Oracle Entitlements Server(OES) is an entitlement system that supports the centralized definition of complex application entitlements and their distributed runtime enforcements. Oracle Entitlements Server (OES) is a standard-based, policy-driven security solution that provides real time, fine-grained authorization in Application, Service-Oriented Architecture (SOA), and Database environments.
Preview
You will learn to use Oracle Entitlements Server 11g R2 to implement their authorization policy designs, create and manage authorization policies that implement role-based authorization through to more fine-grained authorization capabilities. Administration and Management of policies is performed by using the web-based Authorization Policy Manager(APM) tool installed with the Oracle Entitlements Server.
- Install and configure Oracle Entitlements Server 11g R2 environments.
- Understand basic policy modeling concepts based on a course application.
- Configure and run different OES Security Module types.
- Create and manage Authorization Policies with the web-based Authorization Policy Management interface.
- Manage life cycle of policy information.
- Use the PEP API to create Policy Enforcement Points.
- Use the Management API to create and manage policies pro-grammatically.
Course Contents
Describing Identity Management Concepts Explaining How OES 11g Fits in the Identity Management Space Describing Oracle Entitlements Server 11g Discussing the Oracle Entitlements Server 11g Architecture
Identifying and Describing the Components of an OES Policy Describing How OES Policy Objects Map to Each Other Accessing the Authorization Policy Manager (APM) Navigating the APM User Interface Importing and Exporting Policies (Policy Migration) Managing System Configuration Writing Code to Enforce Role-based Authorization Policies Writing Code to Enforce Authorization Policies that Use Constraints With Attributes
Day 1
Overview of Identity Management and Authorization Concepts
Overview of Oracle Entitlements Server 11g
Exploring OES 11g Deployment Topologies
Configuring and Running Different Security Module Types
Using the SMConfig UI Tool
Identifying Access Control Standards
Describing Oracle Entitlements Server 11g Installation
Day 2
Introduction to Policy Modeling
Mapping Business Security Requirements to OES Policies
Explaining How the OES Authorization Engine Enforces and Processes a Policy SetAdministering and Managing Policies
Creating and Managing Security Objects with the APM
Registering a Security Module With an Application
Distributing and Testing Policies
Day 3
Lifecycle Management for Applications and Policies
Managing Policy Distribution
Creating Delegate Administrators
Configuring a Custom Evaluation Function
Configuring a Built-in Database Attribute Retriever
Configuring Multiple Identity StoresWorking with API to Implement Basic Integration
Writing Code that Implements Obligations
Writing Code to Create a Simple Policy Using the OES Management API (MAPI)
Creating Secure Web Applications by Using JSP Tags
Extending OES with Custom Attribute Retrievers and Functions