Sep 15, 2021
Language: en