Implementing Active Directory Federation...

M50412 www.globalknowledge.nl [email protected] 030 - 60 89 444

Implementing Active Directory Federation Services

Cursusduur: 4 Dagen Cursuscode: M50412

Beschrijving:

Federation Services has become part of course M20412 , Configuring Advanced Windows Server 2012 Services.

This four-day instructor-ledcourse provides students with the knowledge and skills to install and configure Active Directory Federation Services2.0 (AD FS). The course focuses on terminology, user interfaces, and common configuration scenarios for AD FS. Students will learn how todesign AD FS environments and supporting technology such as a Public Key Infrastructure. Students will also learn how to design AD FS forsecurity and high availability.

Doelgroep:

This course is intended for Windows IT professionals who want to become Active Directory Federation Services (ADFS) enterpriseadministrators, and move into the role of designing AD FS environments.

Doelstelling:

Define key concepts and terminology relating to Active Directory Configure AD FS 2.0 to provide claims-aware authentication in aFederation Services 2.0. business-to-business federation.

Install and configure Windows prerequisites for AD FS 2.0. Design and deploy advanced AD FS 2.0 scenarios, includingproviding for high availability and SAML interoperability.

Install and configure Public Key Infrastructure (PKI) for AD FS2.0. Use the AD FS 2.0 claims rule language to create custom claim

rules.

Deploy AD FS 2.0 to provide claims-aware authentication in asingle organization. Troubleshoot AD FS 2.0.

Vereiste kennis en vaardigheden:

M6424 Fundamentals of Windows Server 2008 Active Directory


Cursusinhoud:

Module 1: Introducing Claims-based Identity Module 6: Claims-based Authentication in aline line Business-to-Business Federation

Existing Solutions for Managing Identities lineThis module explains how to recognize AD FS The Benefits of Claims-based Identityterminology and common use cases for AD FS The Evolution of AD FS This module explains how to design and2.0. Use Cases for AD FS deploy AD FS 2.0 to provide claims-basedline AD FS and Claims-based authentication in a business-to-business

Introducing the Identity Metasystem TerminologyAfter completing this module, federation scenario.students will be able to: lineDiscuss and describe the Seven Laws of Deploying AD FS in a Federated

line Identity, and how they pertain to EnvironmentExisting Solutions for Managing Identities managing identities for users andThe Benefits of Claims-based Identity applications.The Evolution of AD FS Examine existing solutions for managing lineUse Cases for AD FS identities. Existing Solutions for Managing IdentitiesAD FS and Claims-based TerminologyAfter Describe the benefits of the The Benefits of Claims-based Identitycompleting this module, students will be able Claims-based Identity model. The Evolution of AD FSto: Discuss the evolution of Active Directory Use Cases for AD FSDiscuss and describe the Seven Laws of Federation Services (AD FS). AD FS and Claims-basedIdentity, and how they pertain to managing Describe common use cases for AD FS. TerminologyAfter completing this module,identities for users and applications. Discuss common terminology used when students will be able to:Examine existing solutions for managing working with AD FS and Claims-based Discuss and describe the Seven Laws ofidentities. Identity. Identity, and how they pertain to managingDescribe the benefits of the Claims-based Introducing Directory Services identities for users and applications.Identity model. Active Directory and Active Directory Examine existing solutions for managingDiscuss the evolution of Active Directory Lightweight Directory Services identities.Federation Services (AD FS). Web Services, Standards, and Describe the benefits of the Claims-basedDescribe common use cases for AD FS. Interoperability Identity model.Discuss common terminology used when Internet Information ServicesAfter Discuss the evolution of Active Directoryworking with AD FS and Claims-based completing this module, students will be Federation Services (AD FS).Identity. able to: Describe common use cases for AD FS.Introducing Directory Services Identify the key Windows components Discuss common terminology used whenActive Directory and Active Directory required for AD FS. working with AD FS and Claims-basedLightweight Directory Services Describe the key characteristics of a Identity.Web Services, Standards, and Directory Service. Introducing Directory ServicesInteroperability Describe the role Active Directory and AD Active Directory and Active DirectoryInternet Information ServicesAfter LDS perform in an AD FS deployment. Lightweight Directory Servicescompleting this module, students will be able Describe what is meant by the terms Web Services, Standards, andto: Web Services, WS-*, and Security InteroperabilityIdentify the key Windows components Assertion Markup Language (SAML). Internet Information ServicesAfterrequired for AD FS. Recognize the role of IIS in a successful completing this module, students will beDescribe the key characteristics of a AD FS deployment. able to:Directory Service. PKI Basics Identify the key Windows componentsDescribe the role Active Directory and AD Introduction to Cryptography required for AD FS.LDS perform in an AD FS deployment. PKI Design Describe the key characteristics of aDescribe what is meant by the terms Web Installing and Configuring Certificate Directory Service.Services, WS-*, and Security Assertion ServicesAfter completing this module, Describe the role Active Directory and ADMarkup Language (SAML). students will be able to: LDS perform in an AD FS deployment.Recognize the role of IIS in a successful AD Describe the concepts of a Public Key Describe what is meant by the terms WebFS deployment. Infrastructure (PKI). Services, WS-*, and Security AssertionPKI Basics Define and discuss the basics of PKI. Markup Language (SAML).Introduction to Cryptography Describe symmetric key and public key Recognize the role of IIS in a successfulPKI Design cryptography. AD FS deployment.Installing and Configuring Certificate Discuss options for PKI design. PKI BasicsServicesAfter completing this module, Describe the steps needed to install and Introduction to Cryptographystudents will be able to: configure Certificate Services. PKI DesignDescribe the concepts of a Public Key Claims Types, Endpoints, and Attribute Installing and Configuring CertificateInfrastructure (PKI). Stores ServicesAfter completing this module,Define and discuss the basics of PKI. AD FS Security students will be able to:Describe symmetric key and public key The Federation Server Proxy Role Describe the concepts of a Public Keycryptography. Administering AD FS Infrastructure (PKI).Discuss options for PKI design. Windows Identity FoundationAfter Define and discuss the basics of PKI.Describe the steps needed to install and completing this module, students will be Describe symmetric key and public keyconfigure Certificate Services. able to: cryptography.


Claims Types, Endpoints, and Attribute Describe the role of the federation server Discuss options for PKI design.Stores in an AD FS 2.0 installation. Describe the steps needed to install andAD FS Security Understand the importance of claims, configure Certificate Services.The Federation Server Proxy Role claim types, endpoints, and attribute Claims Types, Endpoints, and AttributeAdministering AD FS stores for a successful AD FS StoresWindows Identity FoundationAfter implementation. AD FS Securitycompleting this module, students will be able Discuss best practices for securing an The Federation Server Proxy Roleto: AD FS implementation, including the role Administering AD FSDescribe the role of the federation server in of Public Key Infrastructure (PKI) Windows Identity FoundationAfteran AD FS 2.0 installation. certificates in securing the authentication completing this module, students will beUnderstand the importance of claims, claim and communication process. able to:types, endpoints, and attribute stores for a Describe the role of the Federation Describe the role of the federation serversuccessful AD FS implementation. Server Proxy. in an AD FS 2.0 installation.Discuss best practices for securing an AD Describe the methods available to Understand the importance of claims,FS implementation, including the role of administer an AD FS server. claim types, endpoints, and attribute storesPublic Key Infrastructure (PKI) certificates in Understand the role of the Windows for a successful AD FS implementation.securing the authentication and Identity Foundation (WIF) in creating Discuss best practices for securing an ADcommunication process. claims-based applications. FS implementation, including the role ofDescribe the role of the Federation Server AD FS Within a Single Organization Public Key Infrastructure (PKI) certificatesProxy. Understanding Claims and Claim Types in securing the authentication andDescribe the methods available to Claim Rules and Claim Rule Templates communication process.administer an AD FS server. Creating Claim Rules from Templates Describe the role of the Federation ServerUnderstand the role of the Windows Identity Configuring AD FS in a Single Proxy.Foundation (WIF) in creating claims-based OrganizationAfter completing this Describe the methods available toapplications. module, students will be able to: administer an AD FS server.AD FS Within a Single Organization Define the certificate requirements for AD Understand the role of the WindowsUnderstanding Claims and Claim Types FS in a single organization. Identity Foundation (WIF) in creatingClaim Rules and Claim Rule Templates Discuss PKI certificate management for claims-based applications.Creating Claim Rules from Templates AD FS. AD FS Within a Single OrganizationConfiguring AD FS in a Single Configuring a Claims Provider Trust Understanding Claims and Claim TypesOrganizationAfter completing this module, Understanding Home Realm Discovery Claim Rules and Claim Rule Templatesstudents will be able to: Managing Claims Across Creating Claim Rules from TemplatesDefine the certificate requirements for AD OrganizationsAfter completing this Configuring AD FS in a SingleFS in a single organization. module, students will be able to: OrganizationAfter completing this module,Discuss PKI certificate management for AD Deploy AD FS 2.0 in a students will be able to:FS. business-to-business federation. Define the certificate requirements for ADConfiguring a Claims Provider Trust Configure an AD FS Claims Provider FS in a single organization.Understanding Home Realm Discovery Trust. Discuss PKI certificate management forManaging Claims Across OrganizationsAfter Describe and configure the Home Realm AD FS.completing this module, students will be able Discovery process. Configuring a Claims Provider Trustto: Manage AD FS Claims and Federation Understanding Home Realm DiscoveryDeploy AD FS 2.0 in a business-to-business Trust relationships across organizations. Managing Claims Acrossfederation. Planning for High Availability OrganizationsAfter completing this module,Configure an AD FS Claims Provider Trust. Additional AD FS Configuration students will be able to:Describe and configure the Home Realm Scenarios Deploy AD FS 2.0 in aDiscovery process. AD FS 2.0 and SAML business-to-business federation.Manage AD FS Claims and Federation Trust InteroperabilityAfter completing this Configure an AD FS Claims Providerrelationships across organizations. module, students will be able to: Trust.Planning for High Availability Configure the AD FS 2.0 server in the Describe and configure the Home RealmAdditional AD FS Configuration Scenarios Federation Server Proxy role. Discovery process.AD FS 2.0 and SAML InteroperabilityAfter Configure AD FS 2.0 for redundancy and Manage AD FS Claims and Federationcompleting this module, students will be able high availability. Trust relationships across organizations.to: Deploy AD FS 2.0 to provide Planning for High AvailabilityConfigure the AD FS 2.0 server in the interoperability with SAML 2.0-compliant Additional AD FS Configuration ScenariosFederation Server Proxy role. federation partners. AD FS 2.0 and SAML InteroperabilityAfterConfigure AD FS 2.0 for redundancy and Introducing the Claims Rule completing this module, students will behigh availability. LanguageAfter completing this module, able to:Deploy AD FS 2.0 to provide interoperability students will be able to: Configure the AD FS 2.0 server in thewith SAML 2.0-compliant federation Describe the AD FS 2.0 Claims Pipeline Federation Server Proxy role.partners. and Claims Engine processes. Configure AD FS 2.0 for redundancy andIntroducing the Claims Rule LanguageAfter Create and configure custom claim rules high availability.completing this module, students will be able using the AD FS 2.0 claim rule language. Deploy AD FS 2.0 to provideto: AD FS Troubleshooting interoperability with SAML 2.0-compliantDescribe the AD FS 2.0 Claims Pipeline and Tracing AD FS TrafficAfter completing federation partners.Claims Engine processes. this module, students will be able to: Introducing the Claims Rule LanguageAfterCreate and configure custom claim rules Configure troubleshooting and security completing this module, students will be


using the AD FS 2.0 claim rule language. auditing for AD FS 2.0. able to:AD FS Troubleshooting Use built-in Windows tools to Describe the AD FS 2.0 Claims PipelineTracing AD FS TrafficAfter completing this troubleshoot AD FS components and and Claims Engine processes.module, students will be able to: prerequisites. Create and configure custom claim rulesConfigure troubleshooting and security Trace AD FS Web traffic for using the AD FS 2.0 claim rule language.auditing for AD FS 2.0. troubleshooting and configuration AD FS TroubleshootingUse built-in Windows tools to troubleshoot purposes. Tracing AD FS TrafficAfter completing thisAD FS components and prerequisites. module, students will be able to:Trace AD FS Web traffic for troubleshooting Configure troubleshooting and securityand configuration purposes. line auditing for AD FS 2.0.

Existing Solutions for Managing Identities Use built-in Windows tools to troubleshootThe Benefits of Claims-based Identity AD FS components and prerequisites.

line The Evolution of AD FS Trace AD FS Web traffic forExisting Solutions for Managing Identities Use Cases for AD FS troubleshooting and configurationThe Benefits of Claims-based Identity AD FS and Claims-based purposes.The Evolution of AD FS TerminologyAfter completing this module,Use Cases for AD FS students will be able to:AD FS and Claims-based TerminologyAfter Discuss and describe the Seven Laws of linecompleting this module, students will be able Identity, and how they pertain to Existing Solutions for Managing Identitiesto: managing identities for users and The Benefits of Claims-based IdentityDiscuss and describe the Seven Laws of applications. The Evolution of AD FSIdentity, and how they pertain to managing Examine existing solutions for managing Use Cases for AD FSidentities for users and applications. identities. AD FS and Claims-basedExamine existing solutions for managing Describe the benefits of the TerminologyAfter completing this module,identities. Claims-based Identity model. students will be able to:Describe the benefits of the Claims-based Discuss the evolution of Active Directory Discuss and describe the Seven Laws ofIdentity model. Federation Services (AD FS). Identity, and how they pertain to managingDiscuss the evolution of Active Directory Describe common use cases for AD FS. identities for users and applications.Federation Services (AD FS). Discuss common terminology used when Examine existing solutions for managingDescribe common use cases for AD FS. working with AD FS and Claims-based identities.Discuss common terminology used when Identity. Describe the benefits of the Claims-basedworking with AD FS and Claims-based Introducing Directory Services Identity model.Identity. Active Directory and Active Directory Discuss the evolution of Active DirectoryIntroducing Directory Services Lightweight Directory Services Federation Services (AD FS).Active Directory and Active Directory Web Services, Standards, and Describe common use cases for AD FS.Lightweight Directory Services Interoperability Discuss common terminology used whenWeb Services, Standards, and Internet Information ServicesAfter working with AD FS and Claims-basedInteroperability completing this module, students will be Identity.Internet Information ServicesAfter able to: Introducing Directory Servicescompleting this module, students will be able Identify the key Windows components Active Directory and Active Directoryto: required for AD FS. Lightweight Directory ServicesIdentify the key Windows components Describe the key characteristics of a Web Services, Standards, andrequired for AD FS. Directory Service. InteroperabilityDescribe the key characteristics of a Describe the role Active Directory and AD Internet Information ServicesAfterDirectory Service. LDS perform in an AD FS deployment. completing this module, students will beDescribe the role Active Directory and AD Describe what is meant by the terms able to:LDS perform in an AD FS deployment. Web Services, WS-*, and Security Identify the key Windows componentsDescribe what is meant by the terms Web Assertion Markup Language (SAML). required for AD FS.Services, WS-*, and Security Assertion Recognize the role of IIS in a successful Describe the key characteristics of aMarkup Language (SAML). AD FS deployment. Directory Service.Recognize the role of IIS in a successful AD PKI Basics Describe the role Active Directory and ADFS deployment. Introduction to Cryptography LDS perform in an AD FS deployment.PKI Basics PKI Design Describe what is meant by the terms WebIntroduction to Cryptography Installing and Configuring Certificate Services, WS-*, and Security AssertionPKI Design ServicesAfter completing this module, Markup Language (SAML).Installing and Configuring Certificate students will be able to: Recognize the role of IIS in a successfulServicesAfter completing this module, Describe the concepts of a Public Key AD FS deployment.students will be able to: Infrastructure (PKI). PKI BasicsDescribe the concepts of a Public Key Define and discuss the basics of PKI. Introduction to CryptographyInfrastructure (PKI). Describe symmetric key and public key PKI DesignDefine and discuss the basics of PKI. cryptography. Installing and Configuring CertificateDescribe symmetric key and public key Discuss options for PKI design. ServicesAfter completing this module,cryptography. Describe the steps needed to install and students will be able to:Discuss options for PKI design. configure Certificate Services. Describe the concepts of a Public KeyDescribe the steps needed to install and Claims Types, Endpoints, and Attribute Infrastructure (PKI).configure Certificate Services. Stores Define and discuss the basics of PKI.


Claims Types, Endpoints, and Attribute AD FS Security Describe symmetric key and public keyStores The Federation Server Proxy Role cryptography.AD FS Security Administering AD FS Discuss options for PKI design.The Federation Server Proxy Role Windows Identity FoundationAfter Describe the steps needed to install andAdministering AD FS completing this module, students will be configure Certificate Services.Windows Identity FoundationAfter able to: Claims Types, Endpoints, and Attributecompleting this module, students will be able Describe the role of the federation server Storesto: in an AD FS 2.0 installation. AD FS SecurityDescribe the role of the federation server in Understand the importance of claims, The Federation Server Proxy Rolean AD FS 2.0 installation. claim types, endpoints, and attribute Administering AD FSUnderstand the importance of claims, claim stores for a successful AD FS Windows Identity FoundationAftertypes, endpoints, and attribute stores for a implementation. completing this module, students will besuccessful AD FS implementation. Discuss best practices for securing an able to:Discuss best practices for securing an AD AD FS implementation, including the role Describe the role of the federation serverFS implementation, including the role of of Public Key Infrastructure (PKI) in an AD FS 2.0 installation.Public Key Infrastructure (PKI) certificates in certificates in securing the authentication Understand the importance of claims,securing the authentication and and communication process. claim types, endpoints, and attribute storescommunication process. Describe the role of the Federation for a successful AD FS implementation.Describe the role of the Federation Server Server Proxy. Discuss best practices for securing an ADProxy. Describe the methods available to FS implementation, including the role ofDescribe the methods available to administer an AD FS server. Public Key Infrastructure (PKI) certificatesadminister an AD FS server. Understand the role of the Windows in securing the authentication andUnderstand the role of the Windows Identity Identity Foundation (WIF) in creating communication process.Foundation (WIF) in creating claims-based claims-based applications. Describe the role of the Federation Serverapplications. AD FS Within a Single Organization Proxy.AD FS Within a Single Organization Understanding Claims and Claim Types Describe the methods available toUnderstanding Claims and Claim Types Claim Rules and Claim Rule Templates administer an AD FS server.Claim Rules and Claim Rule Templates Creating Claim Rules from Templates Understand the role of the WindowsCreating Claim Rules from Templates Configuring AD FS in a Single Identity Foundation (WIF) in creatingConfiguring AD FS in a Single OrganizationAfter completing this claims-based applications.OrganizationAfter completing this module, module, students will be able to: AD FS Within a Single Organizationstudents will be able to: Define the certificate requirements for AD Understanding Claims and Claim TypesDefine the certificate requirements for AD FS in a single organization. Claim Rules and Claim Rule TemplatesFS in a single organization. Discuss PKI certificate management for Creating Claim Rules from TemplatesDiscuss PKI certificate management for AD AD FS. Configuring AD FS in a SingleFS. Configuring a Claims Provider Trust OrganizationAfter completing this module,Configuring a Claims Provider Trust Understanding Home Realm Discovery students will be able to:Understanding Home Realm Discovery Managing Claims Across Define the certificate requirements for ADManaging Claims Across OrganizationsAfter OrganizationsAfter completing this FS in a single organization.completing this module, students will be able module, students will be able to: Discuss PKI certificate management forto: Deploy AD FS 2.0 in a AD FS.Deploy AD FS 2.0 in a business-to-business business-to-business federation. Configuring a Claims Provider Trustfederation. Configure an AD FS Claims Provider Understanding Home Realm DiscoveryConfigure an AD FS Claims Provider Trust. Trust. Managing Claims AcrossDescribe and configure the Home Realm Describe and configure the Home Realm OrganizationsAfter completing this module,Discovery process. Discovery process. students will be able to:Manage AD FS Claims and Federation Trust Manage AD FS Claims and Federation Deploy AD FS 2.0 in arelationships across organizations. Trust relationships across organizations. business-to-business federation.Planning for High Availability Planning for High Availability Configure an AD FS Claims ProviderAdditional AD FS Configuration Scenarios Additional AD FS Configuration Trust.AD FS 2.0 and SAML InteroperabilityAfter Scenarios Describe and configure the Home Realmcompleting this module, students will be able AD FS 2.0 and SAML Discovery process.to: InteroperabilityAfter completing this Manage AD FS Claims and FederationConfigure the AD FS 2.0 server in the module, students will be able to: Trust relationships across organizations.Federation Server Proxy role. Configure the AD FS 2.0 server in the Planning for High AvailabilityConfigure AD FS 2.0 for redundancy and Federation Server Proxy role. Additional AD FS Configuration Scenarioshigh availability. Configure AD FS 2.0 for redundancy and AD FS 2.0 and SAML InteroperabilityAfterDeploy AD FS 2.0 to provide interoperability high availability. completing this module, students will bewith SAML 2.0-compliant federation Deploy AD FS 2.0 to provide able to:partners. interoperability with SAML 2.0-compliant Configure the AD FS 2.0 server in theIntroducing the Claims Rule LanguageAfter federation partners. Federation Server Proxy role.completing this module, students will be able Introducing the Claims Rule Configure AD FS 2.0 for redundancy andto: LanguageAfter completing this module, high availability.Describe the AD FS 2.0 Claims Pipeline and students will be able to: Deploy AD FS 2.0 to provideClaims Engine processes. Describe the AD FS 2.0 Claims Pipeline interoperability with SAML 2.0-compliantCreate and configure custom claim rules and Claims Engine processes. federation partners.


using the AD FS 2.0 claim rule language. Create and configure custom claim rules Introducing the Claims Rule LanguageAfterAD FS Troubleshooting using the AD FS 2.0 claim rule language. completing this module, students will beTracing AD FS TrafficAfter completing this AD FS Troubleshooting able to:module, students will be able to: Tracing AD FS TrafficAfter completing Describe the AD FS 2.0 Claims PipelineConfigure troubleshooting and security this module, students will be able to: and Claims Engine processes.auditing for AD FS 2.0. Configure troubleshooting and security Create and configure custom claim rulesUse built-in Windows tools to troubleshoot auditing for AD FS 2.0. using the AD FS 2.0 claim rule language.AD FS components and prerequisites. Use built-in Windows tools to AD FS TroubleshootingTrace AD FS Web traffic for troubleshooting troubleshoot AD FS components and Tracing AD FS TrafficAfter completing thisand configuration purposes. prerequisites. module, students will be able to:

Trace AD FS Web traffic for Configure troubleshooting and securitytroubleshooting and configuration auditing for AD FS 2.0.

line purposes. Use built-in Windows tools to troubleshootExisting Solutions for Managing Identities AD FS components and prerequisites.The Benefits of Claims-based Identity Trace AD FS Web traffic forThe Evolution of AD FS line troubleshooting and configurationUse Cases for AD FS Existing Solutions for Managing Identities purposes.AD FS and Claims-based TerminologyAfter The Benefits of Claims-based Identitycompleting this module, students will be able The Evolution of AD FSto: Use Cases for AD FS lineDiscuss and describe the Seven Laws of AD FS and Claims-based Existing Solutions for Managing IdentitiesIdentity, and how they pertain to managing TerminologyAfter completing this module, The Benefits of Claims-based Identityidentities for users and applications. students will be able to: The Evolution of AD FSExamine existing solutions for managing Discuss and describe the Seven Laws of Use Cases for AD FSidentities. Identity, and how they pertain to AD FS and Claims-basedDescribe the benefits of the Claims-based managing identities for users and TerminologyAfter completing this module,Identity model. applications. students will be able to:Discuss the evolution of Active Directory Examine existing solutions for managing Discuss and describe the Seven Laws ofFederation Services (AD FS). identities. Identity, and how they pertain to managingDescribe common use cases for AD FS. Describe the benefits of the identities for users and applications.Discuss common terminology used when Claims-based Identity model. Examine existing solutions for managingworking with AD FS and Claims-based Discuss the evolution of Active Directory identities.Identity. Federation Services (AD FS). Describe the benefits of the Claims-basedIntroducing Directory Services Describe common use cases for AD FS. Identity model.Active Directory and Active Directory Discuss common terminology used when Discuss the evolution of Active DirectoryLightweight Directory Services working with AD FS and Claims-based Federation Services (AD FS).Web Services, Standards, and Identity. Describe common use cases for AD FS.Interoperability Introducing Directory Services Discuss common terminology used whenInternet Information ServicesAfter Active Directory and Active Directory working with AD FS and Claims-basedcompleting this module, students will be able Lightweight Directory Services Identity.to: Web Services, Standards, and Introducing Directory ServicesIdentify the key Windows components Interoperability Active Directory and Active Directoryrequired for AD FS. Internet Information ServicesAfter Lightweight Directory ServicesDescribe the key characteristics of a completing this module, students will be Web Services, Standards, andDirectory Service. able to: InteroperabilityDescribe the role Active Directory and AD Identify the key Windows components Internet Information ServicesAfterLDS perform in an AD FS deployment. required for AD FS. completing this module, students will beDescribe what is meant by the terms Web Describe the key characteristics of a able to:Services, WS-*, and Security Assertion Directory Service. Identify the key Windows componentsMarkup Language (SAML). Describe the role Active Directory and AD required for AD FS.Recognize the role of IIS in a successful AD LDS perform in an AD FS deployment. Describe the key characteristics of aFS deployment. Describe what is meant by the terms Directory Service.PKI Basics Web Services, WS-*, and Security Describe the role Active Directory and ADIntroduction to Cryptography Assertion Markup Language (SAML). LDS perform in an AD FS deployment.PKI Design Recognize the role of IIS in a successful Describe what is meant by the terms WebInstalling and Configuring Certificate AD FS deployment. Services, WS-*, and Security AssertionServicesAfter completing this module, PKI Basics Markup Language (SAML).students will be able to: Introduction to Cryptography Recognize the role of IIS in a successfulDescribe the concepts of a Public Key PKI Design AD FS deployment.Infrastructure (PKI). Installing and Configuring Certificate PKI BasicsDefine and discuss the basics of PKI. ServicesAfter completing this module, Introduction to CryptographyDescribe symmetric key and public key students will be able to: PKI Designcryptography. Describe the concepts of a Public Key Installing and Configuring CertificateDiscuss options for PKI design. Infrastructure (PKI). ServicesAfter completing this module,Describe the steps needed to install and Define and discuss the basics of PKI. students will be able to:configure Certificate Services. Describe symmetric key and public key Describe the concepts of a Public Key


Claims Types, Endpoints, and Attribute cryptography. Infrastructure (PKI).Stores Discuss options for PKI design. Define and discuss the basics of PKI.AD FS Security Describe the steps needed to install and Describe symmetric key and public keyThe Federation Server Proxy Role configure Certificate Services. cryptography.Administering AD FS Claims Types, Endpoints, and Attribute Discuss options for PKI design.Windows Identity FoundationAfter Stores Describe the steps needed to install andcompleting this module, students will be able AD FS Security configure Certificate Services.to: The Federation Server Proxy Role Claims Types, Endpoints, and AttributeDescribe the role of the federation server in Administering AD FS Storesan AD FS 2.0 installation. Windows Identity FoundationAfter AD FS SecurityUnderstand the importance of claims, claim completing this module, students will be The Federation Server Proxy Roletypes, endpoints, and attribute stores for a able to: Administering AD FSsuccessful AD FS implementation. Describe the role of the federation server Windows Identity FoundationAfterDiscuss best practices for securing an AD in an AD FS 2.0 installation. completing this module, students will beFS implementation, including the role of Understand the importance of claims, able to:Public Key Infrastructure (PKI) certificates in claim types, endpoints, and attribute Describe the role of the federation serversecuring the authentication and stores for a successful AD FS in an AD FS 2.0 installation.communication process. implementation. Understand the importance of claims,Describe the role of the Federation Server Discuss best practices for securing an claim types, endpoints, and attribute storesProxy. AD FS implementation, including the role for a successful AD FS implementation.Describe the methods available to of Public Key Infrastructure (PKI) Discuss best practices for securing an ADadminister an AD FS server. certificates in securing the authentication FS implementation, including the role ofUnderstand the role of the Windows Identity and communication process. Public Key Infrastructure (PKI) certificatesFoundation (WIF) in creating claims-based Describe the role of the Federation in securing the authentication andapplications. Server Proxy. communication process.AD FS Within a Single Organization Describe the methods available to Describe the role of the Federation ServerUnderstanding Claims and Claim Types administer an AD FS server. Proxy.Claim Rules and Claim Rule Templates Understand the role of the Windows Describe the methods available toCreating Claim Rules from Templates Identity Foundation (WIF) in creating administer an AD FS server.Configuring AD FS in a Single claims-based applications. Understand the role of the WindowsOrganizationAfter completing this module, AD FS Within a Single Organization Identity Foundation (WIF) in creatingstudents will be able to: Understanding Claims and Claim Types claims-based applications.Define the certificate requirements for AD Claim Rules and Claim Rule Templates AD FS Within a Single OrganizationFS in a single organization. Creating Claim Rules from Templates Understanding Claims and Claim TypesDiscuss PKI certificate management for AD Configuring AD FS in a Single Claim Rules and Claim Rule TemplatesFS. OrganizationAfter completing this Creating Claim Rules from TemplatesConfiguring a Claims Provider Trust module, students will be able to: Configuring AD FS in a SingleUnderstanding Home Realm Discovery Define the certificate requirements for AD OrganizationAfter completing this module,Managing Claims Across OrganizationsAfter FS in a single organization. students will be able to:completing this module, students will be able Discuss PKI certificate management for Define the certificate requirements for ADto: AD FS. FS in a single organization.Deploy AD FS 2.0 in a business-to-business Configuring a Claims Provider Trust Discuss PKI certificate management forfederation. Understanding Home Realm Discovery AD FS.Configure an AD FS Claims Provider Trust. Managing Claims Across Configuring a Claims Provider TrustDescribe and configure the Home Realm OrganizationsAfter completing this Understanding Home Realm DiscoveryDiscovery process. module, students will be able to: Managing Claims AcrossManage AD FS Claims and Federation Trust Deploy AD FS 2.0 in a OrganizationsAfter completing this module,relationships across organizations. business-to-business federation. students will be able to:Planning for High Availability Configure an AD FS Claims Provider Deploy AD FS 2.0 in aAdditional AD FS Configuration Scenarios Trust. business-to-business federation.AD FS 2.0 and SAML InteroperabilityAfter Describe and configure the Home Realm Configure an AD FS Claims Providercompleting this module, students will be able Discovery process. Trust.to: Manage AD FS Claims and Federation Describe and configure the Home RealmConfigure the AD FS 2.0 server in the Trust relationships across organizations. Discovery process.Federation Server Proxy role. Planning for High Availability Manage AD FS Claims and FederationConfigure AD FS 2.0 for redundancy and Additional AD FS Configuration Trust relationships across organizations.high availability. Scenarios Planning for High AvailabilityDeploy AD FS 2.0 to provide interoperability AD FS 2.0 and SAML Additional AD FS Configuration Scenarioswith SAML 2.0-compliant federation InteroperabilityAfter completing this AD FS 2.0 and SAML InteroperabilityAfterpartners. module, students will be able to: completing this module, students will beIntroducing the Claims Rule LanguageAfter Configure the AD FS 2.0 server in the able to:completing this module, students will be able Federation Server Proxy role. Configure the AD FS 2.0 server in theto: Configure AD FS 2.0 for redundancy and Federation Server Proxy role.Describe the AD FS 2.0 Claims Pipeline and high availability. Configure AD FS 2.0 for redundancy andClaims Engine processes. Deploy AD FS 2.0 to provide high availability.Create and configure custom claim rules interoperability with SAML 2.0-compliant Deploy AD FS 2.0 to provide


using the AD FS 2.0 claim rule language. federation partners. interoperability with SAML 2.0-compliantAD FS Troubleshooting Introducing the Claims Rule federation partners.Tracing AD FS TrafficAfter completing this LanguageAfter completing this module, Introducing the Claims Rule LanguageAftermodule, students will be able to: students will be able to: completing this module, students will beConfigure troubleshooting and security Describe the AD FS 2.0 Claims Pipeline able to:auditing for AD FS 2.0. and Claims Engine processes. Describe the AD FS 2.0 Claims PipelineUse built-in Windows tools to troubleshoot Create and configure custom claim rules and Claims Engine processes.AD FS components and prerequisites. using the AD FS 2.0 claim rule language. Create and configure custom claim rulesTrace AD FS Web traffic for troubleshooting AD FS Troubleshooting using the AD FS 2.0 claim rule language.and configuration purposes. Tracing AD FS TrafficAfter completing AD FS Troubleshooting

this module, students will be able to: Tracing AD FS TrafficAfter completing thisConfigure troubleshooting and security module, students will be able to:

line auditing for AD FS 2.0. Configure troubleshooting and securityExisting Solutions for Managing Identities Use built-in Windows tools to auditing for AD FS 2.0.The Benefits of Claims-based Identity troubleshoot AD FS components and Use built-in Windows tools to troubleshootThe Evolution of AD FS prerequisites. AD FS components and prerequisites.Use Cases for AD FS Trace AD FS Web traffic for Trace AD FS Web traffic forAD FS and Claims-based TerminologyAfter troubleshooting and configuration troubleshooting and configurationcompleting this module, students will be able purposes. purposes.to:Discuss and describe the Seven Laws ofIdentity, and how they pertain to managing line lineidentities for users and applications. Existing Solutions for Managing Identities Existing Solutions for Managing IdentitiesExamine existing solutions for managing The Benefits of Claims-based Identity The Benefits of Claims-based Identityidentities. The Evolution of AD FS The Evolution of AD FSDescribe the benefits of the Claims-based Use Cases for AD FS Use Cases for AD FSIdentity model. AD FS and Claims-based AD FS and Claims-basedDiscuss the evolution of Active Directory TerminologyAfter completing this module, TerminologyAfter completing this module,Federation Services (AD FS). students will be able to: students will be able to:Describe common use cases for AD FS. Discuss and describe the Seven Laws of Discuss and describe the Seven Laws ofDiscuss common terminology used when Identity, and how they pertain to Identity, and how they pertain to managingworking with AD FS and Claims-based managing identities for users and identities for users and applications.Identity. applications. Examine existing solutions for managingIntroducing Directory Services Examine existing solutions for managing identities.Active Directory and Active Directory identities. Describe the benefits of the Claims-basedLightweight Directory Services Describe the benefits of the Identity model.Web Services, Standards, and Claims-based Identity model. Discuss the evolution of Active DirectoryInteroperability Discuss the evolution of Active Directory Federation Services (AD FS).Internet Information ServicesAfter Federation Services (AD FS). Describe common use cases for AD FS.completing this module, students will be able Describe common use cases for AD FS. Discuss common terminology used whento: Discuss common terminology used when working with AD FS and Claims-basedIdentify the key Windows components working with AD FS and Claims-based Identity.required for AD FS. Identity. Introducing Directory ServicesDescribe the key characteristics of a Introducing Directory Services Active Directory and Active DirectoryDirectory Service. Active Directory and Active Directory Lightweight Directory ServicesDescribe the role Active Directory and AD Lightweight Directory Services Web Services, Standards, andLDS perform in an AD FS deployment. Web Services, Standards, and InteroperabilityDescribe what is meant by the terms Web Interoperability Internet Information ServicesAfterServices, WS-*, and Security Assertion Internet Information ServicesAfter completing this module, students will beMarkup Language (SAML). completing this module, students will be able to:Recognize the role of IIS in a successful AD able to: Identify the key Windows componentsFS deployment. Identify the key Windows components required for AD FS.PKI Basics required for AD FS. Describe the key characteristics of aIntroduction to Cryptography Describe the key characteristics of a Directory Service.PKI Design Directory Service. Describe the role Active Directory and ADInstalling and Configuring Certificate Describe the role Active Directory and AD LDS perform in an AD FS deployment.ServicesAfter completing this module, LDS perform in an AD FS deployment. Describe what is meant by the terms Webstudents will be able to: Describe what is meant by the terms Services, WS-*, and Security AssertionDescribe the concepts of a Public Key Web Services, WS-*, and Security Markup Language (SAML).Infrastructure (PKI). Assertion Markup Language (SAML). Recognize the role of IIS in a successfulDefine and discuss the basics of PKI. Recognize the role of IIS in a successful AD FS deployment.Describe symmetric key and public key AD FS deployment. PKI Basicscryptography. PKI Basics Introduction to CryptographyDiscuss options for PKI design. Introduction to Cryptography PKI DesignDescribe the steps needed to install and PKI Design Installing and Configuring Certificateconfigure Certificate Services. Installing and Configuring Certificate ServicesAfter completing this module,


Claims Types, Endpoints, and Attribute ServicesAfter completing this module, students will be able to:Stores students will be able to: Describe the concepts of a Public KeyAD FS Security Describe the concepts of a Public Key Infrastructure (PKI).The Federation Server Proxy Role Infrastructure (PKI). Define and discuss the basics of PKI.Administering AD FS Define and discuss the basics of PKI. Describe symmetric key and public keyWindows Identity FoundationAfter Describe symmetric key and public key cryptography.completing this module, students will be able cryptography. Discuss options for PKI design.to: Discuss options for PKI design. Describe the steps needed to install andDescribe the role of the federation server in Describe the steps needed to install and configure Certificate Services.an AD FS 2.0 installation. configure Certificate Services. Claims Types, Endpoints, and AttributeUnderstand the importance of claims, claim Claims Types, Endpoints, and Attribute Storestypes, endpoints, and attribute stores for a Stores AD FS Securitysuccessful AD FS implementation. AD FS Security The Federation Server Proxy RoleDiscuss best practices for securing an AD The Federation Server Proxy Role Administering AD FSFS implementation, including the role of Administering AD FS Windows Identity FoundationAfterPublic Key Infrastructure (PKI) certificates in Windows Identity FoundationAfter completing this module, students will besecuring the authentication and completing this module, students will be able to:communication process. able to: Describe the role of the federation serverDescribe the role of the Federation Server Describe the role of the federation server in an AD FS 2.0 installation.Proxy. in an AD FS 2.0 installation. Understand the importance of claims,Describe the methods available to Understand the importance of claims, claim types, endpoints, and attribute storesadminister an AD FS server. claim types, endpoints, and attribute for a successful AD FS implementation.Understand the role of the Windows Identity stores for a successful AD FS Discuss best practices for securing an ADFoundation (WIF) in creating claims-based implementation. FS implementation, including the role ofapplications. Discuss best practices for securing an Public Key Infrastructure (PKI) certificatesAD FS Within a Single Organization AD FS implementation, including the role in securing the authentication andUnderstanding Claims and Claim Types of Public Key Infrastructure (PKI) communication process.Claim Rules and Claim Rule Templates certificates in securing the authentication Describe the role of the Federation ServerCreating Claim Rules from Templates and communication process. Proxy.Configuring AD FS in a Single Describe the role of the Federation Describe the methods available toOrganizationAfter completing this module, Server Proxy. administer an AD FS server.students will be able to: Describe the methods available to Understand the role of the WindowsDefine the certificate requirements for AD administer an AD FS server. Identity Foundation (WIF) in creatingFS in a single organization. Understand the role of the Windows claims-based applications.Discuss PKI certificate management for AD Identity Foundation (WIF) in creating AD FS Within a Single OrganizationFS. claims-based applications. Understanding Claims and Claim TypesConfiguring a Claims Provider Trust AD FS Within a Single Organization Claim Rules and Claim Rule TemplatesUnderstanding Home Realm Discovery Understanding Claims and Claim Types Creating Claim Rules from TemplatesManaging Claims Across OrganizationsAfter Claim Rules and Claim Rule Templates Configuring AD FS in a Singlecompleting this module, students will be able Creating Claim Rules from Templates OrganizationAfter completing this module,to: Configuring AD FS in a Single students will be able to:Deploy AD FS 2.0 in a business-to-business OrganizationAfter completing this Define the certificate requirements for ADfederation. module, students will be able to: FS in a single organization.Configure an AD FS Claims Provider Trust. Define the certificate requirements for AD Discuss PKI certificate management forDescribe and configure the Home Realm FS in a single organization. AD FS.Discovery process. Discuss PKI certificate management for Configuring a Claims Provider TrustManage AD FS Claims and Federation Trust AD FS. Understanding Home Realm Discoveryrelationships across organizations. Configuring a Claims Provider Trust Managing Claims AcrossPlanning for High Availability Understanding Home Realm Discovery OrganizationsAfter completing this module,Additional AD FS Configuration Scenarios Managing Claims Across students will be able to:AD FS 2.0 and SAML InteroperabilityAfter OrganizationsAfter completing this Deploy AD FS 2.0 in acompleting this module, students will be able module, students will be able to: business-to-business federation.to: Deploy AD FS 2.0 in a Configure an AD FS Claims ProviderConfigure the AD FS 2.0 server in the business-to-business federation. Trust.Federation Server Proxy role. Configure an AD FS Claims Provider Describe and configure the Home RealmConfigure AD FS 2.0 for redundancy and Trust. Discovery process.high availability. Describe and configure the Home Realm Manage AD FS Claims and FederationDeploy AD FS 2.0 to provide interoperability Discovery process. Trust relationships across organizations.with SAML 2.0-compliant federation Manage AD FS Claims and Federation Planning for High Availabilitypartners. Trust relationships across organizations. Additional AD FS Configuration ScenariosIntroducing the Claims Rule LanguageAfter Planning for High Availability AD FS 2.0 and SAML InteroperabilityAftercompleting this module, students will be able Additional AD FS Configuration completing this module, students will beto: Scenarios able to:Describe the AD FS 2.0 Claims Pipeline and AD FS 2.0 and SAML Configure the AD FS 2.0 server in theClaims Engine processes. InteroperabilityAfter completing this Federation Server Proxy role.Create and configure custom claim rules module, students will be able to: Configure AD FS 2.0 for redundancy and


using the AD FS 2.0 claim rule language. Configure the AD FS 2.0 server in the high availability.AD FS Troubleshooting Federation Server Proxy role. Deploy AD FS 2.0 to provideTracing AD FS TrafficAfter completing this Configure AD FS 2.0 for redundancy and interoperability with SAML 2.0-compliantmodule, students will be able to: high availability. federation partners.Configure troubleshooting and security Deploy AD FS 2.0 to provide Introducing the Claims Rule LanguageAfterauditing for AD FS 2.0. interoperability with SAML 2.0-compliant completing this module, students will beUse built-in Windows tools to troubleshoot federation partners. able to:AD FS components and prerequisites. Introducing the Claims Rule Describe the AD FS 2.0 Claims PipelineTrace AD FS Web traffic for troubleshooting LanguageAfter completing this module, and Claims Engine processes.and configuration purposes. students will be able to: Create and configure custom claim rules

Describe the AD FS 2.0 Claims Pipeline using the AD FS 2.0 claim rule language.and Claims Engine processes. AD FS Troubleshooting

line Create and configure custom claim rules Tracing AD FS TrafficAfter completing thisExisting Solutions for Managing Identities using the AD FS 2.0 claim rule language. module, students will be able to:The Benefits of Claims-based Identity AD FS Troubleshooting Configure troubleshooting and securityThe Evolution of AD FS Tracing AD FS TrafficAfter completing auditing for AD FS 2.0.Use Cases for AD FS this module, students will be able to: Use built-in Windows tools to troubleshootAD FS and Claims-based TerminologyAfter Configure troubleshooting and security AD FS components and prerequisites.completing this module, students will be able auditing for AD FS 2.0. Trace AD FS Web traffic forto: Use built-in Windows tools to troubleshooting and configurationDiscuss and describe the Seven Laws of troubleshoot AD FS components and purposes.Identity, and how they pertain to managing prerequisites.identities for users and applications. Trace AD FS Web traffic forExamine existing solutions for managing troubleshooting and configuration lineidentities. purposes. Existing Solutions for Managing IdentitiesDescribe the benefits of the Claims-based The Benefits of Claims-based IdentityIdentity model. The Evolution of AD FSDiscuss the evolution of Active Directory line Use Cases for AD FSFederation Services (AD FS). Existing Solutions for Managing Identities AD FS and Claims-basedDescribe common use cases for AD FS. The Benefits of Claims-based Identity TerminologyAfter completing this module,Discuss common terminology used when The Evolution of AD FS students will be able to:working with AD FS and Claims-based Use Cases for AD FS Discuss and describe the Seven Laws ofIdentity. AD FS and Claims-based Identity, and how they pertain to managingIntroducing Directory Services TerminologyAfter completing this module, identities for users and applications.Active Directory and Active Directory students will be able to: Examine existing solutions for managingLightweight Directory Services Discuss and describe the Seven Laws of identities.Web Services, Standards, and Identity, and how they pertain to Describe the benefits of the Claims-basedInteroperability managing identities for users and Identity model.Internet Information ServicesAfter applications. Discuss the evolution of Active Directorycompleting this module, students will be able Examine existing solutions for managing Federation Services (AD FS).to: identities. Describe common use cases for AD FS.Identify the key Windows components Describe the benefits of the Discuss common terminology used whenrequired for AD FS. Claims-based Identity model. working with AD FS and Claims-basedDescribe the key characteristics of a Discuss the evolution of Active Directory Identity.Directory Service. Federation Services (AD FS). Introducing Directory ServicesDescribe the role Active Directory and AD Describe common use cases for AD FS. Active Directory and Active DirectoryLDS perform in an AD FS deployment. Discuss common terminology used when Lightweight Directory ServicesDescribe what is meant by the terms Web working with AD FS and Claims-based Web Services, Standards, andServices, WS-*, and Security Assertion Identity. InteroperabilityMarkup Language (SAML). Introducing Directory Services Internet Information ServicesAfterRecognize the role of IIS in a successful AD Active Directory and Active Directory completing this module, students will beFS deployment. Lightweight Directory Services able to:PKI Basics Web Services, Standards, and Identify the key Windows componentsIntroduction to Cryptography Interoperability required for AD FS.PKI Design Internet Information ServicesAfter Describe the key characteristics of aInstalling and Configuring Certificate completing this module, students will be Directory Service.ServicesAfter completing this module, able to: Describe the role Active Directory and ADstudents will be able to: Identify the key Windows components LDS perform in an AD FS deployment.Describe the concepts of a Public Key required for AD FS. Describe what is meant by the terms WebInfrastructure (PKI). Describe the key characteristics of a Services, WS-*, and Security AssertionDefine and discuss the basics of PKI. Directory Service. Markup Language (SAML).Describe symmetric key and public key Describe the role Active Directory and AD Recognize the role of IIS in a successfulcryptography. LDS perform in an AD FS deployment. AD FS deployment.Discuss options for PKI design. Describe what is meant by the terms PKI BasicsDescribe the steps needed to install and Web Services, WS-*, and Security Introduction to Cryptographyconfigure Certificate Services. Assertion Markup Language (SAML). PKI Design


Claims Types, Endpoints, and Attribute Recognize the role of IIS in a successful Installing and Configuring CertificateStores AD FS deployment. ServicesAfter completing this module,AD FS Security PKI Basics students will be able to:The Federation Server Proxy Role Introduction to Cryptography Describe the concepts of a Public KeyAdministering AD FS PKI Design Infrastructure (PKI).Windows Identity FoundationAfter Installing and Configuring Certificate Define and discuss the basics of PKI.completing this module, students will be able ServicesAfter completing this module, Describe symmetric key and public keyto: students will be able to: cryptography.Describe the role of the federation server in Describe the concepts of a Public Key Discuss options for PKI design.an AD FS 2.0 installation. Infrastructure (PKI). Describe the steps needed to install andUnderstand the importance of claims, claim Define and discuss the basics of PKI. configure Certificate Services.types, endpoints, and attribute stores for a Describe symmetric key and public key Claims Types, Endpoints, and Attributesuccessful AD FS implementation. cryptography. StoresDiscuss best practices for securing an AD Discuss options for PKI design. AD FS SecurityFS implementation, including the role of Describe the steps needed to install and The Federation Server Proxy RolePublic Key Infrastructure (PKI) certificates in configure Certificate Services. Administering AD FSsecuring the authentication and Claims Types, Endpoints, and Attribute Windows Identity FoundationAftercommunication process. Stores completing this module, students will beDescribe the role of the Federation Server AD FS Security able to:Proxy. The Federation Server Proxy Role Describe the role of the federation serverDescribe the methods available to Administering AD FS in an AD FS 2.0 installation.administer an AD FS server. Windows Identity FoundationAfter Understand the importance of claims,Understand the role of the Windows Identity completing this module, students will be claim types, endpoints, and attribute storesFoundation (WIF) in creating claims-based able to: for a successful AD FS implementation.applications. Describe the role of the federation server Discuss best practices for securing an ADAD FS Within a Single Organization in an AD FS 2.0 installation. FS implementation, including the role ofUnderstanding Claims and Claim Types Understand the importance of claims, Public Key Infrastructure (PKI) certificatesClaim Rules and Claim Rule Templates claim types, endpoints, and attribute in securing the authentication andCreating Claim Rules from Templates stores for a successful AD FS communication process.Configuring AD FS in a Single implementation. Describe the role of the Federation ServerOrganizationAfter completing this module, Discuss best practices for securing an Proxy.students will be able to: AD FS implementation, including the role Describe the methods available toDefine the certificate requirements for AD of Public Key Infrastructure (PKI) administer an AD FS server.FS in a single organization. certificates in securing the authentication Understand the role of the WindowsDiscuss PKI certificate management for AD and communication process. Identity Foundation (WIF) in creatingFS. Describe the role of the Federation claims-based applications.Configuring a Claims Provider Trust Server Proxy. AD FS Within a Single OrganizationUnderstanding Home Realm Discovery Describe the methods available to Understanding Claims and Claim TypesManaging Claims Across OrganizationsAfter administer an AD FS server. Claim Rules and Claim Rule Templatescompleting this module, students will be able Understand the role of the Windows Creating Claim Rules from Templatesto: Identity Foundation (WIF) in creating Configuring AD FS in a SingleDeploy AD FS 2.0 in a business-to-business claims-based applications. OrganizationAfter completing this module,federation. AD FS Within a Single Organization students will be able to:Configure an AD FS Claims Provider Trust. Understanding Claims and Claim Types Define the certificate requirements for ADDescribe and configure the Home Realm Claim Rules and Claim Rule Templates FS in a single organization.Discovery process. Creating Claim Rules from Templates Discuss PKI certificate management forManage AD FS Claims and Federation Trust Configuring AD FS in a Single AD FS.relationships across organizations. OrganizationAfter completing this Configuring a Claims Provider TrustPlanning for High Availability module, students will be able to: Understanding Home Realm DiscoveryAdditional AD FS Configuration Scenarios Define the certificate requirements for AD Managing Claims AcrossAD FS 2.0 and SAML InteroperabilityAfter FS in a single organization. OrganizationsAfter completing this module,completing this module, students will be able Discuss PKI certificate management for students will be able to:to: AD FS. Deploy AD FS 2.0 in aConfigure the AD FS 2.0 server in the Configuring a Claims Provider Trust business-to-business federation.Federation Server Proxy role. Understanding Home Realm Discovery Configure an AD FS Claims ProviderConfigure AD FS 2.0 for redundancy and Managing Claims Across Trust.high availability. OrganizationsAfter completing this Describe and configure the Home RealmDeploy AD FS 2.0 to provide interoperability module, students will be able to: Discovery process.with SAML 2.0-compliant federation Deploy AD FS 2.0 in a Manage AD FS Claims and Federationpartners. business-to-business federation. Trust relationships across organizations.Introducing the Claims Rule LanguageAfter Configure an AD FS Claims Provider Planning for High Availabilitycompleting this module, students will be able Trust. Additional AD FS Configuration Scenariosto: Describe and configure the Home Realm AD FS 2.0 and SAML InteroperabilityAfterDescribe the AD FS 2.0 Claims Pipeline and Discovery process. completing this module, students will beClaims Engine processes. Manage AD FS Claims and Federation able to:Create and configure custom claim rules Trust relationships across organizations. Configure the AD FS 2.0 server in the


using the AD FS 2.0 claim rule language. Planning for High Availability Federation Server Proxy role.AD FS Troubleshooting Additional AD FS Configuration Configure AD FS 2.0 for redundancy andTracing AD FS TrafficAfter completing this Scenarios high availability.module, students will be able to: AD FS 2.0 and SAML Deploy AD FS 2.0 to provideConfigure troubleshooting and security InteroperabilityAfter completing this interoperability with SAML 2.0-compliantauditing for AD FS 2.0. module, students will be able to: federation partners.Use built-in Windows tools to troubleshoot Configure the AD FS 2.0 server in the Introducing the Claims Rule LanguageAfterAD FS components and prerequisites. Federation Server Proxy role. completing this module, students will beTrace AD FS Web traffic for troubleshooting Configure AD FS 2.0 for redundancy and able to:and configuration purposes. high availability. Describe the AD FS 2.0 Claims Pipeline

Deploy AD FS 2.0 to provide and Claims Engine processes.interoperability with SAML 2.0-compliant Create and configure custom claim rules

line federation partners. using the AD FS 2.0 claim rule language.Existing Solutions for Managing Identities Introducing the Claims Rule AD FS TroubleshootingThe Benefits of Claims-based Identity LanguageAfter completing this module, Tracing AD FS TrafficAfter completing thisThe Evolution of AD FS students will be able to: module, students will be able to:Use Cases for AD FS Describe the AD FS 2.0 Claims Pipeline Configure troubleshooting and securityAD FS and Claims-based TerminologyAfter and Claims Engine processes. auditing for AD FS 2.0.completing this module, students will be able Create and configure custom claim rules Use built-in Windows tools to troubleshootto: using the AD FS 2.0 claim rule language. AD FS components and prerequisites.Discuss and describe the Seven Laws of AD FS Troubleshooting Trace AD FS Web traffic forIdentity, and how they pertain to managing Tracing AD FS TrafficAfter completing troubleshooting and configurationidentities for users and applications. this module, students will be able to: purposes.Examine existing solutions for managing Configure troubleshooting and securityidentities. auditing for AD FS 2.0.Describe the benefits of the Claims-based Use built-in Windows tools to lineIdentity model. troubleshoot AD FS components and Existing Solutions for Managing IdentitiesDiscuss the evolution of Active Directory prerequisites. The Benefits of Claims-based IdentityFederation Services (AD FS). Trace AD FS Web traffic for The Evolution of AD FSDescribe common use cases for AD FS. troubleshooting and configuration Use Cases for AD FSDiscuss common terminology used when purposes. AD FS and Claims-basedworking with AD FS and Claims-based TerminologyAfter completing this module,Identity. students will be able to:Introducing Directory Services line Discuss and describe the Seven Laws ofActive Directory and Active Directory Existing Solutions for Managing Identities Identity, and how they pertain to managingLightweight Directory Services The Benefits of Claims-based Identity identities for users and applications.Web Services, Standards, and The Evolution of AD FS Examine existing solutions for managingInteroperability Use Cases for AD FS identities.Internet Information ServicesAfter AD FS and Claims-based Describe the benefits of the Claims-basedcompleting this module, students will be able TerminologyAfter completing this module, Identity model.to: students will be able to: Discuss the evolution of Active DirectoryIdentify the key Windows components Discuss and describe the Seven Laws of Federation Services (AD FS).required for AD FS. Identity, and how they pertain to Describe common use cases for AD FS.Describe the key characteristics of a managing identities for users and Discuss common terminology used whenDirectory Service. applications. working with AD FS and Claims-basedDescribe the role Active Directory and AD Examine existing solutions for managing Identity.LDS perform in an AD FS deployment. identities. Introducing Directory ServicesDescribe what is meant by the terms Web Describe the benefits of the Active Directory and Active DirectoryServices, WS-*, and Security Assertion Claims-based Identity model. Lightweight Directory ServicesMarkup Language (SAML). Discuss the evolution of Active Directory Web Services, Standards, andRecognize the role of IIS in a successful AD Federation Services (AD FS). InteroperabilityFS deployment. Describe common use cases for AD FS. Internet Information ServicesAfterPKI Basics Discuss common terminology used when completing this module, students will beIntroduction to Cryptography working with AD FS and Claims-based able to:PKI Design Identity. Identify the key Windows componentsInstalling and Configuring Certificate Introducing Directory Services required for AD FS.ServicesAfter completing this module, Active Directory and Active Directory Describe the key characteristics of astudents will be able to: Lightweight Directory Services Directory Service.Describe the concepts of a Public Key Web Services, Standards, and Describe the role Active Directory and ADInfrastructure (PKI). Interoperability LDS perform in an AD FS deployment.Define and discuss the basics of PKI. Internet Information ServicesAfter Describe what is meant by the terms WebDescribe symmetric key and public key completing this module, students will be Services, WS-*, and Security Assertioncryptography. able to: Markup Language (SAML).Discuss options for PKI design. Identify the key Windows components Recognize the role of IIS in a successfulDescribe the steps needed to install and required for AD FS. AD FS deployment.configure Certificate Services. Describe the key characteristics of a PKI Basics


Claims Types, Endpoints, and Attribute Directory Service. Introduction to CryptographyStores Describe the role Active Directory and AD PKI DesignAD FS Security LDS perform in an AD FS deployment. Installing and Configuring CertificateThe Federation Server Proxy Role Describe what is meant by the terms ServicesAfter completing this module,Administering AD FS Web Services, WS-*, and Security students will be able to:Windows Identity FoundationAfter Assertion Markup Language (SAML). Describe the concepts of a Public Keycompleting this module, students will be able Recognize the role of IIS in a successful Infrastructure (PKI).to: AD FS deployment. Define and discuss the basics of PKI.Describe the role of the federation server in PKI Basics Describe symmetric key and public keyan AD FS 2.0 installation. Introduction to Cryptography cryptography.Understand the importance of claims, claim PKI Design Discuss options for PKI design.types, endpoints, and attribute stores for a Installing and Configuring Certificate Describe the steps needed to install andsuccessful AD FS implementation. ServicesAfter completing this module, configure Certificate Services.Discuss best practices for securing an AD students will be able to: Claims Types, Endpoints, and AttributeFS implementation, including the role of Describe the concepts of a Public Key StoresPublic Key Infrastructure (PKI) certificates in Infrastructure (PKI). AD FS Securitysecuring the authentication and Define and discuss the basics of PKI. The Federation Server Proxy Rolecommunication process. Describe symmetric key and public key Administering AD FSDescribe the role of the Federation Server cryptography. Windows Identity FoundationAfterProxy. Discuss options for PKI design. completing this module, students will beDescribe the methods available to Describe the steps needed to install and able to:administer an AD FS server. configure Certificate Services. Describe the role of the federation serverUnderstand the role of the Windows Identity Claims Types, Endpoints, and Attribute in an AD FS 2.0 installation.Foundation (WIF) in creating claims-based Stores Understand the importance of claims,applications. AD FS Security claim types, endpoints, and attribute storesAD FS Within a Single Organization The Federation Server Proxy Role for a successful AD FS implementation.Understanding Claims and Claim Types Administering AD FS Discuss best practices for securing an ADClaim Rules and Claim Rule Templates Windows Identity FoundationAfter FS implementation, including the role ofCreating Claim Rules from Templates completing this module, students will be Public Key Infrastructure (PKI) certificatesConfiguring AD FS in a Single able to: in securing the authentication andOrganizationAfter completing this module, Describe the role of the federation server communication process.students will be able to: in an AD FS 2.0 installation. Describe the role of the Federation ServerDefine the certificate requirements for AD Understand the importance of claims, Proxy.FS in a single organization. claim types, endpoints, and attribute Describe the methods available toDiscuss PKI certificate management for AD stores for a successful AD FS administer an AD FS server.FS. implementation. Understand the role of the WindowsConfiguring a Claims Provider Trust Discuss best practices for securing an Identity Foundation (WIF) in creatingUnderstanding Home Realm Discovery AD FS implementation, including the role claims-based applications.Managing Claims Across OrganizationsAfter of Public Key Infrastructure (PKI) AD FS Within a Single Organizationcompleting this module, students will be able certificates in securing the authentication Understanding Claims and Claim Typesto: and communication process. Claim Rules and Claim Rule TemplatesDeploy AD FS 2.0 in a business-to-business Describe the role of the Federation Creating Claim Rules from Templatesfederation. Server Proxy. Configuring AD FS in a SingleConfigure an AD FS Claims Provider Trust. Describe the methods available to OrganizationAfter completing this module,Describe and configure the Home Realm administer an AD FS server. students will be able to:Discovery process. Understand the role of the Windows Define the certificate requirements for ADManage AD FS Claims and Federation Trust Identity Foundation (WIF) in creating FS in a single organization.relationships across organizations. claims-based applications. Discuss PKI certificate management forPlanning for High Availability AD FS Within a Single Organization AD FS.Additional AD FS Configuration Scenarios Understanding Claims and Claim Types Configuring a Claims Provider TrustAD FS 2.0 and SAML InteroperabilityAfter Claim Rules and Claim Rule Templates Understanding Home Realm Discoverycompleting this module, students will be able Creating Claim Rules from Templates Managing Claims Acrossto: Configuring AD FS in a Single OrganizationsAfter completing this module,Configure the AD FS 2.0 server in the OrganizationAfter completing this students will be able to:Federation Server Proxy role. module, students will be able to: Deploy AD FS 2.0 in aConfigure AD FS 2.0 for redundancy and Define the certificate requirements for AD business-to-business federation.high availability. FS in a single organization. Configure an AD FS Claims ProviderDeploy AD FS 2.0 to provide interoperability Discuss PKI certificate management for Trust.with SAML 2.0-compliant federation AD FS. Describe and configure the Home Realmpartners. Configuring a Claims Provider Trust Discovery process.Introducing the Claims Rule LanguageAfter Understanding Home Realm Discovery Manage AD FS Claims and Federationcompleting this module, students will be able Managing Claims Across Trust relationships across organizations.to: OrganizationsAfter completing this Planning for High AvailabilityDescribe the AD FS 2.0 Claims Pipeline and module, students will be able to: Additional AD FS Configuration ScenariosClaims Engine processes. Deploy AD FS 2.0 in a AD FS 2.0 and SAML InteroperabilityAfterCreate and configure custom claim rules business-to-business federation. completing this module, students will be


using the AD FS 2.0 claim rule language. Configure an AD FS Claims Provider able to:AD FS Troubleshooting Trust. Configure the AD FS 2.0 server in theTracing AD FS TrafficAfter completing this Describe and configure the Home Realm Federation Server Proxy role.module, students will be able to: Discovery process. Configure AD FS 2.0 for redundancy andConfigure troubleshooting and security Manage AD FS Claims and Federation high availability.auditing for AD FS 2.0. Trust relationships across organizations. Deploy AD FS 2.0 to provideUse built-in Windows tools to troubleshoot Planning for High Availability interoperability with SAML 2.0-compliantAD FS components and prerequisites. Additional AD FS Configuration federation partners.Trace AD FS Web traffic for troubleshooting Scenarios Introducing the Claims Rule LanguageAfterand configuration purposes. AD FS 2.0 and SAML completing this module, students will be

InteroperabilityAfter completing this able to:module, students will be able to: Describe the AD FS 2.0 Claims Pipeline

line Configure the AD FS 2.0 server in the and Claims Engine processes.Existing Solutions for Managing Identities Federation Server Proxy role. Create and configure custom claim rulesThe Benefits of Claims-based Identity Configure AD FS 2.0 for redundancy and using the AD FS 2.0 claim rule language.The Evolution of AD FS high availability. AD FS TroubleshootingUse Cases for AD FS Deploy AD FS 2.0 to provide Tracing AD FS TrafficAfter completing thisAD FS and Claims-based TerminologyAfter interoperability with SAML 2.0-compliant module, students will be able to:completing this module, students will be able federation partners. Configure troubleshooting and securityto: Introducing the Claims Rule auditing for AD FS 2.0.Discuss and describe the Seven Laws of LanguageAfter completing this module, Use built-in Windows tools to troubleshootIdentity, and how they pertain to managing students will be able to: AD FS components and prerequisites.identities for users and applications. Describe the AD FS 2.0 Claims Pipeline Trace AD FS Web traffic forExamine existing solutions for managing and Claims Engine processes. troubleshooting and configurationidentities. Create and configure custom claim rules purposes.Describe the benefits of the Claims-based using the AD FS 2.0 claim rule language.Identity model. AD FS Troubleshooting Module 7: Advanced AD FS DeploymentDiscuss the evolution of Active Directory Tracing AD FS TrafficAfter completing Scenarios Federation Services (AD FS). this module, students will be able to: lineDescribe common use cases for AD FS. Configure troubleshooting and securityDiscuss common terminology used when auditing for AD FS 2.0. This module explains how to deploy an AD FSworking with AD FS and Claims-based Use built-in Windows tools to server as a federation server proxy. It alsoIdentity. troubleshoot AD FS components and explains how to design an AD FS deploymentIntroducing Directory Services prerequisites. to create a high-availability configuration, andActive Directory and Active Directory Trace AD FS Web traffic for how to configure AD FS 2.0 to achieveLightweight Directory Services troubleshooting and configuration interoperability with SAML 2.0-compatibleWeb Services, Standards, and purposes. products and applications.Interoperability lineInternet Information ServicesAfter Module 4: AD FS 2.0 Components Implementing the Federation Server Proxycompleting this module, students will be able lineto:Identify the key Windows components This module explains how to install and linerequired for AD FS. configure the Windows Identity Foundation Existing Solutions for Managing IdentitiesDescribe the key characteristics of a (WIF), and how to install the ADFS 2.0 The Benefits of Claims-based IdentityDirectory Service. service in the federation server role. The Evolution of AD FSDescribe the role Active Directory and AD line Use Cases for AD FSLDS perform in an AD FS deployment. The Federation Server Role AD FS and Claims-basedDescribe what is meant by the terms Web TerminologyAfter completing this module,Services, WS-*, and Security Assertion students will be able to:Markup Language (SAML). line Discuss and describe the Seven Laws ofRecognize the role of IIS in a successful AD Existing Solutions for Managing Identities Identity, and how they pertain to managingFS deployment. The Benefits of Claims-based Identity identities for users and applications.PKI Basics The Evolution of AD FS Examine existing solutions for managingIntroduction to Cryptography Use Cases for AD FS identities.PKI Design AD FS and Claims-based Describe the benefits of the Claims-basedInstalling and Configuring Certificate TerminologyAfter completing this module, Identity model.ServicesAfter completing this module, students will be able to: Discuss the evolution of Active Directorystudents will be able to: Discuss and describe the Seven Laws of Federation Services (AD FS).Describe the concepts of a Public Key Identity, and how they pertain to Describe common use cases for AD FS.Infrastructure (PKI). managing identities for users and Discuss common terminology used whenDefine and discuss the basics of PKI. applications. working with AD FS and Claims-basedDescribe symmetric key and public key Examine existing solutions for managing Identity.cryptography. identities. Introducing Directory ServicesDiscuss options for PKI design. Describe the benefits of the Active Directory and Active DirectoryDescribe the steps needed to install and Claims-based Identity model. Lightweight Directory Servicesconfigure Certificate Services. Discuss the evolution of Active Directory Web Services, Standards, and


Claims Types, Endpoints, and Attribute Federation Services (AD FS). InteroperabilityStores Describe common use cases for AD FS. Internet Information ServicesAfterAD FS Security Discuss common terminology used when completing this module, students will beThe Federation Server Proxy Role working with AD FS and Claims-based able to:Administering AD FS Identity. Identify the key Windows componentsWindows Identity FoundationAfter Introducing Directory Services required for AD FS.completing this module, students will be able Active Directory and Active Directory Describe the key characteristics of ato: Lightweight Directory Services Directory Service.Describe the role of the federation server in Web Services, Standards, and Describe the role Active Directory and ADan AD FS 2.0 installation. Interoperability LDS perform in an AD FS deployment.Understand the importance of claims, claim Internet Information ServicesAfter Describe what is meant by the terms Webtypes, endpoints, and attribute stores for a completing this module, students will be Services, WS-*, and Security Assertionsuccessful AD FS implementation. able to: Markup Language (SAML).Discuss best practices for securing an AD Identify the key Windows components Recognize the role of IIS in a successfulFS implementation, including the role of required for AD FS. AD FS deployment.Public Key Infrastructure (PKI) certificates in Describe the key characteristics of a PKI Basicssecuring the authentication and Directory Service. Introduction to Cryptographycommunication process. Describe the role Active Directory and AD PKI DesignDescribe the role of the Federation Server LDS perform in an AD FS deployment. Installing and Configuring CertificateProxy. Describe what is meant by the terms ServicesAfter completing this module,Describe the methods available to Web Services, WS-*, and Security students will be able to:administer an AD FS server. Assertion Markup Language (SAML). Describe the concepts of a Public KeyUnderstand the role of the Windows Identity Recognize the role of IIS in a successful Infrastructure (PKI).Foundation (WIF) in creating claims-based AD FS deployment. Define and discuss the basics of PKI.applications. PKI Basics Describe symmetric key and public keyAD FS Within a Single Organization Introduction to Cryptography cryptography.Understanding Claims and Claim Types PKI Design Discuss options for PKI design.Claim Rules and Claim Rule Templates Installing and Configuring Certificate Describe the steps needed to install andCreating Claim Rules from Templates ServicesAfter completing this module, configure Certificate Services.Configuring AD FS in a Single students will be able to: Claims Types, Endpoints, and AttributeOrganizationAfter completing this module, Describe the concepts of a Public Key Storesstudents will be able to: Infrastructure (PKI). AD FS SecurityDefine the certificate requirements for AD Define and discuss the basics of PKI. The Federation Server Proxy RoleFS in a single organization. Describe symmetric key and public key Administering AD FSDiscuss PKI certificate management for AD cryptography. Windows Identity FoundationAfterFS. Discuss options for PKI design. completing this module, students will beConfiguring a Claims Provider Trust Describe the steps needed to install and able to:Understanding Home Realm Discovery configure Certificate Services. Describe the role of the federation serverManaging Claims Across OrganizationsAfter Claims Types, Endpoints, and Attribute in an AD FS 2.0 installation.completing this module, students will be able Stores Understand the importance of claims,to: AD FS Security claim types, endpoints, and attribute storesDeploy AD FS 2.0 in a business-to-business The Federation Server Proxy Role for a successful AD FS implementation.federation. Administering AD FS Discuss best practices for securing an ADConfigure an AD FS Claims Provider Trust. Windows Identity FoundationAfter FS implementation, including the role ofDescribe and configure the Home Realm completing this module, students will be Public Key Infrastructure (PKI) certificatesDiscovery process. able to: in securing the authentication andManage AD FS Claims and Federation Trust Describe the role of the federation server communication process.relationships across organizations. in an AD FS 2.0 installation. Describe the role of the Federation ServerPlanning for High Availability Understand the importance of claims, Proxy.Additional AD FS Configuration Scenarios claim types, endpoints, and attribute Describe the methods available toAD FS 2.0 and SAML InteroperabilityAfter stores for a successful AD FS administer an AD FS server.completing this module, students will be able implementation. Understand the role of the Windowsto: Discuss best practices for securing an Identity Foundation (WIF) in creatingConfigure the AD FS 2.0 server in the AD FS implementation, including the role claims-based applications.Federation Server Proxy role. of Public Key Infrastructure (PKI) AD FS Within a Single OrganizationConfigure AD FS 2.0 for redundancy and certificates in securing the authentication Understanding Claims and Claim Typeshigh availability. and communication process. Claim Rules and Claim Rule TemplatesDeploy AD FS 2.0 to provide interoperability Describe the role of the Federation Creating Claim Rules from Templateswith SAML 2.0-compliant federation Server Proxy. Configuring AD FS in a Singlepartners. Describe the methods available to OrganizationAfter completing this module,Introducing the Claims Rule LanguageAfter administer an AD FS server. students will be able to:completing this module, students will be able Understand the role of the Windows Define the certificate requirements for ADto: Identity Foundation (WIF) in creating FS in a single organization.Describe the AD FS 2.0 Claims Pipeline and claims-based applications. Discuss PKI certificate management forClaims Engine processes. AD FS Within a Single Organization AD FS.Create and configure custom claim rules Understanding Claims and Claim Types Configuring a Claims Provider Trust


using the AD FS 2.0 claim rule language. Claim Rules and Claim Rule Templates Understanding Home Realm DiscoveryAD FS Troubleshooting Creating Claim Rules from Templates Managing Claims AcrossTracing AD FS TrafficAfter completing this Configuring AD FS in a Single OrganizationsAfter completing this module,module, students will be able to: OrganizationAfter completing this students will be able to:Configure troubleshooting and security module, students will be able to: Deploy AD FS 2.0 in aauditing for AD FS 2.0. Define the certificate requirements for AD business-to-business federation.Use built-in Windows tools to troubleshoot FS in a single organization. Configure an AD FS Claims ProviderAD FS components and prerequisites. Discuss PKI certificate management for Trust.Trace AD FS Web traffic for troubleshooting AD FS. Describe and configure the Home Realmand configuration purposes. Configuring a Claims Provider Trust Discovery process.

Understanding Home Realm Discovery Manage AD FS Claims and FederationManaging Claims Across Trust relationships across organizations.

line OrganizationsAfter completing this Planning for High AvailabilityExisting Solutions for Managing Identities module, students will be able to: Additional AD FS Configuration ScenariosThe Benefits of Claims-based Identity Deploy AD FS 2.0 in a AD FS 2.0 and SAML InteroperabilityAfterThe Evolution of AD FS business-to-business federation. completing this module, students will beUse Cases for AD FS Configure an AD FS Claims Provider able to:AD FS and Claims-based TerminologyAfter Trust. Configure the AD FS 2.0 server in thecompleting this module, students will be able Describe and configure the Home Realm Federation Server Proxy role.to: Discovery process. Configure AD FS 2.0 for redundancy andDiscuss and describe the Seven Laws of Manage AD FS Claims and Federation high availability.Identity, and how they pertain to managing Trust relationships across organizations. Deploy AD FS 2.0 to provideidentities for users and applications. Planning for High Availability interoperability with SAML 2.0-compliantExamine existing solutions for managing Additional AD FS Configuration federation partners.identities. Scenarios Introducing the Claims Rule LanguageAfterDescribe the benefits of the Claims-based AD FS 2.0 and SAML completing this module, students will beIdentity model. InteroperabilityAfter completing this able to:Discuss the evolution of Active Directory module, students will be able to: Describe the AD FS 2.0 Claims PipelineFederation Services (AD FS). Configure the AD FS 2.0 server in the and Claims Engine processes.Describe common use cases for AD FS. Federation Server Proxy role. Create and configure custom claim rulesDiscuss common terminology used when Configure AD FS 2.0 for redundancy and using the AD FS 2.0 claim rule language.working with AD FS and Claims-based high availability. AD FS TroubleshootingIdentity. Deploy AD FS 2.0 to provide Tracing AD FS TrafficAfter completing thisIntroducing Directory Services interoperability with SAML 2.0-compliant module, students will be able to:Active Directory and Active Directory federation partners. Configure troubleshooting and securityLightweight Directory Services Introducing the Claims Rule auditing for AD FS 2.0.Web Services, Standards, and LanguageAfter completing this module, Use built-in Windows tools to troubleshootInteroperability students will be able to: AD FS components and prerequisites.Internet Information ServicesAfter Describe the AD FS 2.0 Claims Pipeline Trace AD FS Web traffic forcompleting this module, students will be able and Claims Engine processes. troubleshooting and configurationto: Create and configure custom claim rules purposes.Identify the key Windows components using the AD FS 2.0 claim rule language.required for AD FS. AD FS TroubleshootingDescribe the key characteristics of a Tracing AD FS TrafficAfter completing lineDirectory Service. this module, students will be able to: Existing Solutions for Managing IdentitiesDescribe the role Active Directory and AD Configure troubleshooting and security The Benefits of Claims-based IdentityLDS perform in an AD FS deployment. auditing for AD FS 2.0. The Evolution of AD FSDescribe what is meant by the terms Web Use built-in Windows tools to Use Cases for AD FSServices, WS-*, and Security Assertion troubleshoot AD FS components and AD FS and Claims-basedMarkup Language (SAML). prerequisites. TerminologyAfter completing this module,Recognize the role of IIS in a successful AD Trace AD FS Web traffic for students will be able to:FS deployment. troubleshooting and configuration Discuss and describe the Seven Laws ofPKI Basics purposes. Identity, and how they pertain to managingIntroduction to Cryptography identities for users and applications.PKI Design Examine existing solutions for managingInstalling and Configuring Certificate line identities.ServicesAfter completing this module, Existing Solutions for Managing Identities Describe the benefits of the Claims-basedstudents will be able to: The Benefits of Claims-based Identity Identity model.Describe the concepts of a Public Key The Evolution of AD FS Discuss the evolution of Active DirectoryInfrastructure (PKI). Use Cases for AD FS Federation Services (AD FS).Define and discuss the basics of PKI. AD FS and Claims-based Describe common use cases for AD FS.Describe symmetric key and public key TerminologyAfter completing this module, Discuss common terminology used whencryptography. students will be able to: working with AD FS and Claims-basedDiscuss options for PKI design. Discuss and describe the Seven Laws of Identity.Describe the steps needed to install and Identity, and how they pertain to Introducing Directory Servicesconfigure Certificate Services. managing identities for users and Active Directory and Active Directory


Claims Types, Endpoints, and Attribute applications. Lightweight Directory ServicesStores Examine existing solutions for managing Web Services, Standards, andAD FS Security identities. InteroperabilityThe Federation Server Proxy Role Describe the benefits of the Internet Information ServicesAfterAdministering AD FS Claims-based Identity model. completing this module, students will beWindows Identity FoundationAfter Discuss the evolution of Active Directory able to:completing this module, students will be able Federation Services (AD FS). Identify the key Windows componentsto: Describe common use cases for AD FS. required for AD FS.Describe the role of the federation server in Discuss common terminology used when Describe the key characteristics of aan AD FS 2.0 installation. working with AD FS and Claims-based Directory Service.Understand the importance of claims, claim Identity. Describe the role Active Directory and ADtypes, endpoints, and attribute stores for a Introducing Directory Services LDS perform in an AD FS deployment.successful AD FS implementation. Active Directory and Active Directory Describe what is meant by the terms WebDiscuss best practices for securing an AD Lightweight Directory Services Services, WS-*, and Security AssertionFS implementation, including the role of Web Services, Standards, and Markup Language (SAML).Public Key Infrastructure (PKI) certificates in Interoperability Recognize the role of IIS in a successfulsecuring the authentication and Internet Information ServicesAfter AD FS deployment.communication process. completing this module, students will be PKI BasicsDescribe the role of the Federation Server able to: Introduction to CryptographyProxy. Identify the key Windows components PKI DesignDescribe the methods available to required for AD FS. Installing and Configuring Certificateadminister an AD FS server. Describe the key characteristics of a ServicesAfter completing this module,Understand the role of the Windows Identity Directory Service. students will be able to:Foundation (WIF) in creating claims-based Describe the role Active Directory and AD Describe the concepts of a Public Keyapplications. LDS perform in an AD FS deployment. Infrastructure (PKI).AD FS Within a Single Organization Describe what is meant by the terms Define and discuss the basics of PKI.Understanding Claims and Claim Types Web Services, WS-*, and Security Describe symmetric key and public keyClaim Rules and Claim Rule Templates Assertion Markup Language (SAML). cryptography.Creating Claim Rules from Templates Recognize the role of IIS in a successful Discuss options for PKI design.Configuring AD FS in a Single AD FS deployment. Describe the steps needed to install andOrganizationAfter completing this module, PKI Basics configure Certificate Services.students will be able to: Introduction to Cryptography Claims Types, Endpoints, and AttributeDefine the certificate requirements for AD PKI Design StoresFS in a single organization. Installing and Configuring Certificate AD FS SecurityDiscuss PKI certificate management for AD ServicesAfter completing this module, The Federation Server Proxy RoleFS. students will be able to: Administering AD FSConfiguring a Claims Provider Trust Describe the concepts of a Public Key Windows Identity FoundationAfterUnderstanding Home Realm Discovery Infrastructure (PKI). completing this module, students will beManaging Claims Across OrganizationsAfter Define and discuss the basics of PKI. able to:completing this module, students will be able Describe symmetric key and public key Describe the role of the federation serverto: cryptography. in an AD FS 2.0 installation.Deploy AD FS 2.0 in a business-to-business Discuss options for PKI design. Understand the importance of claims,federation. Describe the steps needed to install and claim types, endpoints, and attribute storesConfigure an AD FS Claims Provider Trust. configure Certificate Services. for a successful AD FS implementation.Describe and configure the Home Realm Claims Types, Endpoints, and Attribute Discuss best practices for securing an ADDiscovery process. Stores FS implementation, including the role ofManage AD FS Claims and Federation Trust AD FS Security Public Key Infrastructure (PKI) certificatesrelationships across organizations. The Federation Server Proxy Role in securing the authentication andPlanning for High Availability Administering AD FS communication process.Additional AD FS Configuration Scenarios Windows Identity FoundationAfter Describe the role of the Federation ServerAD FS 2.0 and SAML InteroperabilityAfter completing this module, students will be Proxy.completing this module, students will be able able to: Describe the methods available toto: Describe the role of the federation server administer an AD FS server.Configure the AD FS 2.0 server in the in an AD FS 2.0 installation. Understand the role of the WindowsFederation Server Proxy role. Understand the importance of claims, Identity Foundation (WIF) in creatingConfigure AD FS 2.0 for redundancy and claim types, endpoints, and attribute claims-based applications.high availability. stores for a successful AD FS AD FS Within a Single OrganizationDeploy AD FS 2.0 to provide interoperability implementation. Understanding Claims and Claim Typeswith SAML 2.0-compliant federation Discuss best practices for securing an Claim Rules and Claim Rule Templatespartners. AD FS implementation, including the role Creating Claim Rules from TemplatesIntroducing the Claims Rule LanguageAfter of Public Key Infrastructure (PKI) Configuring AD FS in a Singlecompleting this module, students will be able certificates in securing the authentication OrganizationAfter completing this module,to: and communication process. students will be able to:Describe the AD FS 2.0 Claims Pipeline and Describe the role of the Federation Define the certificate requirements for ADClaims Engine processes. Server Proxy. FS in a single organization.Create and configure custom claim rules Describe the methods available to Discuss PKI certificate management for


using the AD FS 2.0 claim rule language. administer an AD FS server. AD FS.AD FS Troubleshooting Understand the role of the Windows Configuring a Claims Provider TrustTracing AD FS TrafficAfter completing this Identity Foundation (WIF) in creating Understanding Home Realm Discoverymodule, students will be able to: claims-based applications. Managing Claims AcrossConfigure troubleshooting and security AD FS Within a Single Organization OrganizationsAfter completing this module,auditing for AD FS 2.0. Understanding Claims and Claim Types students will be able to:Use built-in Windows tools to troubleshoot Claim Rules and Claim Rule Templates Deploy AD FS 2.0 in aAD FS components and prerequisites. Creating Claim Rules from Templates business-to-business federation.Trace AD FS Web traffic for troubleshooting Configuring AD FS in a Single Configure an AD FS Claims Providerand configuration purposes. OrganizationAfter completing this Trust.

module, students will be able to: Describe and configure the Home RealmDefine the certificate requirements for AD Discovery process.

line FS in a single organization. Manage AD FS Claims and FederationExisting Solutions for Managing Identities Discuss PKI certificate management for Trust relationships across organizations.The Benefits of Claims-based Identity AD FS. Planning for High AvailabilityThe Evolution of AD FS Configuring a Claims Provider Trust Additional AD FS Configuration ScenariosUse Cases for AD FS Understanding Home Realm Discovery AD FS 2.0 and SAML InteroperabilityAfterAD FS and Claims-based TerminologyAfter Managing Claims Across completing this module, students will becompleting this module, students will be able OrganizationsAfter completing this able to:to: module, students will be able to: Configure the AD FS 2.0 server in theDiscuss and describe the Seven Laws of Deploy AD FS 2.0 in a Federation Server Proxy role.Identity, and how they pertain to managing business-to-business federation. Configure AD FS 2.0 for redundancy andidentities for users and applications. Configure an AD FS Claims Provider high availability.Examine existing solutions for managing Trust. Deploy AD FS 2.0 to provideidentities. Describe and configure the Home Realm interoperability with SAML 2.0-compliantDescribe the benefits of the Claims-based Discovery process. federation partners.Identity model. Manage AD FS Claims and Federation Introducing the Claims Rule LanguageAfterDiscuss the evolution of Active Directory Trust relationships across organizations. completing this module, students will beFederation Services (AD FS). Planning for High Availability able to:Describe common use cases for AD FS. Additional AD FS Configuration Describe the AD FS 2.0 Claims PipelineDiscuss common terminology used when Scenarios and Claims Engine processes.working with AD FS and Claims-based AD FS 2.0 and SAML Create and configure custom claim rulesIdentity. InteroperabilityAfter completing this using the AD FS 2.0 claim rule language.Introducing Directory Services module, students will be able to: AD FS TroubleshootingActive Directory and Active Directory Configure the AD FS 2.0 server in the Tracing AD FS TrafficAfter completing thisLightweight Directory Services Federation Server Proxy role. module, students will be able to:Web Services, Standards, and Configure AD FS 2.0 for redundancy and Configure troubleshooting and securityInteroperability high availability. auditing for AD FS 2.0.Internet Information ServicesAfter Deploy AD FS 2.0 to provide Use built-in Windows tools to troubleshootcompleting this module, students will be able interoperability with SAML 2.0-compliant AD FS components and prerequisites.to: federation partners. Trace AD FS Web traffic forIdentify the key Windows components Introducing the Claims Rule troubleshooting and configurationrequired for AD FS. LanguageAfter completing this module, purposes.Describe the key characteristics of a students will be able to:Directory Service. Describe the AD FS 2.0 Claims PipelineDescribe the role Active Directory and AD and Claims Engine processes. lineLDS perform in an AD FS deployment. Create and configure custom claim rules Existing Solutions for Managing IdentitiesDescribe what is meant by the terms Web using the AD FS 2.0 claim rule language. The Benefits of Claims-based IdentityServices, WS-*, and Security Assertion AD FS Troubleshooting The Evolution of AD FSMarkup Language (SAML). Tracing AD FS TrafficAfter completing Use Cases for AD FSRecognize the role of IIS in a successful AD this module, students will be able to: AD FS and Claims-basedFS deployment. Configure troubleshooting and security TerminologyAfter completing this module,PKI Basics auditing for AD FS 2.0. students will be able to:Introduction to Cryptography Use built-in Windows tools to Discuss and describe the Seven Laws ofPKI Design troubleshoot AD FS components and Identity, and how they pertain to managingInstalling and Configuring Certificate prerequisites. identities for users and applications.ServicesAfter completing this module, Trace AD FS Web traffic for Examine existing solutions for managingstudents will be able to: troubleshooting and configuration identities.Describe the concepts of a Public Key purposes. Describe the benefits of the Claims-basedInfrastructure (PKI). Identity model.Define and discuss the basics of PKI. Discuss the evolution of Active DirectoryDescribe symmetric key and public key line Federation Services (AD FS).cryptography. Existing Solutions for Managing Identities Describe common use cases for AD FS.Discuss options for PKI design. The Benefits of Claims-based Identity Discuss common terminology used whenDescribe the steps needed to install and The Evolution of AD FS working with AD FS and Claims-basedconfigure Certificate Services. Use Cases for AD FS Identity.


Claims Types, Endpoints, and Attribute AD FS and Claims-based Introducing Directory ServicesStores TerminologyAfter completing this module, Active Directory and Active DirectoryAD FS Security students will be able to: Lightweight Directory ServicesThe Federation Server Proxy Role Discuss and describe the Seven Laws of Web Services, Standards, andAdministering AD FS Identity, and how they pertain to InteroperabilityWindows Identity FoundationAfter managing identities for users and Internet Information ServicesAftercompleting this module, students will be able applications. completing this module, students will beto: Examine existing solutions for managing able to:Describe the role of the federation server in identities. Identify the key Windows componentsan AD FS 2.0 installation. Describe the benefits of the required for AD FS.Understand the importance of claims, claim Claims-based Identity model. Describe the key characteristics of atypes, endpoints, and attribute stores for a Discuss the evolution of Active Directory Directory Service.successful AD FS implementation. Federation Services (AD FS). Describe the role Active Directory and ADDiscuss best practices for securing an AD Describe common use cases for AD FS. LDS perform in an AD FS deployment.FS implementation, including the role of Discuss common terminology used when Describe what is meant by the terms WebPublic Key Infrastructure (PKI) certificates in working with AD FS and Claims-based Services, WS-*, and Security Assertionsecuring the authentication and Identity. Markup Language (SAML).communication process. Introducing Directory Services Recognize the role of IIS in a successfulDescribe the role of the Federation Server Active Directory and Active Directory AD FS deployment.Proxy. Lightweight Directory Services PKI BasicsDescribe the methods available to Web Services, Standards, and Introduction to Cryptographyadminister an AD FS server. Interoperability PKI DesignUnderstand the role of the Windows Identity Internet Information ServicesAfter Installing and Configuring CertificateFoundation (WIF) in creating claims-based completing this module, students will be ServicesAfter completing this module,applications. able to: students will be able to:AD FS Within a Single Organization Identify the key Windows components Describe the concepts of a Public KeyUnderstanding Claims and Claim Types required for AD FS. Infrastructure (PKI).Claim Rules and Claim Rule Templates Describe the key characteristics of a Define and discuss the basics of PKI.Creating Claim Rules from Templates Directory Service. Describe symmetric key and public keyConfiguring AD FS in a Single Describe the role Active Directory and AD cryptography.OrganizationAfter completing this module, LDS perform in an AD FS deployment. Discuss options for PKI design.students will be able to: Describe what is meant by the terms Describe the steps needed to install andDefine the certificate requirements for AD Web Services, WS-*, and Security configure Certificate Services.FS in a single organization. Assertion Markup Language (SAML). Claims Types, Endpoints, and AttributeDiscuss PKI certificate management for AD Recognize the role of IIS in a successful StoresFS. AD FS deployment. AD FS SecurityConfiguring a Claims Provider Trust PKI Basics The Federation Server Proxy RoleUnderstanding Home Realm Discovery Introduction to Cryptography Administering AD FSManaging Claims Across OrganizationsAfter PKI Design Windows Identity FoundationAftercompleting this module, students will be able Installing and Configuring Certificate completing this module, students will beto: ServicesAfter completing this module, able to:Deploy AD FS 2.0 in a business-to-business students will be able to: Describe the role of the federation serverfederation. Describe the concepts of a Public Key in an AD FS 2.0 installation.Configure an AD FS Claims Provider Trust. Infrastructure (PKI). Understand the importance of claims,Describe and configure the Home Realm Define and discuss the basics of PKI. claim types, endpoints, and attribute storesDiscovery process. Describe symmetric key and public key for a successful AD FS implementation.Manage AD FS Claims and Federation Trust cryptography. Discuss best practices for securing an ADrelationships across organizations. Discuss options for PKI design. FS implementation, including the role ofPlanning for High Availability Describe the steps needed to install and Public Key Infrastructure (PKI) certificatesAdditional AD FS Configuration Scenarios configure Certificate Services. in securing the authentication andAD FS 2.0 and SAML InteroperabilityAfter Claims Types, Endpoints, and Attribute communication process.completing this module, students will be able Stores Describe the role of the Federation Serverto: AD FS Security Proxy.Configure the AD FS 2.0 server in the The Federation Server Proxy Role Describe the methods available toFederation Server Proxy role. Administering AD FS administer an AD FS server.Configure AD FS 2.0 for redundancy and Windows Identity FoundationAfter Understand the role of the Windowshigh availability. completing this module, students will be Identity Foundation (WIF) in creatingDeploy AD FS 2.0 to provide interoperability able to: claims-based applications.with SAML 2.0-compliant federation Describe the role of the federation server AD FS Within a Single Organizationpartners. in an AD FS 2.0 installation. Understanding Claims and Claim TypesIntroducing the Claims Rule LanguageAfter Understand the importance of claims, Claim Rules and Claim Rule Templatescompleting this module, students will be able claim types, endpoints, and attribute Creating Claim Rules from Templatesto: stores for a successful AD FS Configuring AD FS in a SingleDescribe the AD FS 2.0 Claims Pipeline and implementation. OrganizationAfter completing this module,Claims Engine processes. Discuss best practices for securing an students will be able to:Create and configure custom claim rules AD FS implementation, including the role Define the certificate requirements for AD


using the AD FS 2.0 claim rule language. of Public Key Infrastructure (PKI) FS in a single organization.AD FS Troubleshooting certificates in securing the authentication Discuss PKI certificate management forTracing AD FS TrafficAfter completing this and communication process. AD FS.module, students will be able to: Describe the role of the Federation Configuring a Claims Provider TrustConfigure troubleshooting and security Server Proxy. Understanding Home Realm Discoveryauditing for AD FS 2.0. Describe the methods available to Managing Claims AcrossUse built-in Windows tools to troubleshoot administer an AD FS server. OrganizationsAfter completing this module,AD FS components and prerequisites. Understand the role of the Windows students will be able to:Trace AD FS Web traffic for troubleshooting Identity Foundation (WIF) in creating Deploy AD FS 2.0 in aand configuration purposes. claims-based applications. business-to-business federation.

AD FS Within a Single Organization Configure an AD FS Claims ProviderUnderstanding Claims and Claim Types Trust.

line Claim Rules and Claim Rule Templates Describe and configure the Home RealmExisting Solutions for Managing Identities Creating Claim Rules from Templates Discovery process.The Benefits of Claims-based Identity Configuring AD FS in a Single Manage AD FS Claims and FederationThe Evolution of AD FS OrganizationAfter completing this Trust relationships across organizations.Use Cases for AD FS module, students will be able to: Planning for High AvailabilityAD FS and Claims-based TerminologyAfter Define the certificate requirements for AD Additional AD FS Configuration Scenarioscompleting this module, students will be able FS in a single organization. AD FS 2.0 and SAML InteroperabilityAfterto: Discuss PKI certificate management for completing this module, students will beDiscuss and describe the Seven Laws of AD FS. able to:Identity, and how they pertain to managing Configuring a Claims Provider Trust Configure the AD FS 2.0 server in theidentities for users and applications. Understanding Home Realm Discovery Federation Server Proxy role.Examine existing solutions for managing Managing Claims Across Configure AD FS 2.0 for redundancy andidentities. OrganizationsAfter completing this high availability.Describe the benefits of the Claims-based module, students will be able to: Deploy AD FS 2.0 to provideIdentity model. Deploy AD FS 2.0 in a interoperability with SAML 2.0-compliantDiscuss the evolution of Active Directory business-to-business federation. federation partners.Federation Services (AD FS). Configure an AD FS Claims Provider Introducing the Claims Rule LanguageAfterDescribe common use cases for AD FS. Trust. completing this module, students will beDiscuss common terminology used when Describe and configure the Home Realm able to:working with AD FS and Claims-based Discovery process. Describe the AD FS 2.0 Claims PipelineIdentity. Manage AD FS Claims and Federation and Claims Engine processes.Introducing Directory Services Trust relationships across organizations. Create and configure custom claim rulesActive Directory and Active Directory Planning for High Availability using the AD FS 2.0 claim rule language.Lightweight Directory Services Additional AD FS Configuration AD FS TroubleshootingWeb Services, Standards, and Scenarios Tracing AD FS TrafficAfter completing thisInteroperability AD FS 2.0 and SAML module, students will be able to:Internet Information ServicesAfter InteroperabilityAfter completing this Configure troubleshooting and securitycompleting this module, students will be able module, students will be able to: auditing for AD FS 2.0.to: Configure the AD FS 2.0 server in the Use built-in Windows tools to troubleshootIdentify the key Windows components Federation Server Proxy role. AD FS components and prerequisites.required for AD FS. Configure AD FS 2.0 for redundancy and Trace AD FS Web traffic forDescribe the key characteristics of a high availability. troubleshooting and configurationDirectory Service. Deploy AD FS 2.0 to provide purposes.Describe the role Active Directory and AD interoperability with SAML 2.0-compliantLDS perform in an AD FS deployment. federation partners.Describe what is meant by the terms Web Introducing the Claims Rule lineServices, WS-*, and Security Assertion LanguageAfter completing this module, Existing Solutions for Managing IdentitiesMarkup Language (SAML). students will be able to: The Benefits of Claims-based IdentityRecognize the role of IIS in a successful AD Describe the AD FS 2.0 Claims Pipeline The Evolution of AD FSFS deployment. and Claims Engine processes. Use Cases for AD FSPKI Basics Create and configure custom claim rules AD FS and Claims-basedIntroduction to Cryptography using the AD FS 2.0 claim rule language. TerminologyAfter completing this module,PKI Design AD FS Troubleshooting students will be able to:Installing and Configuring Certificate Tracing AD FS TrafficAfter completing Discuss and describe the Seven Laws ofServicesAfter completing this module, this module, students will be able to: Identity, and how they pertain to managingstudents will be able to: Configure troubleshooting and security identities for users and applications.Describe the concepts of a Public Key auditing for AD FS 2.0. Examine existing solutions for managingInfrastructure (PKI). Use built-in Windows tools to identities.Define and discuss the basics of PKI. troubleshoot AD FS components and Describe the benefits of the Claims-basedDescribe symmetric key and public key prerequisites. Identity model.cryptography. Trace AD FS Web traffic for Discuss the evolution of Active DirectoryDiscuss options for PKI design. troubleshooting and configuration Federation Services (AD FS).Describe the steps needed to install and purposes. Describe common use cases for AD FS.configure Certificate Services. Discuss common terminology used when


Claims Types, Endpoints, and Attribute working with AD FS and Claims-basedStores line Identity.AD FS Security Existing Solutions for Managing Identities Introducing Directory ServicesThe Federation Server Proxy Role The Benefits of Claims-based Identity Active Directory and Active DirectoryAdministering AD FS The Evolution of AD FS Lightweight Directory ServicesWindows Identity FoundationAfter Use Cases for AD FS Web Services, Standards, andcompleting this module, students will be able AD FS and Claims-based Interoperabilityto: TerminologyAfter completing this module, Internet Information ServicesAfterDescribe the role of the federation server in students will be able to: completing this module, students will bean AD FS 2.0 installation. Discuss and describe the Seven Laws of able to:Understand the importance of claims, claim Identity, and how they pertain to Identify the key Windows componentstypes, endpoints, and attribute stores for a managing identities for users and required for AD FS.successful AD FS implementation. applications. Describe the key characteristics of aDiscuss best practices for securing an AD Examine existing solutions for managing Directory Service.FS implementation, including the role of identities. Describe the role Active Directory and ADPublic Key Infrastructure (PKI) certificates in Describe the benefits of the LDS perform in an AD FS deployment.securing the authentication and Claims-based Identity model. Describe what is meant by the terms Webcommunication process. Discuss the evolution of Active Directory Services, WS-*, and Security AssertionDescribe the role of the Federation Server Federation Services (AD FS). Markup Language (SAML).Proxy. Describe common use cases for AD FS. Recognize the role of IIS in a successfulDescribe the methods available to Discuss common terminology used when AD FS deployment.administer an AD FS server. working with AD FS and Claims-based PKI BasicsUnderstand the role of the Windows Identity Identity. Introduction to CryptographyFoundation (WIF) in creating claims-based Introducing Directory Services PKI Designapplications. Active Directory and Active Directory Installing and Configuring CertificateAD FS Within a Single Organization Lightweight Directory Services ServicesAfter completing this module,Understanding Claims and Claim Types Web Services, Standards, and students will be able to:Claim Rules and Claim Rule Templates Interoperability Describe the concepts of a Public KeyCreating Claim Rules from Templates Internet Information ServicesAfter Infrastructure (PKI).Configuring AD FS in a Single completing this module, students will be Define and discuss the basics of PKI.OrganizationAfter completing this module, able to: Describe symmetric key and public keystudents will be able to: Identify the key Windows components cryptography.Define the certificate requirements for AD required for AD FS. Discuss options for PKI design.FS in a single organization. Describe the key characteristics of a Describe the steps needed to install andDiscuss PKI certificate management for AD Directory Service. configure Certificate Services.FS. Describe the role Active Directory and AD Claims Types, Endpoints, and AttributeConfiguring a Claims Provider Trust LDS perform in an AD FS deployment. StoresUnderstanding Home Realm Discovery Describe what is meant by the terms AD FS SecurityManaging Claims Across OrganizationsAfter Web Services, WS-*, and Security The Federation Server Proxy Rolecompleting this module, students will be able Assertion Markup Language (SAML). Administering AD FSto: Recognize the role of IIS in a successful Windows Identity FoundationAfterDeploy AD FS 2.0 in a business-to-business AD FS deployment. completing this module, students will befederation. PKI Basics able to:Configure an AD FS Claims Provider Trust. Introduction to Cryptography Describe the role of the federation serverDescribe and configure the Home Realm PKI Design in an AD FS 2.0 installation.Discovery process. Installing and Configuring Certificate Understand the importance of claims,Manage AD FS Claims and Federation Trust ServicesAfter completing this module, claim types, endpoints, and attribute storesrelationships across organizations. students will be able to: for a successful AD FS implementation.Planning for High Availability Describe the concepts of a Public Key Discuss best practices for securing an ADAdditional AD FS Configuration Scenarios Infrastructure (PKI). FS implementation, including the role ofAD FS 2.0 and SAML InteroperabilityAfter Define and discuss the basics of PKI. Public Key Infrastructure (PKI) certificatescompleting this module, students will be able Describe symmetric key and public key in securing the authentication andto: cryptography. communication process.Configure the AD FS 2.0 server in the Discuss options for PKI design. Describe the role of the Federation ServerFederation Server Proxy role. Describe the steps needed to install and Proxy.Configure AD FS 2.0 for redundancy and configure Certificate Services. Describe the methods available tohigh availability. Claims Types, Endpoints, and Attribute administer an AD FS server.Deploy AD FS 2.0 to provide interoperability Stores Understand the role of the Windowswith SAML 2.0-compliant federation AD FS Security Identity Foundation (WIF) in creatingpartners. The Federation Server Proxy Role claims-based applications.Introducing the Claims Rule LanguageAfter Administering AD FS AD FS Within a Single Organizationcompleting this module, students will be able Windows Identity FoundationAfter Understanding Claims and Claim Typesto: completing this module, students will be Claim Rules and Claim Rule TemplatesDescribe the AD FS 2.0 Claims Pipeline and able to: Creating Claim Rules from TemplatesClaims Engine processes. Describe the role of the federation server Configuring AD FS in a SingleCreate and configure custom claim rules in an AD FS 2.0 installation. OrganizationAfter completing this module,


using the AD FS 2.0 claim rule language. Understand the importance of claims, students will be able to:AD FS Troubleshooting claim types, endpoints, and attribute Define the certificate requirements for ADTracing AD FS TrafficAfter completing this stores for a successful AD FS FS in a single organization.module, students will be able to: implementation. Discuss PKI certificate management forConfigure troubleshooting and security Discuss best practices for securing an AD FS.auditing for AD FS 2.0. AD FS implementation, including the role Configuring a Claims Provider TrustUse built-in Windows tools to troubleshoot of Public Key Infrastructure (PKI) Understanding Home Realm DiscoveryAD FS components and prerequisites. certificates in securing the authentication Managing Claims AcrossTrace AD FS Web traffic for troubleshooting and communication process. OrganizationsAfter completing this module,and configuration purposes. Describe the role of the Federation students will be able to:

Server Proxy. Deploy AD FS 2.0 in aModule 2: AD FS Prerequisites Describe the methods available to business-to-business federation.line administer an AD FS server. Configure an AD FS Claims Provider

Understand the role of the Windows Trust.This module explains how to configure Identity Foundation (WIF) in creating Describe and configure the Home RealmWindows prerequisites for AD FS 2.0, including claims-based applications. Discovery process.Windows Server and Internet Information AD FS Within a Single Organization Manage AD FS Claims and FederationServices (IIS). This module also explains how Understanding Claims and Claim Types Trust relationships across organizations.AD FS 2.0 utilizes Web services to achieve Claim Rules and Claim Rule Templates Planning for High Availabilityinteroperability. Creating Claim Rules from Templates Additional AD FS Configuration Scenariosline Configuring AD FS in a Single AD FS 2.0 and SAML InteroperabilityAfter

Windows Prerequisites OrganizationAfter completing this completing this module, students will bemodule, students will be able to: able to:Define the certificate requirements for AD Configure the AD FS 2.0 server in the

line FS in a single organization. Federation Server Proxy role.Existing Solutions for Managing Identities Discuss PKI certificate management for Configure AD FS 2.0 for redundancy andThe Benefits of Claims-based Identity AD FS. high availability.The Evolution of AD FS Configuring a Claims Provider Trust Deploy AD FS 2.0 to provideUse Cases for AD FS Understanding Home Realm Discovery interoperability with SAML 2.0-compliantAD FS and Claims-based TerminologyAfter Managing Claims Across federation partners.completing this module, students will be able OrganizationsAfter completing this Introducing the Claims Rule LanguageAfterto: module, students will be able to: completing this module, students will beDiscuss and describe the Seven Laws of Deploy AD FS 2.0 in a able to:Identity, and how they pertain to managing business-to-business federation. Describe the AD FS 2.0 Claims Pipelineidentities for users and applications. Configure an AD FS Claims Provider and Claims Engine processes.Examine existing solutions for managing Trust. Create and configure custom claim rulesidentities. Describe and configure the Home Realm using the AD FS 2.0 claim rule language.Describe the benefits of the Claims-based Discovery process. AD FS TroubleshootingIdentity model. Manage AD FS Claims and Federation Tracing AD FS TrafficAfter completing thisDiscuss the evolution of Active Directory Trust relationships across organizations. module, students will be able to:Federation Services (AD FS). Planning for High Availability Configure troubleshooting and securityDescribe common use cases for AD FS. Additional AD FS Configuration auditing for AD FS 2.0.Discuss common terminology used when Scenarios Use built-in Windows tools to troubleshootworking with AD FS and Claims-based AD FS 2.0 and SAML AD FS components and prerequisites.Identity. InteroperabilityAfter completing this Trace AD FS Web traffic forIntroducing Directory Services module, students will be able to: troubleshooting and configurationActive Directory and Active Directory Configure the AD FS 2.0 server in the purposes.Lightweight Directory Services Federation Server Proxy role.Web Services, Standards, and Configure AD FS 2.0 for redundancy andInteroperability high availability. lineInternet Information ServicesAfter Deploy AD FS 2.0 to provide Existing Solutions for Managing Identitiescompleting this module, students will be able interoperability with SAML 2.0-compliant The Benefits of Claims-based Identityto: federation partners. The Evolution of AD FSIdentify the key Windows components Introducing the Claims Rule Use Cases for AD FSrequired for AD FS. LanguageAfter completing this module, AD FS and Claims-basedDescribe the key characteristics of a students will be able to: TerminologyAfter completing this module,Directory Service. Describe the AD FS 2.0 Claims Pipeline students will be able to:Describe the role Active Directory and AD and Claims Engine processes. Discuss and describe the Seven Laws ofLDS perform in an AD FS deployment. Create and configure custom claim rules Identity, and how they pertain to managingDescribe what is meant by the terms Web using the AD FS 2.0 claim rule language. identities for users and applications.Services, WS-*, and Security Assertion AD FS Troubleshooting Examine existing solutions for managingMarkup Language (SAML). Tracing AD FS TrafficAfter completing identities.Recognize the role of IIS in a successful AD this module, students will be able to: Describe the benefits of the Claims-basedFS deployment. Configure troubleshooting and security Identity model.PKI Basics auditing for AD FS 2.0. Discuss the evolution of Active DirectoryIntroduction to Cryptography Use built-in Windows tools to Federation Services (AD FS).


PKI Design troubleshoot AD FS components and Describe common use cases for AD FS.Installing and Configuring Certificate prerequisites. Discuss common terminology used whenServicesAfter completing this module, Trace AD FS Web traffic for working with AD FS and Claims-basedstudents will be able to: troubleshooting and configuration Identity.Describe the concepts of a Public Key purposes. Introducing Directory ServicesInfrastructure (PKI). Active Directory and Active DirectoryDefine and discuss the basics of PKI. Lightweight Directory ServicesDescribe symmetric key and public key line Web Services, Standards, andcryptography. Existing Solutions for Managing Identities InteroperabilityDiscuss options for PKI design. The Benefits of Claims-based Identity Internet Information ServicesAfterDescribe the steps needed to install and The Evolution of AD FS completing this module, students will beconfigure Certificate Services. Use Cases for AD FS able to:Claims Types, Endpoints, and Attribute AD FS and Claims-based Identify the key Windows componentsStores TerminologyAfter completing this module, required for AD FS.AD FS Security students will be able to: Describe the key characteristics of aThe Federation Server Proxy Role Discuss and describe the Seven Laws of Directory Service.Administering AD FS Identity, and how they pertain to Describe the role Active Directory and ADWindows Identity FoundationAfter managing identities for users and LDS perform in an AD FS deployment.completing this module, students will be able applications. Describe what is meant by the terms Webto: Examine existing solutions for managing Services, WS-*, and Security AssertionDescribe the role of the federation server in identities. Markup Language (SAML).an AD FS 2.0 installation. Describe the benefits of the Recognize the role of IIS in a successfulUnderstand the importance of claims, claim Claims-based Identity model. AD FS deployment.types, endpoints, and attribute stores for a Discuss the evolution of Active Directory PKI Basicssuccessful AD FS implementation. Federation Services (AD FS). Introduction to CryptographyDiscuss best practices for securing an AD Describe common use cases for AD FS. PKI DesignFS implementation, including the role of Discuss common terminology used when Installing and Configuring CertificatePublic Key Infrastructure (PKI) certificates in working with AD FS and Claims-based ServicesAfter completing this module,securing the authentication and Identity. students will be able to:communication process. Introducing Directory Services Describe the concepts of a Public KeyDescribe the role of the Federation Server Active Directory and Active Directory Infrastructure (PKI).Proxy. Lightweight Directory Services Define and discuss the basics of PKI.Describe the methods available to Web Services, Standards, and Describe symmetric key and public keyadminister an AD FS server. Interoperability cryptography.Understand the role of the Windows Identity Internet Information ServicesAfter Discuss options for PKI design.Foundation (WIF) in creating claims-based completing this module, students will be Describe the steps needed to install andapplications. able to: configure Certificate Services.AD FS Within a Single Organization Identify the key Windows components Claims Types, Endpoints, and AttributeUnderstanding Claims and Claim Types required for AD FS. StoresClaim Rules and Claim Rule Templates Describe the key characteristics of a AD FS SecurityCreating Claim Rules from Templates Directory Service. The Federation Server Proxy RoleConfiguring AD FS in a Single Describe the role Active Directory and AD Administering AD FSOrganizationAfter completing this module, LDS perform in an AD FS deployment. Windows Identity FoundationAfterstudents will be able to: Describe what is meant by the terms completing this module, students will beDefine the certificate requirements for AD Web Services, WS-*, and Security able to:FS in a single organization. Assertion Markup Language (SAML). Describe the role of the federation serverDiscuss PKI certificate management for AD Recognize the role of IIS in a successful in an AD FS 2.0 installation.FS. AD FS deployment. Understand the importance of claims,Configuring a Claims Provider Trust PKI Basics claim types, endpoints, and attribute storesUnderstanding Home Realm Discovery Introduction to Cryptography for a successful AD FS implementation.Managing Claims Across OrganizationsAfter PKI Design Discuss best practices for securing an ADcompleting this module, students will be able Installing and Configuring Certificate FS implementation, including the role ofto: ServicesAfter completing this module, Public Key Infrastructure (PKI) certificatesDeploy AD FS 2.0 in a business-to-business students will be able to: in securing the authentication andfederation. Describe the concepts of a Public Key communication process.Configure an AD FS Claims Provider Trust. Infrastructure (PKI). Describe the role of the Federation ServerDescribe and configure the Home Realm Define and discuss the basics of PKI. Proxy.Discovery process. Describe symmetric key and public key Describe the methods available toManage AD FS Claims and Federation Trust cryptography. administer an AD FS server.relationships across organizations. Discuss options for PKI design. Understand the role of the WindowsPlanning for High Availability Describe the steps needed to install and Identity Foundation (WIF) in creatingAdditional AD FS Configuration Scenarios configure Certificate Services. claims-based applications.AD FS 2.0 and SAML InteroperabilityAfter Claims Types, Endpoints, and Attribute AD FS Within a Single Organizationcompleting this module, students will be able Stores Understanding Claims and Claim Typesto: AD FS Security Claim Rules and Claim Rule TemplatesConfigure the AD FS 2.0 server in the The Federation Server Proxy Role Creating Claim Rules from Templates


Federation Server Proxy role. Administering AD FS Configuring AD FS in a SingleConfigure AD FS 2.0 for redundancy and Windows Identity FoundationAfter OrganizationAfter completing this module,high availability. completing this module, students will be students will be able to:Deploy AD FS 2.0 to provide interoperability able to: Define the certificate requirements for ADwith SAML 2.0-compliant federation Describe the role of the federation server FS in a single organization.partners. in an AD FS 2.0 installation. Discuss PKI certificate management forIntroducing the Claims Rule LanguageAfter Understand the importance of claims, AD FS.completing this module, students will be able claim types, endpoints, and attribute Configuring a Claims Provider Trustto: stores for a successful AD FS Understanding Home Realm DiscoveryDescribe the AD FS 2.0 Claims Pipeline and implementation. Managing Claims AcrossClaims Engine processes. Discuss best practices for securing an OrganizationsAfter completing this module,Create and configure custom claim rules AD FS implementation, including the role students will be able to:using the AD FS 2.0 claim rule language. of Public Key Infrastructure (PKI) Deploy AD FS 2.0 in aAD FS Troubleshooting certificates in securing the authentication business-to-business federation.Tracing AD FS TrafficAfter completing this and communication process. Configure an AD FS Claims Providermodule, students will be able to: Describe the role of the Federation Trust.Configure troubleshooting and security Server Proxy. Describe and configure the Home Realmauditing for AD FS 2.0. Describe the methods available to Discovery process.Use built-in Windows tools to troubleshoot administer an AD FS server. Manage AD FS Claims and FederationAD FS components and prerequisites. Understand the role of the Windows Trust relationships across organizations.Trace AD FS Web traffic for troubleshooting Identity Foundation (WIF) in creating Planning for High Availabilityand configuration purposes. claims-based applications. Additional AD FS Configuration Scenarios

AD FS Within a Single Organization AD FS 2.0 and SAML InteroperabilityAfterUnderstanding Claims and Claim Types completing this module, students will be

line Claim Rules and Claim Rule Templates able to:Existing Solutions for Managing Identities Creating Claim Rules from Templates Configure the AD FS 2.0 server in theThe Benefits of Claims-based Identity Configuring AD FS in a Single Federation Server Proxy role.The Evolution of AD FS OrganizationAfter completing this Configure AD FS 2.0 for redundancy andUse Cases for AD FS module, students will be able to: high availability.AD FS and Claims-based TerminologyAfter Define the certificate requirements for AD Deploy AD FS 2.0 to providecompleting this module, students will be able FS in a single organization. interoperability with SAML 2.0-compliantto: Discuss PKI certificate management for federation partners.Discuss and describe the Seven Laws of AD FS. Introducing the Claims Rule LanguageAfterIdentity, and how they pertain to managing Configuring a Claims Provider Trust completing this module, students will beidentities for users and applications. Understanding Home Realm Discovery able to:Examine existing solutions for managing Managing Claims Across Describe the AD FS 2.0 Claims Pipelineidentities. OrganizationsAfter completing this and Claims Engine processes.Describe the benefits of the Claims-based module, students will be able to: Create and configure custom claim rulesIdentity model. Deploy AD FS 2.0 in a using the AD FS 2.0 claim rule language.Discuss the evolution of Active Directory business-to-business federation. AD FS TroubleshootingFederation Services (AD FS). Configure an AD FS Claims Provider Tracing AD FS TrafficAfter completing thisDescribe common use cases for AD FS. Trust. module, students will be able to:Discuss common terminology used when Describe and configure the Home Realm Configure troubleshooting and securityworking with AD FS and Claims-based Discovery process. auditing for AD FS 2.0.Identity. Manage AD FS Claims and Federation Use built-in Windows tools to troubleshootIntroducing Directory Services Trust relationships across organizations. AD FS components and prerequisites.Active Directory and Active Directory Planning for High Availability Trace AD FS Web traffic forLightweight Directory Services Additional AD FS Configuration troubleshooting and configurationWeb Services, Standards, and Scenarios purposes.Interoperability AD FS 2.0 and SAMLInternet Information ServicesAfter InteroperabilityAfter completing this Module 8: The AD FS Claims Rule Language completing this module, students will be able module, students will be able to: lineto: Configure the AD FS 2.0 server in theIdentify the key Windows components Federation Server Proxy role. This module explains how to configurerequired for AD FS. Configure AD FS 2.0 for redundancy and custom AD FS claim rules using the AD FSDescribe the key characteristics of a high availability. 2.0 claim rule language.Directory Service. Deploy AD FS 2.0 to provide lineDescribe the role Active Directory and AD interoperability with SAML 2.0-compliant Reviewing the Claims Pipelineand ClaimsLDS perform in an AD FS deployment. federation partners. EngineDescribe what is meant by the terms Web Introducing the Claims RuleServices, WS-*, and Security Assertion LanguageAfter completing this module,Markup Language (SAML). students will be able to: lineRecognize the role of IIS in a successful AD Describe the AD FS 2.0 Claims Pipeline Existing Solutions for Managing IdentitiesFS deployment. and Claims Engine processes. The Benefits of Claims-based IdentityPKI Basics Create and configure custom claim rules The Evolution of AD FSIntroduction to Cryptography using the AD FS 2.0 claim rule language. Use Cases for AD FS


PKI Design AD FS Troubleshooting AD FS and Claims-basedInstalling and Configuring Certificate Tracing AD FS TrafficAfter completing TerminologyAfter completing this module,ServicesAfter completing this module, this module, students will be able to: students will be able to:students will be able to: Configure troubleshooting and security Discuss and describe the Seven Laws ofDescribe the concepts of a Public Key auditing for AD FS 2.0. Identity, and how they pertain to managingInfrastructure (PKI). Use built-in Windows tools to identities for users and applications.Define and discuss the basics of PKI. troubleshoot AD FS components and Examine existing solutions for managingDescribe symmetric key and public key prerequisites. identities.cryptography. Trace AD FS Web traffic for Describe the benefits of the Claims-basedDiscuss options for PKI design. troubleshooting and configuration Identity model.Describe the steps needed to install and purposes. Discuss the evolution of Active Directoryconfigure Certificate Services. Federation Services (AD FS).Claims Types, Endpoints, and Attribute Describe common use cases for AD FS.Stores line Discuss common terminology used whenAD FS Security Existing Solutions for Managing Identities working with AD FS and Claims-basedThe Federation Server Proxy Role The Benefits of Claims-based Identity Identity.Administering AD FS The Evolution of AD FS Introducing Directory ServicesWindows Identity FoundationAfter Use Cases for AD FS Active Directory and Active Directorycompleting this module, students will be able AD FS and Claims-based Lightweight Directory Servicesto: TerminologyAfter completing this module, Web Services, Standards, andDescribe the role of the federation server in students will be able to: Interoperabilityan AD FS 2.0 installation. Discuss and describe the Seven Laws of Internet Information ServicesAfterUnderstand the importance of claims, claim Identity, and how they pertain to completing this module, students will betypes, endpoints, and attribute stores for a managing identities for users and able to:successful AD FS implementation. applications. Identify the key Windows componentsDiscuss best practices for securing an AD Examine existing solutions for managing required for AD FS.FS implementation, including the role of identities. Describe the key characteristics of aPublic Key Infrastructure (PKI) certificates in Describe the benefits of the Directory Service.securing the authentication and Claims-based Identity model. Describe the role Active Directory and ADcommunication process. Discuss the evolution of Active Directory LDS perform in an AD FS deployment.Describe the role of the Federation Server Federation Services (AD FS). Describe what is meant by the terms WebProxy. Describe common use cases for AD FS. Services, WS-*, and Security AssertionDescribe the methods available to Discuss common terminology used when Markup Language (SAML).administer an AD FS server. working with AD FS and Claims-based Recognize the role of IIS in a successfulUnderstand the role of the Windows Identity Identity. AD FS deployment.Foundation (WIF) in creating claims-based Introducing Directory Services PKI Basicsapplications. Active Directory and Active Directory Introduction to CryptographyAD FS Within a Single Organization Lightweight Directory Services PKI DesignUnderstanding Claims and Claim Types Web Services, Standards, and Installing and Configuring CertificateClaim Rules and Claim Rule Templates Interoperability ServicesAfter completing this module,Creating Claim Rules from Templates Internet Information ServicesAfter students will be able to:Configuring AD FS in a Single completing this module, students will be Describe the concepts of a Public KeyOrganizationAfter completing this module, able to: Infrastructure (PKI).students will be able to: Identify the key Windows components Define and discuss the basics of PKI.Define the certificate requirements for AD required for AD FS. Describe symmetric key and public keyFS in a single organization. Describe the key characteristics of a cryptography.Discuss PKI certificate management for AD Directory Service. Discuss options for PKI design.FS. Describe the role Active Directory and AD Describe the steps needed to install andConfiguring a Claims Provider Trust LDS perform in an AD FS deployment. configure Certificate Services.Understanding Home Realm Discovery Describe what is meant by the terms Claims Types, Endpoints, and AttributeManaging Claims Across OrganizationsAfter Web Services, WS-*, and Security Storescompleting this module, students will be able Assertion Markup Language (SAML). AD FS Securityto: Recognize the role of IIS in a successful The Federation Server Proxy RoleDeploy AD FS 2.0 in a business-to-business AD FS deployment. Administering AD FSfederation. PKI Basics Windows Identity FoundationAfterConfigure an AD FS Claims Provider Trust. Introduction to Cryptography completing this module, students will beDescribe and configure the Home Realm PKI Design able to:Discovery process. Installing and Configuring Certificate Describe the role of the federation serverManage AD FS Claims and Federation Trust ServicesAfter completing this module, in an AD FS 2.0 installation.relationships across organizations. students will be able to: Understand the importance of claims,Planning for High Availability Describe the concepts of a Public Key claim types, endpoints, and attribute storesAdditional AD FS Configuration Scenarios Infrastructure (PKI). for a successful AD FS implementation.AD FS 2.0 and SAML InteroperabilityAfter Define and discuss the basics of PKI. Discuss best practices for securing an ADcompleting this module, students will be able Describe symmetric key and public key FS implementation, including the role ofto: cryptography. Public Key Infrastructure (PKI) certificatesConfigure the AD FS 2.0 server in the Discuss options for PKI design. in securing the authentication and


Federation Server Proxy role. Describe the steps needed to install and communication process.Configure AD FS 2.0 for redundancy and configure Certificate Services. Describe the role of the Federation Serverhigh availability. Claims Types, Endpoints, and Attribute Proxy.Deploy AD FS 2.0 to provide interoperability Stores Describe the methods available towith SAML 2.0-compliant federation AD FS Security administer an AD FS server.partners. The Federation Server Proxy Role Understand the role of the WindowsIntroducing the Claims Rule LanguageAfter Administering AD FS Identity Foundation (WIF) in creatingcompleting this module, students will be able Windows Identity FoundationAfter claims-based applications.to: completing this module, students will be AD FS Within a Single OrganizationDescribe the AD FS 2.0 Claims Pipeline and able to: Understanding Claims and Claim TypesClaims Engine processes. Describe the role of the federation server Claim Rules and Claim Rule TemplatesCreate and configure custom claim rules in an AD FS 2.0 installation. Creating Claim Rules from Templatesusing the AD FS 2.0 claim rule language. Understand the importance of claims, Configuring AD FS in a SingleAD FS Troubleshooting claim types, endpoints, and attribute OrganizationAfter completing this module,Tracing AD FS TrafficAfter completing this stores for a successful AD FS students will be able to:module, students will be able to: implementation. Define the certificate requirements for ADConfigure troubleshooting and security Discuss best practices for securing an FS in a single organization.auditing for AD FS 2.0. AD FS implementation, including the role Discuss PKI certificate management forUse built-in Windows tools to troubleshoot of Public Key Infrastructure (PKI) AD FS.AD FS components and prerequisites. certificates in securing the authentication Configuring a Claims Provider TrustTrace AD FS Web traffic for troubleshooting and communication process. Understanding Home Realm Discoveryand configuration purposes. Describe the role of the Federation Managing Claims Across

Server Proxy. OrganizationsAfter completing this module,Describe the methods available to students will be able to:

line administer an AD FS server. Deploy AD FS 2.0 in aExisting Solutions for Managing Identities Understand the role of the Windows business-to-business federation.The Benefits of Claims-based Identity Identity Foundation (WIF) in creating Configure an AD FS Claims ProviderThe Evolution of AD FS claims-based applications. Trust.Use Cases for AD FS AD FS Within a Single Organization Describe and configure the Home RealmAD FS and Claims-based TerminologyAfter Understanding Claims and Claim Types Discovery process.completing this module, students will be able Claim Rules and Claim Rule Templates Manage AD FS Claims and Federationto: Creating Claim Rules from Templates Trust relationships across organizations.Discuss and describe the Seven Laws of Configuring AD FS in a Single Planning for High AvailabilityIdentity, and how they pertain to managing OrganizationAfter completing this Additional AD FS Configuration Scenariosidentities for users and applications. module, students will be able to: AD FS 2.0 and SAML InteroperabilityAfterExamine existing solutions for managing Define the certificate requirements for AD completing this module, students will beidentities. FS in a single organization. able to:Describe the benefits of the Claims-based Discuss PKI certificate management for Configure the AD FS 2.0 server in theIdentity model. AD FS. Federation Server Proxy role.Discuss the evolution of Active Directory Configuring a Claims Provider Trust Configure AD FS 2.0 for redundancy andFederation Services (AD FS). Understanding Home Realm Discovery high availability.Describe common use cases for AD FS. Managing Claims Across Deploy AD FS 2.0 to provideDiscuss common terminology used when OrganizationsAfter completing this interoperability with SAML 2.0-compliantworking with AD FS and Claims-based module, students will be able to: federation partners.Identity. Deploy AD FS 2.0 in a Introducing the Claims Rule LanguageAfterIntroducing Directory Services business-to-business federation. completing this module, students will beActive Directory and Active Directory Configure an AD FS Claims Provider able to:Lightweight Directory Services Trust. Describe the AD FS 2.0 Claims PipelineWeb Services, Standards, and Describe and configure the Home Realm and Claims Engine processes.Interoperability Discovery process. Create and configure custom claim rulesInternet Information ServicesAfter Manage AD FS Claims and Federation using the AD FS 2.0 claim rule language.completing this module, students will be able Trust relationships across organizations. AD FS Troubleshootingto: Planning for High Availability Tracing AD FS TrafficAfter completing thisIdentify the key Windows components Additional AD FS Configuration module, students will be able to:required for AD FS. Scenarios Configure troubleshooting and securityDescribe the key characteristics of a AD FS 2.0 and SAML auditing for AD FS 2.0.Directory Service. InteroperabilityAfter completing this Use built-in Windows tools to troubleshootDescribe the role Active Directory and AD module, students will be able to: AD FS components and prerequisites.LDS perform in an AD FS deployment. Configure the AD FS 2.0 server in the Trace AD FS Web traffic forDescribe what is meant by the terms Web Federation Server Proxy role. troubleshooting and configurationServices, WS-*, and Security Assertion Configure AD FS 2.0 for redundancy and purposes.Markup Language (SAML). high availability.Recognize the role of IIS in a successful AD Deploy AD FS 2.0 to provideFS deployment. interoperability with SAML 2.0-compliant linePKI Basics federation partners. Existing Solutions for Managing IdentitiesIntroduction to Cryptography Introducing the Claims Rule The Benefits of Claims-based Identity


PKI Design LanguageAfter completing this module, The Evolution of AD FSInstalling and Configuring Certificate students will be able to: Use Cases for AD FSServicesAfter completing this module, Describe the AD FS 2.0 Claims Pipeline AD FS and Claims-basedstudents will be able to: and Claims Engine processes. TerminologyAfter completing this module,Describe the concepts of a Public Key Create and configure custom claim rules students will be able to:Infrastructure (PKI). using the AD FS 2.0 claim rule language. Discuss and describe the Seven Laws ofDefine and discuss the basics of PKI. AD FS Troubleshooting Identity, and how they pertain to managingDescribe symmetric key and public key Tracing AD FS TrafficAfter completing identities for users and applications.cryptography. this module, students will be able to: Examine existing solutions for managingDiscuss options for PKI design. Configure troubleshooting and security identities.Describe the steps needed to install and auditing for AD FS 2.0. Describe the benefits of the Claims-basedconfigure Certificate Services. Use built-in Windows tools to Identity model.Claims Types, Endpoints, and Attribute troubleshoot AD FS components and Discuss the evolution of Active DirectoryStores prerequisites. Federation Services (AD FS).AD FS Security Trace AD FS Web traffic for Describe common use cases for AD FS.The Federation Server Proxy Role troubleshooting and configuration Discuss common terminology used whenAdministering AD FS purposes. working with AD FS and Claims-basedWindows Identity FoundationAfter Identity.completing this module, students will be able Introducing Directory Servicesto: line Active Directory and Active DirectoryDescribe the role of the federation server in Existing Solutions for Managing Identities Lightweight Directory Servicesan AD FS 2.0 installation. The Benefits of Claims-based Identity Web Services, Standards, andUnderstand the importance of claims, claim The Evolution of AD FS Interoperabilitytypes, endpoints, and attribute stores for a Use Cases for AD FS Internet Information ServicesAftersuccessful AD FS implementation. AD FS and Claims-based completing this module, students will beDiscuss best practices for securing an AD TerminologyAfter completing this module, able to:FS implementation, including the role of students will be able to: Identify the key Windows componentsPublic Key Infrastructure (PKI) certificates in Discuss and describe the Seven Laws of required for AD FS.securing the authentication and Identity, and how they pertain to Describe the key characteristics of acommunication process. managing identities for users and Directory Service.Describe the role of the Federation Server applications. Describe the role Active Directory and ADProxy. Examine existing solutions for managing LDS perform in an AD FS deployment.Describe the methods available to identities. Describe what is meant by the terms Webadminister an AD FS server. Describe the benefits of the Services, WS-*, and Security AssertionUnderstand the role of the Windows Identity Claims-based Identity model. Markup Language (SAML).Foundation (WIF) in creating claims-based Discuss the evolution of Active Directory Recognize the role of IIS in a successfulapplications. Federation Services (AD FS). AD FS deployment.AD FS Within a Single Organization Describe common use cases for AD FS. PKI BasicsUnderstanding Claims and Claim Types Discuss common terminology used when Introduction to CryptographyClaim Rules and Claim Rule Templates working with AD FS and Claims-based PKI DesignCreating Claim Rules from Templates Identity. Installing and Configuring CertificateConfiguring AD FS in a Single Introducing Directory Services ServicesAfter completing this module,OrganizationAfter completing this module, Active Directory and Active Directory students will be able to:students will be able to: Lightweight Directory Services Describe the concepts of a Public KeyDefine the certificate requirements for AD Web Services, Standards, and Infrastructure (PKI).FS in a single organization. Interoperability Define and discuss the basics of PKI.Discuss PKI certificate management for AD Internet Information ServicesAfter Describe symmetric key and public keyFS. completing this module, students will be cryptography.Configuring a Claims Provider Trust able to: Discuss options for PKI design.Understanding Home Realm Discovery Identify the key Windows components Describe the steps needed to install andManaging Claims Across OrganizationsAfter required for AD FS. configure Certificate Services.completing this module, students will be able Describe the key characteristics of a Claims Types, Endpoints, and Attributeto: Directory Service. StoresDeploy AD FS 2.0 in a business-to-business Describe the role Active Directory and AD AD FS Securityfederation. LDS perform in an AD FS deployment. The Federation Server Proxy RoleConfigure an AD FS Claims Provider Trust. Describe what is meant by the terms Administering AD FSDescribe and configure the Home Realm Web Services, WS-*, and Security Windows Identity FoundationAfterDiscovery process. Assertion Markup Language (SAML). completing this module, students will beManage AD FS Claims and Federation Trust Recognize the role of IIS in a successful able to:relationships across organizations. AD FS deployment. Describe the role of the federation serverPlanning for High Availability PKI Basics in an AD FS 2.0 installation.Additional AD FS Configuration Scenarios Introduction to Cryptography Understand the importance of claims,AD FS 2.0 and SAML InteroperabilityAfter PKI Design claim types, endpoints, and attribute storescompleting this module, students will be able Installing and Configuring Certificate for a successful AD FS implementation.to: ServicesAfter completing this module, Discuss best practices for securing an ADConfigure the AD FS 2.0 server in the students will be able to: FS implementation, including the role of


Federation Server Proxy role. Describe the concepts of a Public Key Public Key Infrastructure (PKI) certificatesConfigure AD FS 2.0 for redundancy and Infrastructure (PKI). in securing the authentication andhigh availability. Define and discuss the basics of PKI. communication process.Deploy AD FS 2.0 to provide interoperability Describe symmetric key and public key Describe the role of the Federation Serverwith SAML 2.0-compliant federation cryptography. Proxy.partners. Discuss options for PKI design. Describe the methods available toIntroducing the Claims Rule LanguageAfter Describe the steps needed to install and administer an AD FS server.completing this module, students will be able configure Certificate Services. Understand the role of the Windowsto: Claims Types, Endpoints, and Attribute Identity Foundation (WIF) in creatingDescribe the AD FS 2.0 Claims Pipeline and Stores claims-based applications.Claims Engine processes. AD FS Security AD FS Within a Single OrganizationCreate and configure custom claim rules The Federation Server Proxy Role Understanding Claims and Claim Typesusing the AD FS 2.0 claim rule language. Administering AD FS Claim Rules and Claim Rule TemplatesAD FS Troubleshooting Windows Identity FoundationAfter Creating Claim Rules from TemplatesTracing AD FS TrafficAfter completing this completing this module, students will be Configuring AD FS in a Singlemodule, students will be able to: able to: OrganizationAfter completing this module,Configure troubleshooting and security Describe the role of the federation server students will be able to:auditing for AD FS 2.0. in an AD FS 2.0 installation. Define the certificate requirements for ADUse built-in Windows tools to troubleshoot Understand the importance of claims, FS in a single organization.AD FS components and prerequisites. claim types, endpoints, and attribute Discuss PKI certificate management forTrace AD FS Web traffic for troubleshooting stores for a successful AD FS AD FS.and configuration purposes. implementation. Configuring a Claims Provider Trust

Discuss best practices for securing an Understanding Home Realm DiscoveryAD FS implementation, including the role Managing Claims Across

line of Public Key Infrastructure (PKI) OrganizationsAfter completing this module,Existing Solutions for Managing Identities certificates in securing the authentication students will be able to:The Benefits of Claims-based Identity and communication process. Deploy AD FS 2.0 in aThe Evolution of AD FS Describe the role of the Federation business-to-business federation.Use Cases for AD FS Server Proxy. Configure an AD FS Claims ProviderAD FS and Claims-based TerminologyAfter Describe the methods available to Trust.completing this module, students will be able administer an AD FS server. Describe and configure the Home Realmto: Understand the role of the Windows Discovery process.Discuss and describe the Seven Laws of Identity Foundation (WIF) in creating Manage AD FS Claims and FederationIdentity, and how they pertain to managing claims-based applications. Trust relationships across organizations.identities for users and applications. AD FS Within a Single Organization Planning for High AvailabilityExamine existing solutions for managing Understanding Claims and Claim Types Additional AD FS Configuration Scenariosidentities. Claim Rules and Claim Rule Templates AD FS 2.0 and SAML InteroperabilityAfterDescribe the benefits of the Claims-based Creating Claim Rules from Templates completing this module, students will beIdentity model. Configuring AD FS in a Single able to:Discuss the evolution of Active Directory OrganizationAfter completing this Configure the AD FS 2.0 server in theFederation Services (AD FS). module, students will be able to: Federation Server Proxy role.Describe common use cases for AD FS. Define the certificate requirements for AD Configure AD FS 2.0 for redundancy andDiscuss common terminology used when FS in a single organization. high availability.working with AD FS and Claims-based Discuss PKI certificate management for Deploy AD FS 2.0 to provideIdentity. AD FS. interoperability with SAML 2.0-compliantIntroducing Directory Services Configuring a Claims Provider Trust federation partners.Active Directory and Active Directory Understanding Home Realm Discovery Introducing the Claims Rule LanguageAfterLightweight Directory Services Managing Claims Across completing this module, students will beWeb Services, Standards, and OrganizationsAfter completing this able to:Interoperability module, students will be able to: Describe the AD FS 2.0 Claims PipelineInternet Information ServicesAfter Deploy AD FS 2.0 in a and Claims Engine processes.completing this module, students will be able business-to-business federation. Create and configure custom claim rulesto: Configure an AD FS Claims Provider using the AD FS 2.0 claim rule language.Identify the key Windows components Trust. AD FS Troubleshootingrequired for AD FS. Describe and configure the Home Realm Tracing AD FS TrafficAfter completing thisDescribe the key characteristics of a Discovery process. module, students will be able to:Directory Service. Manage AD FS Claims and Federation Configure troubleshooting and securityDescribe the role Active Directory and AD Trust relationships across organizations. auditing for AD FS 2.0.LDS perform in an AD FS deployment. Planning for High Availability Use built-in Windows tools to troubleshootDescribe what is meant by the terms Web Additional AD FS Configuration AD FS components and prerequisites.Services, WS-*, and Security Assertion Scenarios Trace AD FS Web traffic forMarkup Language (SAML). AD FS 2.0 and SAML troubleshooting and configurationRecognize the role of IIS in a successful AD InteroperabilityAfter completing this purposes.FS deployment. module, students will be able to:PKI Basics Configure the AD FS 2.0 server in the Module 9: AD FS Troubleshooting Introduction to Cryptography Federation Server Proxy role. line


PKI Design Configure AD FS 2.0 for redundancy andInstalling and Configuring Certificate high availability. This module explains how to audit,ServicesAfter completing this module, Deploy AD FS 2.0 to provide troubleshoot, and trace AD FS 2.0students will be able to: interoperability with SAML 2.0-compliant components and claims-aware applications,Describe the concepts of a Public Key federation partners. at both the server and client level. Infrastructure (PKI). Introducing the Claims Rule lineDefine and discuss the basics of PKI. LanguageAfter completing this module, Configuring Auditing for AD FSDescribe symmetric key and public key students will be able to:cryptography. Describe the AD FS 2.0 Claims PipelineDiscuss options for PKI design. and Claims Engine processes. lineDescribe the steps needed to install and Create and configure custom claim rules Existing Solutions for Managing Identitiesconfigure Certificate Services. using the AD FS 2.0 claim rule language. The Benefits of Claims-based IdentityClaims Types, Endpoints, and Attribute AD FS Troubleshooting The Evolution of AD FSStores Tracing AD FS TrafficAfter completing Use Cases for AD FSAD FS Security this module, students will be able to: AD FS and Claims-basedThe Federation Server Proxy Role Configure troubleshooting and security TerminologyAfter completing this module,Administering AD FS auditing for AD FS 2.0. students will be able to:Windows Identity FoundationAfter Use built-in Windows tools to Discuss and describe the Seven Laws ofcompleting this module, students will be able troubleshoot AD FS components and Identity, and how they pertain to managingto: prerequisites. identities for users and applications.Describe the role of the federation server in Trace AD FS Web traffic for Examine existing solutions for managingan AD FS 2.0 installation. troubleshooting and configuration identities.Understand the importance of claims, claim purposes. Describe the benefits of the Claims-basedtypes, endpoints, and attribute stores for a Identity model.successful AD FS implementation. Discuss the evolution of Active DirectoryDiscuss best practices for securing an AD line Federation Services (AD FS).FS implementation, including the role of Existing Solutions for Managing Identities Describe common use cases for AD FS.Public Key Infrastructure (PKI) certificates in The Benefits of Claims-based Identity Discuss common terminology used whensecuring the authentication and The Evolution of AD FS working with AD FS and Claims-basedcommunication process. Use Cases for AD FS Identity.Describe the role of the Federation Server AD FS and Claims-based Introducing Directory ServicesProxy. TerminologyAfter completing this module, Active Directory and Active DirectoryDescribe the methods available to students will be able to: Lightweight Directory Servicesadminister an AD FS server. Discuss and describe the Seven Laws of Web Services, Standards, andUnderstand the role of the Windows Identity Identity, and how they pertain to InteroperabilityFoundation (WIF) in creating claims-based managing identities for users and Internet Information ServicesAfterapplications. applications. completing this module, students will beAD FS Within a Single Organization Examine existing solutions for managing able to:Understanding Claims and Claim Types identities. Identify the key Windows componentsClaim Rules and Claim Rule Templates Describe the benefits of the required for AD FS.Creating Claim Rules from Templates Claims-based Identity model. Describe the key characteristics of aConfiguring AD FS in a Single Discuss the evolution of Active Directory Directory Service.OrganizationAfter completing this module, Federation Services (AD FS). Describe the role Active Directory and ADstudents will be able to: Describe common use cases for AD FS. LDS perform in an AD FS deployment.Define the certificate requirements for AD Discuss common terminology used when Describe what is meant by the terms WebFS in a single organization. working with AD FS and Claims-based Services, WS-*, and Security AssertionDiscuss PKI certificate management for AD Identity. Markup Language (SAML).FS. Introducing Directory Services Recognize the role of IIS in a successfulConfiguring a Claims Provider Trust Active Directory and Active Directory AD FS deployment.Understanding Home Realm Discovery Lightweight Directory Services PKI BasicsManaging Claims Across OrganizationsAfter Web Services, Standards, and Introduction to Cryptographycompleting this module, students will be able Interoperability PKI Designto: Internet Information ServicesAfter Installing and Configuring CertificateDeploy AD FS 2.0 in a business-to-business completing this module, students will be ServicesAfter completing this module,federation. able to: students will be able to:Configure an AD FS Claims Provider Trust. Identify the key Windows components Describe the concepts of a Public KeyDescribe and configure the Home Realm required for AD FS. Infrastructure (PKI).Discovery process. Describe the key characteristics of a Define and discuss the basics of PKI.Manage AD FS Claims and Federation Trust Directory Service. Describe symmetric key and public keyrelationships across organizations. Describe the role Active Directory and AD cryptography.Planning for High Availability LDS perform in an AD FS deployment. Discuss options for PKI design.Additional AD FS Configuration Scenarios Describe what is meant by the terms Describe the steps needed to install andAD FS 2.0 and SAML InteroperabilityAfter Web Services, WS-*, and Security configure Certificate Services.completing this module, students will be able Assertion Markup Language (SAML). Claims Types, Endpoints, and Attributeto: Recognize the role of IIS in a successful StoresConfigure the AD FS 2.0 server in the AD FS deployment. AD FS Security


Federation Server Proxy role. PKI Basics The Federation Server Proxy RoleConfigure AD FS 2.0 for redundancy and Introduction to Cryptography Administering AD FShigh availability. PKI Design Windows Identity FoundationAfterDeploy AD FS 2.0 to provide interoperability Installing and Configuring Certificate completing this module, students will bewith SAML 2.0-compliant federation ServicesAfter completing this module, able to:partners. students will be able to: Describe the role of the federation serverIntroducing the Claims Rule LanguageAfter Describe the concepts of a Public Key in an AD FS 2.0 installation.completing this module, students will be able Infrastructure (PKI). Understand the importance of claims,to: Define and discuss the basics of PKI. claim types, endpoints, and attribute storesDescribe the AD FS 2.0 Claims Pipeline and Describe symmetric key and public key for a successful AD FS implementation.Claims Engine processes. cryptography. Discuss best practices for securing an ADCreate and configure custom claim rules Discuss options for PKI design. FS implementation, including the role ofusing the AD FS 2.0 claim rule language. Describe the steps needed to install and Public Key Infrastructure (PKI) certificatesAD FS Troubleshooting configure Certificate Services. in securing the authentication andTracing AD FS TrafficAfter completing this Claims Types, Endpoints, and Attribute communication process.module, students will be able to: Stores Describe the role of the Federation ServerConfigure troubleshooting and security AD FS Security Proxy.auditing for AD FS 2.0. The Federation Server Proxy Role Describe the methods available toUse built-in Windows tools to troubleshoot Administering AD FS administer an AD FS server.AD FS components and prerequisites. Windows Identity FoundationAfter Understand the role of the WindowsTrace AD FS Web traffic for troubleshooting completing this module, students will be Identity Foundation (WIF) in creatingand configuration purposes. able to: claims-based applications.

Describe the role of the federation server AD FS Within a Single Organizationin an AD FS 2.0 installation. Understanding Claims and Claim Types

line Understand the importance of claims, Claim Rules and Claim Rule TemplatesExisting Solutions for Managing Identities claim types, endpoints, and attribute Creating Claim Rules from TemplatesThe Benefits of Claims-based Identity stores for a successful AD FS Configuring AD FS in a SingleThe Evolution of AD FS implementation. OrganizationAfter completing this module,Use Cases for AD FS Discuss best practices for securing an students will be able to:AD FS and Claims-based TerminologyAfter AD FS implementation, including the role Define the certificate requirements for ADcompleting this module, students will be able of Public Key Infrastructure (PKI) FS in a single organization.to: certificates in securing the authentication Discuss PKI certificate management forDiscuss and describe the Seven Laws of and communication process. AD FS.Identity, and how they pertain to managing Describe the role of the Federation Configuring a Claims Provider Trustidentities for users and applications. Server Proxy. Understanding Home Realm DiscoveryExamine existing solutions for managing Describe the methods available to Managing Claims Acrossidentities. administer an AD FS server. OrganizationsAfter completing this module,Describe the benefits of the Claims-based Understand the role of the Windows students will be able to:Identity model. Identity Foundation (WIF) in creating Deploy AD FS 2.0 in aDiscuss the evolution of Active Directory claims-based applications. business-to-business federation.Federation Services (AD FS). AD FS Within a Single Organization Configure an AD FS Claims ProviderDescribe common use cases for AD FS. Understanding Claims and Claim Types Trust.Discuss common terminology used when Claim Rules and Claim Rule Templates Describe and configure the Home Realmworking with AD FS and Claims-based Creating Claim Rules from Templates Discovery process.Identity. Configuring AD FS in a Single Manage AD FS Claims and FederationIntroducing Directory Services OrganizationAfter completing this Trust relationships across organizations.Active Directory and Active Directory module, students will be able to: Planning for High AvailabilityLightweight Directory Services Define the certificate requirements for AD Additional AD FS Configuration ScenariosWeb Services, Standards, and FS in a single organization. AD FS 2.0 and SAML InteroperabilityAfterInteroperability Discuss PKI certificate management for completing this module, students will beInternet Information ServicesAfter AD FS. able to:completing this module, students will be able Configuring a Claims Provider Trust Configure the AD FS 2.0 server in theto: Understanding Home Realm Discovery Federation Server Proxy role.Identify the key Windows components Managing Claims Across Configure AD FS 2.0 for redundancy andrequired for AD FS. OrganizationsAfter completing this high availability.Describe the key characteristics of a module, students will be able to: Deploy AD FS 2.0 to provideDirectory Service. Deploy AD FS 2.0 in a interoperability with SAML 2.0-compliantDescribe the role Active Directory and AD business-to-business federation. federation partners.LDS perform in an AD FS deployment. Configure an AD FS Claims Provider Introducing the Claims Rule LanguageAfterDescribe what is meant by the terms Web Trust. completing this module, students will beServices, WS-*, and Security Assertion Describe and configure the Home Realm able to:Markup Language (SAML). Discovery process. Describe the AD FS 2.0 Claims PipelineRecognize the role of IIS in a successful AD Manage AD FS Claims and Federation and Claims Engine processes.FS deployment. Trust relationships across organizations. Create and configure custom claim rulesPKI Basics Planning for High Availability using the AD FS 2.0 claim rule language.Introduction to Cryptography Additional AD FS Configuration AD FS Troubleshooting


PKI Design Scenarios Tracing AD FS TrafficAfter completing thisInstalling and Configuring Certificate AD FS 2.0 and SAML module, students will be able to:ServicesAfter completing this module, InteroperabilityAfter completing this Configure troubleshooting and securitystudents will be able to: module, students will be able to: auditing for AD FS 2.0.Describe the concepts of a Public Key Configure the AD FS 2.0 server in the Use built-in Windows tools to troubleshootInfrastructure (PKI). Federation Server Proxy role. AD FS components and prerequisites.Define and discuss the basics of PKI. Configure AD FS 2.0 for redundancy and Trace AD FS Web traffic forDescribe symmetric key and public key high availability. troubleshooting and configurationcryptography. Deploy AD FS 2.0 to provide purposes.Discuss options for PKI design. interoperability with SAML 2.0-compliantDescribe the steps needed to install and federation partners.configure Certificate Services. Introducing the Claims Rule lineClaims Types, Endpoints, and Attribute LanguageAfter completing this module, Existing Solutions for Managing IdentitiesStores students will be able to: The Benefits of Claims-based IdentityAD FS Security Describe the AD FS 2.0 Claims Pipeline The Evolution of AD FSThe Federation Server Proxy Role and Claims Engine processes. Use Cases for AD FSAdministering AD FS Create and configure custom claim rules AD FS and Claims-basedWindows Identity FoundationAfter using the AD FS 2.0 claim rule language. TerminologyAfter completing this module,completing this module, students will be able AD FS Troubleshooting students will be able to:to: Tracing AD FS TrafficAfter completing Discuss and describe the Seven Laws ofDescribe the role of the federation server in this module, students will be able to: Identity, and how they pertain to managingan AD FS 2.0 installation. Configure troubleshooting and security identities for users and applications.Understand the importance of claims, claim auditing for AD FS 2.0. Examine existing solutions for managingtypes, endpoints, and attribute stores for a Use built-in Windows tools to identities.successful AD FS implementation. troubleshoot AD FS components and Describe the benefits of the Claims-basedDiscuss best practices for securing an AD prerequisites. Identity model.FS implementation, including the role of Trace AD FS Web traffic for Discuss the evolution of Active DirectoryPublic Key Infrastructure (PKI) certificates in troubleshooting and configuration Federation Services (AD FS).securing the authentication and purposes. Describe common use cases for AD FS.communication process. Discuss common terminology used whenDescribe the role of the Federation Server working with AD FS and Claims-basedProxy. line Identity.Describe the methods available to Existing Solutions for Managing Identities Introducing Directory Servicesadminister an AD FS server. The Benefits of Claims-based Identity Active Directory and Active DirectoryUnderstand the role of the Windows Identity The Evolution of AD FS Lightweight Directory ServicesFoundation (WIF) in creating claims-based Use Cases for AD FS Web Services, Standards, andapplications. AD FS and Claims-based InteroperabilityAD FS Within a Single Organization TerminologyAfter completing this module, Internet Information ServicesAfterUnderstanding Claims and Claim Types students will be able to: completing this module, students will beClaim Rules and Claim Rule Templates Discuss and describe the Seven Laws of able to:Creating Claim Rules from Templates Identity, and how they pertain to Identify the key Windows componentsConfiguring AD FS in a Single managing identities for users and required for AD FS.OrganizationAfter completing this module, applications. Describe the key characteristics of astudents will be able to: Examine existing solutions for managing Directory Service.Define the certificate requirements for AD identities. Describe the role Active Directory and ADFS in a single organization. Describe the benefits of the LDS perform in an AD FS deployment.Discuss PKI certificate management for AD Claims-based Identity model. Describe what is meant by the terms WebFS. Discuss the evolution of Active Directory Services, WS-*, and Security AssertionConfiguring a Claims Provider Trust Federation Services (AD FS). Markup Language (SAML).Understanding Home Realm Discovery Describe common use cases for AD FS. Recognize the role of IIS in a successfulManaging Claims Across OrganizationsAfter Discuss common terminology used when AD FS deployment.completing this module, students will be able working with AD FS and Claims-based PKI Basicsto: Identity. Introduction to CryptographyDeploy AD FS 2.0 in a business-to-business Introducing Directory Services PKI Designfederation. Active Directory and Active Directory Installing and Configuring CertificateConfigure an AD FS Claims Provider Trust. Lightweight Directory Services ServicesAfter completing this module,Describe and configure the Home Realm Web Services, Standards, and students will be able to:Discovery process. Interoperability Describe the concepts of a Public KeyManage AD FS Claims and Federation Trust Internet Information ServicesAfter Infrastructure (PKI).relationships across organizations. completing this module, students will be Define and discuss the basics of PKI.Planning for High Availability able to: Describe symmetric key and public keyAdditional AD FS Configuration Scenarios Identify the key Windows components cryptography.AD FS 2.0 and SAML InteroperabilityAfter required for AD FS. Discuss options for PKI design.completing this module, students will be able Describe the key characteristics of a Describe the steps needed to install andto: Directory Service. configure Certificate Services.Configure the AD FS 2.0 server in the Describe the role Active Directory and AD Claims Types, Endpoints, and Attribute


Federation Server Proxy role. LDS perform in an AD FS deployment. StoresConfigure AD FS 2.0 for redundancy and Describe what is meant by the terms AD FS Securityhigh availability. Web Services, WS-*, and Security The Federation Server Proxy RoleDeploy AD FS 2.0 to provide interoperability Assertion Markup Language (SAML). Administering AD FSwith SAML 2.0-compliant federation Recognize the role of IIS in a successful Windows Identity FoundationAfterpartners. AD FS deployment. completing this module, students will beIntroducing the Claims Rule LanguageAfter PKI Basics able to:completing this module, students will be able Introduction to Cryptography Describe the role of the federation serverto: PKI Design in an AD FS 2.0 installation.Describe the AD FS 2.0 Claims Pipeline and Installing and Configuring Certificate Understand the importance of claims,Claims Engine processes. ServicesAfter completing this module, claim types, endpoints, and attribute storesCreate and configure custom claim rules students will be able to: for a successful AD FS implementation.using the AD FS 2.0 claim rule language. Describe the concepts of a Public Key Discuss best practices for securing an ADAD FS Troubleshooting Infrastructure (PKI). FS implementation, including the role ofTracing AD FS TrafficAfter completing this Define and discuss the basics of PKI. Public Key Infrastructure (PKI) certificatesmodule, students will be able to: Describe symmetric key and public key in securing the authentication andConfigure troubleshooting and security cryptography. communication process.auditing for AD FS 2.0. Discuss options for PKI design. Describe the role of the Federation ServerUse built-in Windows tools to troubleshoot Describe the steps needed to install and Proxy.AD FS components and prerequisites. configure Certificate Services. Describe the methods available toTrace AD FS Web traffic for troubleshooting Claims Types, Endpoints, and Attribute administer an AD FS server.and configuration purposes. Stores Understand the role of the Windows

AD FS Security Identity Foundation (WIF) in creatingThe Federation Server Proxy Role claims-based applications.

line Administering AD FS AD FS Within a Single OrganizationExisting Solutions for Managing Identities Windows Identity FoundationAfter Understanding Claims and Claim TypesThe Benefits of Claims-based Identity completing this module, students will be Claim Rules and Claim Rule TemplatesThe Evolution of AD FS able to: Creating Claim Rules from TemplatesUse Cases for AD FS Describe the role of the federation server Configuring AD FS in a SingleAD FS and Claims-based TerminologyAfter in an AD FS 2.0 installation. OrganizationAfter completing this module,completing this module, students will be able Understand the importance of claims, students will be able to:to: claim types, endpoints, and attribute Define the certificate requirements for ADDiscuss and describe the Seven Laws of stores for a successful AD FS FS in a single organization.Identity, and how they pertain to managing implementation. Discuss PKI certificate management foridentities for users and applications. Discuss best practices for securing an AD FS.Examine existing solutions for managing AD FS implementation, including the role Configuring a Claims Provider Trustidentities. of Public Key Infrastructure (PKI) Understanding Home Realm DiscoveryDescribe the benefits of the Claims-based certificates in securing the authentication Managing Claims AcrossIdentity model. and communication process. OrganizationsAfter completing this module,Discuss the evolution of Active Directory Describe the role of the Federation students will be able to:Federation Services (AD FS). Server Proxy. Deploy AD FS 2.0 in aDescribe common use cases for AD FS. Describe the methods available to business-to-business federation.Discuss common terminology used when administer an AD FS server. Configure an AD FS Claims Providerworking with AD FS and Claims-based Understand the role of the Windows Trust.Identity. Identity Foundation (WIF) in creating Describe and configure the Home RealmIntroducing Directory Services claims-based applications. Discovery process.Active Directory and Active Directory AD FS Within a Single Organization Manage AD FS Claims and FederationLightweight Directory Services Understanding Claims and Claim Types Trust relationships across organizations.Web Services, Standards, and Claim Rules and Claim Rule Templates Planning for High AvailabilityInteroperability Creating Claim Rules from Templates Additional AD FS Configuration ScenariosInternet Information ServicesAfter Configuring AD FS in a Single AD FS 2.0 and SAML InteroperabilityAftercompleting this module, students will be able OrganizationAfter completing this completing this module, students will beto: module, students will be able to: able to:Identify the key Windows components Define the certificate requirements for AD Configure the AD FS 2.0 server in therequired for AD FS. FS in a single organization. Federation Server Proxy role.Describe the key characteristics of a Discuss PKI certificate management for Configure AD FS 2.0 for redundancy andDirectory Service. AD FS. high availability.Describe the role Active Directory and AD Configuring a Claims Provider Trust Deploy AD FS 2.0 to provideLDS perform in an AD FS deployment. Understanding Home Realm Discovery interoperability with SAML 2.0-compliantDescribe what is meant by the terms Web Managing Claims Across federation partners.Services, WS-*, and Security Assertion OrganizationsAfter completing this Introducing the Claims Rule LanguageAfterMarkup Language (SAML). module, students will be able to: completing this module, students will beRecognize the role of IIS in a successful AD Deploy AD FS 2.0 in a able to:FS deployment. business-to-business federation. Describe the AD FS 2.0 Claims PipelinePKI Basics Configure an AD FS Claims Provider and Claims Engine processes.Introduction to Cryptography Trust. Create and configure custom claim rules


PKI Design Describe and configure the Home Realm using the AD FS 2.0 claim rule language.Installing and Configuring Certificate Discovery process. AD FS TroubleshootingServicesAfter completing this module, Manage AD FS Claims and Federation Tracing AD FS TrafficAfter completing thisstudents will be able to: Trust relationships across organizations. module, students will be able to:Describe the concepts of a Public Key Planning for High Availability Configure troubleshooting and securityInfrastructure (PKI). Additional AD FS Configuration auditing for AD FS 2.0.Define and discuss the basics of PKI. Scenarios Use built-in Windows tools to troubleshootDescribe symmetric key and public key AD FS 2.0 and SAML AD FS components and prerequisites.cryptography. InteroperabilityAfter completing this Trace AD FS Web traffic forDiscuss options for PKI design. module, students will be able to: troubleshooting and configurationDescribe the steps needed to install and Configure the AD FS 2.0 server in the purposes.configure Certificate Services. Federation Server Proxy role.Claims Types, Endpoints, and Attribute Configure AD FS 2.0 for redundancy andStores high availability. lineAD FS Security Deploy AD FS 2.0 to provide Existing Solutions for Managing IdentitiesThe Federation Server Proxy Role interoperability with SAML 2.0-compliant The Benefits of Claims-based IdentityAdministering AD FS federation partners. The Evolution of AD FSWindows Identity FoundationAfter Introducing the Claims Rule Use Cases for AD FScompleting this module, students will be able LanguageAfter completing this module, AD FS and Claims-basedto: students will be able to: TerminologyAfter completing this module,Describe the role of the federation server in Describe the AD FS 2.0 Claims Pipeline students will be able to:an AD FS 2.0 installation. and Claims Engine processes. Discuss and describe the Seven Laws ofUnderstand the importance of claims, claim Create and configure custom claim rules Identity, and how they pertain to managingtypes, endpoints, and attribute stores for a using the AD FS 2.0 claim rule language. identities for users and applications.successful AD FS implementation. AD FS Troubleshooting Examine existing solutions for managingDiscuss best practices for securing an AD Tracing AD FS TrafficAfter completing identities.FS implementation, including the role of this module, students will be able to: Describe the benefits of the Claims-basedPublic Key Infrastructure (PKI) certificates in Configure troubleshooting and security Identity model.securing the authentication and auditing for AD FS 2.0. Discuss the evolution of Active Directorycommunication process. Use built-in Windows tools to Federation Services (AD FS).Describe the role of the Federation Server troubleshoot AD FS components and Describe common use cases for AD FS.Proxy. prerequisites. Discuss common terminology used whenDescribe the methods available to Trace AD FS Web traffic for working with AD FS and Claims-basedadminister an AD FS server. troubleshooting and configuration Identity.Understand the role of the Windows Identity purposes. Introducing Directory ServicesFoundation (WIF) in creating claims-based Active Directory and Active Directoryapplications. Lightweight Directory ServicesAD FS Within a Single Organization line Web Services, Standards, andUnderstanding Claims and Claim Types Existing Solutions for Managing Identities InteroperabilityClaim Rules and Claim Rule Templates The Benefits of Claims-based Identity Internet Information ServicesAfterCreating Claim Rules from Templates The Evolution of AD FS completing this module, students will beConfiguring AD FS in a Single Use Cases for AD FS able to:OrganizationAfter completing this module, AD FS and Claims-based Identify the key Windows componentsstudents will be able to: TerminologyAfter completing this module, required for AD FS.Define the certificate requirements for AD students will be able to: Describe the key characteristics of aFS in a single organization. Discuss and describe the Seven Laws of Directory Service.Discuss PKI certificate management for AD Identity, and how they pertain to Describe the role Active Directory and ADFS. managing identities for users and LDS perform in an AD FS deployment.Configuring a Claims Provider Trust applications. Describe what is meant by the terms WebUnderstanding Home Realm Discovery Examine existing solutions for managing Services, WS-*, and Security AssertionManaging Claims Across OrganizationsAfter identities. Markup Language (SAML).completing this module, students will be able Describe the benefits of the Recognize the role of IIS in a successfulto: Claims-based Identity model. AD FS deployment.Deploy AD FS 2.0 in a business-to-business Discuss the evolution of Active Directory PKI Basicsfederation. Federation Services (AD FS). Introduction to CryptographyConfigure an AD FS Claims Provider Trust. Describe common use cases for AD FS. PKI DesignDescribe and configure the Home Realm Discuss common terminology used when Installing and Configuring CertificateDiscovery process. working with AD FS and Claims-based ServicesAfter completing this module,Manage AD FS Claims and Federation Trust Identity. students will be able to:relationships across organizations. Introducing Directory Services Describe the concepts of a Public KeyPlanning for High Availability Active Directory and Active Directory Infrastructure (PKI).Additional AD FS Configuration Scenarios Lightweight Directory Services Define and discuss the basics of PKI.AD FS 2.0 and SAML InteroperabilityAfter Web Services, Standards, and Describe symmetric key and public keycompleting this module, students will be able Interoperability cryptography.to: Internet Information ServicesAfter Discuss options for PKI design.Configure the AD FS 2.0 server in the completing this module, students will be Describe the steps needed to install and


Federation Server Proxy role. able to: configure Certificate Services.Configure AD FS 2.0 for redundancy and Identify the key Windows components Claims Types, Endpoints, and Attributehigh availability. required for AD FS. StoresDeploy AD FS 2.0 to provide interoperability Describe the key characteristics of a AD FS Securitywith SAML 2.0-compliant federation Directory Service. The Federation Server Proxy Rolepartners. Describe the role Active Directory and AD Administering AD FSIntroducing the Claims Rule LanguageAfter LDS perform in an AD FS deployment. Windows Identity FoundationAftercompleting this module, students will be able Describe what is meant by the terms completing this module, students will beto: Web Services, WS-*, and Security able to:Describe the AD FS 2.0 Claims Pipeline and Assertion Markup Language (SAML). Describe the role of the federation serverClaims Engine processes. Recognize the role of IIS in a successful in an AD FS 2.0 installation.Create and configure custom claim rules AD FS deployment. Understand the importance of claims,using the AD FS 2.0 claim rule language. PKI Basics claim types, endpoints, and attribute storesAD FS Troubleshooting Introduction to Cryptography for a successful AD FS implementation.Tracing AD FS TrafficAfter completing this PKI Design Discuss best practices for securing an ADmodule, students will be able to: Installing and Configuring Certificate FS implementation, including the role ofConfigure troubleshooting and security ServicesAfter completing this module, Public Key Infrastructure (PKI) certificatesauditing for AD FS 2.0. students will be able to: in securing the authentication andUse built-in Windows tools to troubleshoot Describe the concepts of a Public Key communication process.AD FS components and prerequisites. Infrastructure (PKI). Describe the role of the Federation ServerTrace AD FS Web traffic for troubleshooting Define and discuss the basics of PKI. Proxy.and configuration purposes. Describe symmetric key and public key Describe the methods available to

cryptography. administer an AD FS server.Discuss options for PKI design. Understand the role of the Windows

line Describe the steps needed to install and Identity Foundation (WIF) in creatingExisting Solutions for Managing Identities configure Certificate Services. claims-based applications.The Benefits of Claims-based Identity Claims Types, Endpoints, and Attribute AD FS Within a Single OrganizationThe Evolution of AD FS Stores Understanding Claims and Claim TypesUse Cases for AD FS AD FS Security Claim Rules and Claim Rule TemplatesAD FS and Claims-based TerminologyAfter The Federation Server Proxy Role Creating Claim Rules from Templatescompleting this module, students will be able Administering AD FS Configuring AD FS in a Singleto: Windows Identity FoundationAfter OrganizationAfter completing this module,Discuss and describe the Seven Laws of completing this module, students will be students will be able to:Identity, and how they pertain to managing able to: Define the certificate requirements for ADidentities for users and applications. Describe the role of the federation server FS in a single organization.Examine existing solutions for managing in an AD FS 2.0 installation. Discuss PKI certificate management foridentities. Understand the importance of claims, AD FS.Describe the benefits of the Claims-based claim types, endpoints, and attribute Configuring a Claims Provider TrustIdentity model. stores for a successful AD FS Understanding Home Realm DiscoveryDiscuss the evolution of Active Directory implementation. Managing Claims AcrossFederation Services (AD FS). Discuss best practices for securing an OrganizationsAfter completing this module,Describe common use cases for AD FS. AD FS implementation, including the role students will be able to:Discuss common terminology used when of Public Key Infrastructure (PKI) Deploy AD FS 2.0 in aworking with AD FS and Claims-based certificates in securing the authentication business-to-business federation.Identity. and communication process. Configure an AD FS Claims ProviderIntroducing Directory Services Describe the role of the Federation Trust.Active Directory and Active Directory Server Proxy. Describe and configure the Home RealmLightweight Directory Services Describe the methods available to Discovery process.Web Services, Standards, and administer an AD FS server. Manage AD FS Claims and FederationInteroperability Understand the role of the Windows Trust relationships across organizations.Internet Information ServicesAfter Identity Foundation (WIF) in creating Planning for High Availabilitycompleting this module, students will be able claims-based applications. Additional AD FS Configuration Scenariosto: AD FS Within a Single Organization AD FS 2.0 and SAML InteroperabilityAfterIdentify the key Windows components Understanding Claims and Claim Types completing this module, students will berequired for AD FS. Claim Rules and Claim Rule Templates able to:Describe the key characteristics of a Creating Claim Rules from Templates Configure the AD FS 2.0 server in theDirectory Service. Configuring AD FS in a Single Federation Server Proxy role.Describe the role Active Directory and AD OrganizationAfter completing this Configure AD FS 2.0 for redundancy andLDS perform in an AD FS deployment. module, students will be able to: high availability.Describe what is meant by the terms Web Define the certificate requirements for AD Deploy AD FS 2.0 to provideServices, WS-*, and Security Assertion FS in a single organization. interoperability with SAML 2.0-compliantMarkup Language (SAML). Discuss PKI certificate management for federation partners.Recognize the role of IIS in a successful AD AD FS. Introducing the Claims Rule LanguageAfterFS deployment. Configuring a Claims Provider Trust completing this module, students will bePKI Basics Understanding Home Realm Discovery able to:Introduction to Cryptography Managing Claims Across Describe the AD FS 2.0 Claims Pipeline


PKI Design OrganizationsAfter completing this and Claims Engine processes.Installing and Configuring Certificate module, students will be able to: Create and configure custom claim rulesServicesAfter completing this module, Deploy AD FS 2.0 in a using the AD FS 2.0 claim rule language.students will be able to: business-to-business federation. AD FS TroubleshootingDescribe the concepts of a Public Key Configure an AD FS Claims Provider Tracing AD FS TrafficAfter completing thisInfrastructure (PKI). Trust. module, students will be able to:Define and discuss the basics of PKI. Describe and configure the Home Realm Configure troubleshooting and securityDescribe symmetric key and public key Discovery process. auditing for AD FS 2.0.cryptography. Manage AD FS Claims and Federation Use built-in Windows tools to troubleshootDiscuss options for PKI design. Trust relationships across organizations. AD FS components and prerequisites.Describe the steps needed to install and Planning for High Availability Trace AD FS Web traffic forconfigure Certificate Services. Additional AD FS Configuration troubleshooting and configurationClaims Types, Endpoints, and Attribute Scenarios purposes.Stores AD FS 2.0 and SAMLAD FS Security InteroperabilityAfter completing thisThe Federation Server Proxy Role module, students will be able to: lineAdministering AD FS Configure the AD FS 2.0 server in the Existing Solutions for Managing IdentitiesWindows Identity FoundationAfter Federation Server Proxy role. The Benefits of Claims-based Identitycompleting this module, students will be able Configure AD FS 2.0 for redundancy and The Evolution of AD FSto: high availability. Use Cases for AD FSDescribe the role of the federation server in Deploy AD FS 2.0 to provide AD FS and Claims-basedan AD FS 2.0 installation. interoperability with SAML 2.0-compliant TerminologyAfter completing this module,Understand the importance of claims, claim federation partners. students will be able to:types, endpoints, and attribute stores for a Introducing the Claims Rule Discuss and describe the Seven Laws ofsuccessful AD FS implementation. LanguageAfter completing this module, Identity, and how they pertain to managingDiscuss best practices for securing an AD students will be able to: identities for users and applications.FS implementation, including the role of Describe the AD FS 2.0 Claims Pipeline Examine existing solutions for managingPublic Key Infrastructure (PKI) certificates in and Claims Engine processes. identities.securing the authentication and Create and configure custom claim rules Describe the benefits of the Claims-basedcommunication process. using the AD FS 2.0 claim rule language. Identity model.Describe the role of the Federation Server AD FS Troubleshooting Discuss the evolution of Active DirectoryProxy. Tracing AD FS TrafficAfter completing Federation Services (AD FS).Describe the methods available to this module, students will be able to: Describe common use cases for AD FS.administer an AD FS server. Configure troubleshooting and security Discuss common terminology used whenUnderstand the role of the Windows Identity auditing for AD FS 2.0. working with AD FS and Claims-basedFoundation (WIF) in creating claims-based Use built-in Windows tools to Identity.applications. troubleshoot AD FS components and Introducing Directory ServicesAD FS Within a Single Organization prerequisites. Active Directory and Active DirectoryUnderstanding Claims and Claim Types Trace AD FS Web traffic for Lightweight Directory ServicesClaim Rules and Claim Rule Templates troubleshooting and configuration Web Services, Standards, andCreating Claim Rules from Templates purposes. InteroperabilityConfiguring AD FS in a Single Internet Information ServicesAfterOrganizationAfter completing this module, Module 5: Claims-based Authentication in a completing this module, students will bestudents will be able to: Single Organization able to:Define the certificate requirements for AD line Identify the key Windows componentsFS in a single organization. required for AD FS.Discuss PKI certificate management for AD This module explains how to design and Describe the key characteristics of aFS. deploy AD FS 2.0 to provide claims-based Directory Service.Configuring a Claims Provider Trust authentication within a single organization. Describe the role Active Directory and ADUnderstanding Home Realm Discovery line LDS perform in an AD FS deployment.Managing Claims Across OrganizationsAfter Preparing for AD FS in a Single Describe what is meant by the terms Webcompleting this module, students will be able Organization Services, WS-*, and Security Assertionto: Markup Language (SAML).Deploy AD FS 2.0 in a business-to-business Recognize the role of IIS in a successfulfederation. line AD FS deployment.Configure an AD FS Claims Provider Trust. Existing Solutions for Managing Identities PKI BasicsDescribe and configure the Home Realm The Benefits of Claims-based Identity Introduction to CryptographyDiscovery process. The Evolution of AD FS PKI DesignManage AD FS Claims and Federation Trust Use Cases for AD FS Installing and Configuring Certificaterelationships across organizations. AD FS and Claims-based ServicesAfter completing this module,Planning for High Availability TerminologyAfter completing this module, students will be able to:Additional AD FS Configuration Scenarios students will be able to: Describe the concepts of a Public KeyAD FS 2.0 and SAML InteroperabilityAfter Discuss and describe the Seven Laws of Infrastructure (PKI).completing this module, students will be able Identity, and how they pertain to Define and discuss the basics of PKI.to: managing identities for users and Describe symmetric key and public keyConfigure the AD FS 2.0 server in the applications. cryptography.


Federation Server Proxy role. Examine existing solutions for managing Discuss options for PKI design.Configure AD FS 2.0 for redundancy and identities. Describe the steps needed to install andhigh availability. Describe the benefits of the configure Certificate Services.Deploy AD FS 2.0 to provide interoperability Claims-based Identity model. Claims Types, Endpoints, and Attributewith SAML 2.0-compliant federation Discuss the evolution of Active Directory Storespartners. Federation Services (AD FS). AD FS SecurityIntroducing the Claims Rule LanguageAfter Describe common use cases for AD FS. The Federation Server Proxy Rolecompleting this module, students will be able Discuss common terminology used when Administering AD FSto: working with AD FS and Claims-based Windows Identity FoundationAfterDescribe the AD FS 2.0 Claims Pipeline and Identity. completing this module, students will beClaims Engine processes. Introducing Directory Services able to:Create and configure custom claim rules Active Directory and Active Directory Describe the role of the federation serverusing the AD FS 2.0 claim rule language. Lightweight Directory Services in an AD FS 2.0 installation.AD FS Troubleshooting Web Services, Standards, and Understand the importance of claims,Tracing AD FS TrafficAfter completing this Interoperability claim types, endpoints, and attribute storesmodule, students will be able to: Internet Information ServicesAfter for a successful AD FS implementation.Configure troubleshooting and security completing this module, students will be Discuss best practices for securing an ADauditing for AD FS 2.0. able to: FS implementation, including the role ofUse built-in Windows tools to troubleshoot Identify the key Windows components Public Key Infrastructure (PKI) certificatesAD FS components and prerequisites. required for AD FS. in securing the authentication andTrace AD FS Web traffic for troubleshooting Describe the key characteristics of a communication process.and configuration purposes. Directory Service. Describe the role of the Federation Server

Describe the role Active Directory and AD Proxy.LDS perform in an AD FS deployment. Describe the methods available to

line Describe what is meant by the terms administer an AD FS server.Existing Solutions for Managing Identities Web Services, WS-*, and Security Understand the role of the WindowsThe Benefits of Claims-based Identity Assertion Markup Language (SAML). Identity Foundation (WIF) in creatingThe Evolution of AD FS Recognize the role of IIS in a successful claims-based applications.Use Cases for AD FS AD FS deployment. AD FS Within a Single OrganizationAD FS and Claims-based TerminologyAfter PKI Basics Understanding Claims and Claim Typescompleting this module, students will be able Introduction to Cryptography Claim Rules and Claim Rule Templatesto: PKI Design Creating Claim Rules from TemplatesDiscuss and describe the Seven Laws of Installing and Configuring Certificate Configuring AD FS in a SingleIdentity, and how they pertain to managing ServicesAfter completing this module, OrganizationAfter completing this module,identities for users and applications. students will be able to: students will be able to:Examine existing solutions for managing Describe the concepts of a Public Key Define the certificate requirements for ADidentities. Infrastructure (PKI). FS in a single organization.Describe the benefits of the Claims-based Define and discuss the basics of PKI. Discuss PKI certificate management forIdentity model. Describe symmetric key and public key AD FS.Discuss the evolution of Active Directory cryptography. Configuring a Claims Provider TrustFederation Services (AD FS). Discuss options for PKI design. Understanding Home Realm DiscoveryDescribe common use cases for AD FS. Describe the steps needed to install and Managing Claims AcrossDiscuss common terminology used when configure Certificate Services. OrganizationsAfter completing this module,working with AD FS and Claims-based Claims Types, Endpoints, and Attribute students will be able to:Identity. Stores Deploy AD FS 2.0 in aIntroducing Directory Services AD FS Security business-to-business federation.Active Directory and Active Directory The Federation Server Proxy Role Configure an AD FS Claims ProviderLightweight Directory Services Administering AD FS Trust.Web Services, Standards, and Windows Identity FoundationAfter Describe and configure the Home RealmInteroperability completing this module, students will be Discovery process.Internet Information ServicesAfter able to: Manage AD FS Claims and Federationcompleting this module, students will be able Describe the role of the federation server Trust relationships across organizations.to: in an AD FS 2.0 installation. Planning for High AvailabilityIdentify the key Windows components Understand the importance of claims, Additional AD FS Configuration Scenariosrequired for AD FS. claim types, endpoints, and attribute AD FS 2.0 and SAML InteroperabilityAfterDescribe the key characteristics of a stores for a successful AD FS completing this module, students will beDirectory Service. implementation. able to:Describe the role Active Directory and AD Discuss best practices for securing an Configure the AD FS 2.0 server in theLDS perform in an AD FS deployment. AD FS implementation, including the role Federation Server Proxy role.Describe what is meant by the terms Web of Public Key Infrastructure (PKI) Configure AD FS 2.0 for redundancy andServices, WS-*, and Security Assertion certificates in securing the authentication high availability.Markup Language (SAML). and communication process. Deploy AD FS 2.0 to provideRecognize the role of IIS in a successful AD Describe the role of the Federation interoperability with SAML 2.0-compliantFS deployment. Server Proxy. federation partners.PKI Basics Describe the methods available to Introducing the Claims Rule LanguageAfterIntroduction to Cryptography administer an AD FS server. completing this module, students will be


PKI Design Understand the role of the Windows able to:Installing and Configuring Certificate Identity Foundation (WIF) in creating Describe the AD FS 2.0 Claims PipelineServicesAfter completing this module, claims-based applications. and Claims Engine processes.students will be able to: AD FS Within a Single Organization Create and configure custom claim rulesDescribe the concepts of a Public Key Understanding Claims and Claim Types using the AD FS 2.0 claim rule language.Infrastructure (PKI). Claim Rules and Claim Rule Templates AD FS TroubleshootingDefine and discuss the basics of PKI. Creating Claim Rules from Templates Tracing AD FS TrafficAfter completing thisDescribe symmetric key and public key Configuring AD FS in a Single module, students will be able to:cryptography. OrganizationAfter completing this Configure troubleshooting and securityDiscuss options for PKI design. module, students will be able to: auditing for AD FS 2.0.Describe the steps needed to install and Define the certificate requirements for AD Use built-in Windows tools to troubleshootconfigure Certificate Services. FS in a single organization. AD FS components and prerequisites.Claims Types, Endpoints, and Attribute Discuss PKI certificate management for Trace AD FS Web traffic forStores AD FS. troubleshooting and configurationAD FS Security Configuring a Claims Provider Trust purposes.The Federation Server Proxy Role Understanding Home Realm DiscoveryAdministering AD FS Managing Claims AcrossWindows Identity FoundationAfter OrganizationsAfter completing thiscompleting this module, students will be able module, students will be able to:to: Deploy AD FS 2.0 in aDescribe the role of the federation server in business-to-business federation.an AD FS 2.0 installation. Configure an AD FS Claims ProviderUnderstand the importance of claims, claim Trust.types, endpoints, and attribute stores for a Describe and configure the Home Realmsuccessful AD FS implementation. Discovery process.Discuss best practices for securing an AD Manage AD FS Claims and FederationFS implementation, including the role of Trust relationships across organizations.Public Key Infrastructure (PKI) certificates in Planning for High Availabilitysecuring the authentication and Additional AD FS Configurationcommunication process. ScenariosDescribe the role of the Federation Server AD FS 2.0 and SAMLProxy. InteroperabilityAfter completing thisDescribe the methods available to module, students will be able to:administer an AD FS server. Configure the AD FS 2.0 server in theUnderstand the role of the Windows Identity Federation Server Proxy role.Foundation (WIF) in creating claims-based Configure AD FS 2.0 for redundancy andapplications. high availability.AD FS Within a Single Organization Deploy AD FS 2.0 to provideUnderstanding Claims and Claim Types interoperability with SAML 2.0-compliantClaim Rules and Claim Rule Templates federation partners.Creating Claim Rules from Templates Introducing the Claims RuleConfiguring AD FS in a Single LanguageAfter completing this module,OrganizationAfter completing this module, students will be able to:students will be able to: Describe the AD FS 2.0 Claims PipelineDefine the certificate requirements for AD and Claims Engine processes.FS in a single organization. Create and configure custom claim rulesDiscuss PKI certificate management for AD using the AD FS 2.0 claim rule language.FS. AD FS TroubleshootingConfiguring a Claims Provider Trust Tracing AD FS TrafficAfter completingUnderstanding Home Realm Discovery this module, students will be able to:Managing Claims Across OrganizationsAfter Configure troubleshooting and securitycompleting this module, students will be able auditing for AD FS 2.0.to: Use built-in Windows tools toDeploy AD FS 2.0 in a business-to-business troubleshoot AD FS components andfederation. prerequisites.Configure an AD FS Claims Provider Trust. Trace AD FS Web traffic forDescribe and configure the Home Realm troubleshooting and configurationDiscovery process. purposes.Manage AD FS Claims and Federation Trustrelationships across organizations.Planning for High Availability lineAdditional AD FS Configuration Scenarios Existing Solutions for Managing IdentitiesAD FS 2.0 and SAML InteroperabilityAfter The Benefits of Claims-based Identitycompleting this module, students will be able The Evolution of AD FSto: Use Cases for AD FSConfigure the AD FS 2.0 server in the AD FS and Claims-based


Federation Server Proxy role. TerminologyAfter completing this module,Configure AD FS 2.0 for redundancy and students will be able to:high availability. Discuss and describe the Seven Laws ofDeploy AD FS 2.0 to provide interoperability Identity, and how they pertain towith SAML 2.0-compliant federation managing identities for users andpartners. applications.Introducing the Claims Rule LanguageAfter Examine existing solutions for managingcompleting this module, students will be able identities.to: Describe the benefits of theDescribe the AD FS 2.0 Claims Pipeline and Claims-based Identity model.Claims Engine processes. Discuss the evolution of Active DirectoryCreate and configure custom claim rules Federation Services (AD FS).using the AD FS 2.0 claim rule language. Describe common use cases for AD FS.AD FS Troubleshooting Discuss common terminology used whenTracing AD FS TrafficAfter completing this working with AD FS and Claims-basedmodule, students will be able to: Identity.Configure troubleshooting and security Introducing Directory Servicesauditing for AD FS 2.0. Active Directory and Active DirectoryUse built-in Windows tools to troubleshoot Lightweight Directory ServicesAD FS components and prerequisites. Web Services, Standards, andTrace AD FS Web traffic for troubleshooting Interoperabilityand configuration purposes. Internet Information ServicesAfter

completing this module, students will beModule 3: Public Key Infrastructure (PKI) able to:line Identify the key Windows components

required for AD FS.This module explains how to install and Describe the key characteristics of aconfigure the Public Key Infrastructure (PKI) Directory Service.requirements necessary to deploy AD FS 2.0. Describe the role Active Directory and ADline LDS perform in an AD FS deployment.

Introducing the Public Key Infrastructure Describe what is meant by the termsWeb Services, WS-*, and SecurityAssertion Markup Language (SAML).

line Recognize the role of IIS in a successfulExisting Solutions for Managing Identities AD FS deployment.The Benefits of Claims-based Identity PKI BasicsThe Evolution of AD FS Introduction to CryptographyUse Cases for AD FS PKI DesignAD FS and Claims-based TerminologyAfter Installing and Configuring Certificatecompleting this module, students will be able ServicesAfter completing this module,to: students will be able to:Discuss and describe the Seven Laws of Describe the concepts of a Public KeyIdentity, and how they pertain to managing Infrastructure (PKI).identities for users and applications. Define and discuss the basics of PKI.Examine existing solutions for managing Describe symmetric key and public keyidentities. cryptography.Describe the benefits of the Claims-based Discuss options for PKI design.Identity model. Describe the steps needed to install andDiscuss the evolution of Active Directory configure Certificate Services.Federation Services (AD FS). Claims Types, Endpoints, and AttributeDescribe common use cases for AD FS. StoresDiscuss common terminology used when AD FS Securityworking with AD FS and Claims-based The Federation Server Proxy RoleIdentity. Administering AD FSIntroducing Directory Services Windows Identity FoundationAfterActive Directory and Active Directory completing this module, students will beLightweight Directory Services able to:Web Services, Standards, and Describe the role of the federation serverInteroperability in an AD FS 2.0 installation.Internet Information ServicesAfter Understand the importance of claims,completing this module, students will be able claim types, endpoints, and attributeto: stores for a successful AD FSIdentify the key Windows components implementation.required for AD FS. Discuss best practices for securing anDescribe the key characteristics of a AD FS implementation, including the roleDirectory Service. of Public Key Infrastructure (PKI)


Describe the role Active Directory and AD certificates in securing the authenticationLDS perform in an AD FS deployment. and communication process.Describe what is meant by the terms Web Describe the role of the FederationServices, WS-*, and Security Assertion Server Proxy.Markup Language (SAML). Describe the methods available toRecognize the role of IIS in a successful AD administer an AD FS server.FS deployment. Understand the role of the WindowsPKI Basics Identity Foundation (WIF) in creatingIntroduction to Cryptography claims-based applications.PKI Design AD FS Within a Single OrganizationInstalling and Configuring Certificate Understanding Claims and Claim TypesServicesAfter completing this module, Claim Rules and Claim Rule Templatesstudents will be able to: Creating Claim Rules from TemplatesDescribe the concepts of a Public Key Configuring AD FS in a SingleInfrastructure (PKI). OrganizationAfter completing thisDefine and discuss the basics of PKI. module, students will be able to:Describe symmetric key and public key Define the certificate requirements for ADcryptography. FS in a single organization.Discuss options for PKI design. Discuss PKI certificate management forDescribe the steps needed to install and AD FS.configure Certificate Services. Configuring a Claims Provider TrustClaims Types, Endpoints, and Attribute Understanding Home Realm DiscoveryStores Managing Claims AcrossAD FS Security OrganizationsAfter completing thisThe Federation Server Proxy Role module, students will be able to:Administering AD FS Deploy AD FS 2.0 in aWindows Identity FoundationAfter business-to-business federation.completing this module, students will be able Configure an AD FS Claims Providerto: Trust.Describe the role of the federation server in Describe and configure the Home Realman AD FS 2.0 installation. Discovery process.Understand the importance of claims, claim Manage AD FS Claims and Federationtypes, endpoints, and attribute stores for a Trust relationships across organizations.successful AD FS implementation. Planning for High AvailabilityDiscuss best practices for securing an AD Additional AD FS ConfigurationFS implementation, including the role of ScenariosPublic Key Infrastructure (PKI) certificates in AD FS 2.0 and SAMLsecuring the authentication and InteroperabilityAfter completing thiscommunication process. module, students will be able to:Describe the role of the Federation Server Configure the AD FS 2.0 server in theProxy. Federation Server Proxy role.Describe the methods available to Configure AD FS 2.0 for redundancy andadminister an AD FS server. high availability.Understand the role of the Windows Identity Deploy AD FS 2.0 to provideFoundation (WIF) in creating claims-based interoperability with SAML 2.0-compliantapplications. federation partners.AD FS Within a Single Organization Introducing the Claims RuleUnderstanding Claims and Claim Types LanguageAfter completing this module,Claim Rules and Claim Rule Templates students will be able to:Creating Claim Rules from Templates Describe the AD FS 2.0 Claims PipelineConfiguring AD FS in a Single and Claims Engine processes.OrganizationAfter completing this module, Create and configure custom claim rulesstudents will be able to: using the AD FS 2.0 claim rule language.Define the certificate requirements for AD AD FS TroubleshootingFS in a single organization. Tracing AD FS TrafficAfter completingDiscuss PKI certificate management for AD this module, students will be able to:FS. Configure troubleshooting and securityConfiguring a Claims Provider Trust auditing for AD FS 2.0.Understanding Home Realm Discovery Use built-in Windows tools toManaging Claims Across OrganizationsAfter troubleshoot AD FS components andcompleting this module, students will be able prerequisites.to: Trace AD FS Web traffic forDeploy AD FS 2.0 in a business-to-business troubleshooting and configurationfederation. purposes.Configure an AD FS Claims Provider Trust.Describe and configure the Home Realm


Discovery process. lineManage AD FS Claims and Federation Trust Existing Solutions for Managing Identitiesrelationships across organizations. The Benefits of Claims-based IdentityPlanning for High Availability The Evolution of AD FSAdditional AD FS Configuration Scenarios Use Cases for AD FSAD FS 2.0 and SAML InteroperabilityAfter AD FS and Claims-basedcompleting this module, students will be able TerminologyAfter completing this module,to: students will be able to:Configure the AD FS 2.0 server in the Discuss and describe the Seven Laws ofFederation Server Proxy role. Identity, and how they pertain toConfigure AD FS 2.0 for redundancy and managing identities for users andhigh availability. applications.Deploy AD FS 2.0 to provide interoperability Examine existing solutions for managingwith SAML 2.0-compliant federation identities.partners. Describe the benefits of theIntroducing the Claims Rule LanguageAfter Claims-based Identity model.completing this module, students will be able Discuss the evolution of Active Directoryto: Federation Services (AD FS).Describe the AD FS 2.0 Claims Pipeline and Describe common use cases for AD FS.Claims Engine processes. Discuss common terminology used whenCreate and configure custom claim rules working with AD FS and Claims-basedusing the AD FS 2.0 claim rule language. Identity.AD FS Troubleshooting Introducing Directory ServicesTracing AD FS TrafficAfter completing this Active Directory and Active Directorymodule, students will be able to: Lightweight Directory ServicesConfigure troubleshooting and security Web Services, Standards, andauditing for AD FS 2.0. InteroperabilityUse built-in Windows tools to troubleshoot Internet Information ServicesAfterAD FS components and prerequisites. completing this module, students will beTrace AD FS Web traffic for troubleshooting able to:and configuration purposes. Identify the key Windows components

required for AD FS.Describe the key characteristics of a

line Directory Service.Existing Solutions for Managing Identities Describe the role Active Directory and ADThe Benefits of Claims-based Identity LDS perform in an AD FS deployment.The Evolution of AD FS Describe what is meant by the termsUse Cases for AD FS Web Services, WS-*, and SecurityAD FS and Claims-based TerminologyAfter Assertion Markup Language (SAML).completing this module, students will be able Recognize the role of IIS in a successfulto: AD FS deployment.Discuss and describe the Seven Laws of PKI BasicsIdentity, and how they pertain to managing Introduction to Cryptographyidentities for users and applications. PKI DesignExamine existing solutions for managing Installing and Configuring Certificateidentities. ServicesAfter completing this module,Describe the benefits of the Claims-based students will be able to:Identity model. Describe the concepts of a Public KeyDiscuss the evolution of Active Directory Infrastructure (PKI).Federation Services (AD FS). Define and discuss the basics of PKI.Describe common use cases for AD FS. Describe symmetric key and public keyDiscuss common terminology used when cryptography.working with AD FS and Claims-based Discuss options for PKI design.Identity. Describe the steps needed to install andIntroducing Directory Services configure Certificate Services.Active Directory and Active Directory Claims Types, Endpoints, and AttributeLightweight Directory Services StoresWeb Services, Standards, and AD FS SecurityInteroperability The Federation Server Proxy RoleInternet Information ServicesAfter Administering AD FScompleting this module, students will be able Windows Identity FoundationAfterto: completing this module, students will beIdentify the key Windows components able to:required for AD FS. Describe the role of the federation serverDescribe the key characteristics of a in an AD FS 2.0 installation.Directory Service. Understand the importance of claims,


Describe the role Active Directory and AD claim types, endpoints, and attributeLDS perform in an AD FS deployment. stores for a successful AD FSDescribe what is meant by the terms Web implementation.Services, WS-*, and Security Assertion Discuss best practices for securing anMarkup Language (SAML). AD FS implementation, including the roleRecognize the role of IIS in a successful AD of Public Key Infrastructure (PKI)FS deployment. certificates in securing the authenticationPKI Basics and communication process.Introduction to Cryptography Describe the role of the FederationPKI Design Server Proxy.Installing and Configuring Certificate Describe the methods available toServicesAfter completing this module, administer an AD FS server.students will be able to: Understand the role of the WindowsDescribe the concepts of a Public Key Identity Foundation (WIF) in creatingInfrastructure (PKI). claims-based applications.Define and discuss the basics of PKI. AD FS Within a Single OrganizationDescribe symmetric key and public key Understanding Claims and Claim Typescryptography. Claim Rules and Claim Rule TemplatesDiscuss options for PKI design. Creating Claim Rules from TemplatesDescribe the steps needed to install and Configuring AD FS in a Singleconfigure Certificate Services. OrganizationAfter completing thisClaims Types, Endpoints, and Attribute module, students will be able to:Stores Define the certificate requirements for ADAD FS Security FS in a single organization.The Federation Server Proxy Role Discuss PKI certificate management forAdministering AD FS AD FS.Windows Identity FoundationAfter Configuring a Claims Provider Trustcompleting this module, students will be able Understanding Home Realm Discoveryto: Managing Claims AcrossDescribe the role of the federation server in OrganizationsAfter completing thisan AD FS 2.0 installation. module, students will be able to:Understand the importance of claims, claim Deploy AD FS 2.0 in atypes, endpoints, and attribute stores for a business-to-business federation.successful AD FS implementation. Configure an AD FS Claims ProviderDiscuss best practices for securing an AD Trust.FS implementation, including the role of Describe and configure the Home RealmPublic Key Infrastructure (PKI) certificates in Discovery process.securing the authentication and Manage AD FS Claims and Federationcommunication process. Trust relationships across organizations.Describe the role of the Federation Server Planning for High AvailabilityProxy. Additional AD FS ConfigurationDescribe the methods available to Scenariosadminister an AD FS server. AD FS 2.0 and SAMLUnderstand the role of the Windows Identity InteroperabilityAfter completing thisFoundation (WIF) in creating claims-based module, students will be able to:applications. Configure the AD FS 2.0 server in theAD FS Within a Single Organization Federation Server Proxy role.Understanding Claims and Claim Types Configure AD FS 2.0 for redundancy andClaim Rules and Claim Rule Templates high availability.Creating Claim Rules from Templates Deploy AD FS 2.0 to provideConfiguring AD FS in a Single interoperability with SAML 2.0-compliantOrganizationAfter completing this module, federation partners.students will be able to: Introducing the Claims RuleDefine the certificate requirements for AD LanguageAfter completing this module,FS in a single organization. students will be able to:Discuss PKI certificate management for AD Describe the AD FS 2.0 Claims PipelineFS. and Claims Engine processes.Configuring a Claims Provider Trust Create and configure custom claim rulesUnderstanding Home Realm Discovery using the AD FS 2.0 claim rule language.Managing Claims Across OrganizationsAfter AD FS Troubleshootingcompleting this module, students will be able Tracing AD FS TrafficAfter completingto: this module, students will be able to:Deploy AD FS 2.0 in a business-to-business Configure troubleshooting and securityfederation. auditing for AD FS 2.0.Configure an AD FS Claims Provider Trust. Use built-in Windows tools toDescribe and configure the Home Realm troubleshoot AD FS components and


Discovery process. prerequisites.Manage AD FS Claims and Federation Trust Trace AD FS Web traffic forrelationships across organizations. troubleshooting and configurationPlanning for High Availability purposes.Additional AD FS Configuration ScenariosAD FS 2.0 and SAML InteroperabilityAftercompleting this module, students will be able lineto: Existing Solutions for Managing IdentitiesConfigure the AD FS 2.0 server in the The Benefits of Claims-based IdentityFederation Server Proxy role. The Evolution of AD FSConfigure AD FS 2.0 for redundancy and Use Cases for AD FShigh availability. AD FS and Claims-basedDeploy AD FS 2.0 to provide interoperability TerminologyAfter completing this module,with SAML 2.0-compliant federation students will be able to:partners. Discuss and describe the Seven Laws ofIntroducing the Claims Rule LanguageAfter Identity, and how they pertain tocompleting this module, students will be able managing identities for users andto: applications.Describe the AD FS 2.0 Claims Pipeline and Examine existing solutions for managingClaims Engine processes. identities.Create and configure custom claim rules Describe the benefits of theusing the AD FS 2.0 claim rule language. Claims-based Identity model.AD FS Troubleshooting Discuss the evolution of Active DirectoryTracing AD FS TrafficAfter completing this Federation Services (AD FS).module, students will be able to: Describe common use cases for AD FS.Configure troubleshooting and security Discuss common terminology used whenauditing for AD FS 2.0. working with AD FS and Claims-basedUse built-in Windows tools to troubleshoot Identity.AD FS components and prerequisites. Introducing Directory ServicesTrace AD FS Web traffic for troubleshooting Active Directory and Active Directoryand configuration purposes. Lightweight Directory Services

Web Services, Standards, andInteroperabilityInternet Information ServicesAftercompleting this module, students will beable to:Identify the key Windows componentsrequired for AD FS.Describe the key characteristics of aDirectory Service.Describe the role Active Directory and ADLDS perform in an AD FS deployment.Describe what is meant by the termsWeb Services, WS-*, and SecurityAssertion Markup Language (SAML).Recognize the role of IIS in a successfulAD FS deployment.PKI BasicsIntroduction to CryptographyPKI DesignInstalling and Configuring CertificateServicesAfter completing this module,students will be able to:Describe the concepts of a Public KeyInfrastructure (PKI).Define and discuss the basics of PKI.Describe symmetric key and public keycryptography.Discuss options for PKI design.Describe the steps needed to install andconfigure Certificate Services.Claims Types, Endpoints, and AttributeStoresAD FS SecurityThe Federation Server Proxy RoleAdministering AD FS


Windows Identity FoundationAftercompleting this module, students will beable to:Describe the role of the federation serverin an AD FS 2.0 installation.Understand the importance of claims,claim types, endpoints, and attributestores for a successful AD FSimplementation.Discuss best practices for securing anAD FS implementation, including the roleof Public Key Infrastructure (PKI)certificates in securing the authenticationand communication process.Describe the role of the FederationServer Proxy.Describe the methods available toadminister an AD FS server.Understand the role of the WindowsIdentity Foundation (WIF) in creatingclaims-based applications.AD FS Within a Single OrganizationUnderstanding Claims and Claim TypesClaim Rules and Claim Rule TemplatesCreating Claim Rules from TemplatesConfiguring AD FS in a SingleOrganizationAfter completing thismodule, students will be able to:Define the certificate requirements for ADFS in a single organization.Discuss PKI certificate management forAD FS.Configuring a Claims Provider TrustUnderstanding Home Realm DiscoveryManaging Claims AcrossOrganizationsAfter completing thismodule, students will be able to:Deploy AD FS 2.0 in abusiness-to-business federation.Configure an AD FS Claims ProviderTrust.Describe and configure the Home RealmDiscovery process.Manage AD FS Claims and FederationTrust relationships across organizations.Planning for High AvailabilityAdditional AD FS ConfigurationScenariosAD FS 2.0 and SAMLInteroperabilityAfter completing thismodule, students will be able to:Configure the AD FS 2.0 server in theFederation Server Proxy role.Configure AD FS 2.0 for redundancy andhigh availability.Deploy AD FS 2.0 to provideinteroperability with SAML 2.0-compliantfederation partners.Introducing the Claims RuleLanguageAfter completing this module,students will be able to:Describe the AD FS 2.0 Claims Pipelineand Claims Engine processes.Create and configure custom claim rulesusing the AD FS 2.0 claim rule language.AD FS Troubleshooting


Tracing AD FS TrafficAfter completingthis module, students will be able to:Configure troubleshooting and securityauditing for AD FS 2.0.Use built-in Windows tools totroubleshoot AD FS components andprerequisites.Trace AD FS Web traffic fortroubleshooting and configurationpurposes.

lineExisting Solutions for Managing IdentitiesThe Benefits of Claims-based IdentityThe Evolution of AD FSUse Cases for AD FSAD FS and Claims-basedTerminologyAfter completing this module,students will be able to:Discuss and describe the Seven Laws ofIdentity, and how they pertain tomanaging identities for users andapplications.Examine existing solutions for managingidentities.Describe the benefits of theClaims-based Identity model.Discuss the evolution of Active DirectoryFederation Services (AD FS).Describe common use cases for AD FS.Discuss common terminology used whenworking with AD FS and Claims-basedIdentity.Introducing Directory ServicesActive Directory and Active DirectoryLightweight Directory ServicesWeb Services, Standards, andInteroperabilityInternet Information ServicesAftercompleting this module, students will beable to:Identify the key Windows componentsrequired for AD FS.Describe the key characteristics of aDirectory Service.Describe the role Active Directory and ADLDS perform in an AD FS deployment.Describe what is meant by the termsWeb Services, WS-*, and SecurityAssertion Markup Language (SAML).Recognize the role of IIS in a successfulAD FS deployment.PKI BasicsIntroduction to CryptographyPKI DesignInstalling and Configuring CertificateServicesAfter completing this module,students will be able to:Describe the concepts of a Public KeyInfrastructure (PKI).Define and discuss the basics of PKI.Describe symmetric key and public keycryptography.Discuss options for PKI design.Describe the steps needed to install and


configure Certificate Services.Claims Types, Endpoints, and AttributeStoresAD FS SecurityThe Federation Server Proxy RoleAdministering AD FSWindows Identity FoundationAftercompleting this module, students will beable to:Describe the role of the federation serverin an AD FS 2.0 installation.Understand the importance of claims,claim types, endpoints, and attributestores for a successful AD FSimplementation.Discuss best practices for securing anAD FS implementation, including the roleof Public Key Infrastructure (PKI)certificates in securing the authenticationand communication process.Describe the role of the FederationServer Proxy.Describe the methods available toadminister an AD FS server.Understand the role of the WindowsIdentity Foundation (WIF) in creatingclaims-based applications.AD FS Within a Single OrganizationUnderstanding Claims and Claim TypesClaim Rules and Claim Rule TemplatesCreating Claim Rules from TemplatesConfiguring AD FS in a SingleOrganizationAfter completing thismodule, students will be able to:Define the certificate requirements for ADFS in a single organization.Discuss PKI certificate management forAD FS.Configuring a Claims Provider TrustUnderstanding Home Realm DiscoveryManaging Claims AcrossOrganizationsAfter completing thismodule, students will be able to:Deploy AD FS 2.0 in abusiness-to-business federation.Configure an AD FS Claims ProviderTrust.Describe and configure the Home RealmDiscovery process.Manage AD FS Claims and FederationTrust relationships across organizations.Planning for High AvailabilityAdditional AD FS ConfigurationScenariosAD FS 2.0 and SAMLInteroperabilityAfter completing thismodule, students will be able to:Configure the AD FS 2.0 server in theFederation Server Proxy role.Configure AD FS 2.0 for redundancy andhigh availability.Deploy AD FS 2.0 to provideinteroperability with SAML 2.0-compliantfederation partners.Introducing the Claims RuleLanguageAfter completing this module,


students will be able to:Describe the AD FS 2.0 Claims Pipelineand Claims Engine processes.Create and configure custom claim rulesusing the AD FS 2.0 claim rule language.AD FS TroubleshootingTracing AD FS TrafficAfter completingthis module, students will be able to:Configure troubleshooting and securityauditing for AD FS 2.0.Use built-in Windows tools totroubleshoot AD FS components andprerequisites.Trace AD FS Web traffic fortroubleshooting and configurationpurposes.

lineExisting Solutions for Managing IdentitiesThe Benefits of Claims-based IdentityThe Evolution of AD FSUse Cases for AD FSAD FS and Claims-basedTerminologyAfter completing this module,students will be able to:Discuss and describe the Seven Laws ofIdentity, and how they pertain tomanaging identities for users andapplications.Examine existing solutions for managingidentities.Describe the benefits of theClaims-based Identity model.Discuss the evolution of Active DirectoryFederation Services (AD FS).Describe common use cases for AD FS.Discuss common terminology used whenworking with AD FS and Claims-basedIdentity.Introducing Directory ServicesActive Directory and Active DirectoryLightweight Directory ServicesWeb Services, Standards, andInteroperabilityInternet Information ServicesAftercompleting this module, students will beable to:Identify the key Windows componentsrequired for AD FS.Describe the key characteristics of aDirectory Service.Describe the role Active Directory and ADLDS perform in an AD FS deployment.Describe what is meant by the termsWeb Services, WS-*, and SecurityAssertion Markup Language (SAML).Recognize the role of IIS in a successfulAD FS deployment.PKI BasicsIntroduction to CryptographyPKI DesignInstalling and Configuring CertificateServicesAfter completing this module,students will be able to:Describe the concepts of a Public Key


Infrastructure (PKI).Define and discuss the basics of PKI.Describe symmetric key and public keycryptography.Discuss options for PKI design.Describe the steps needed to install andconfigure Certificate Services.Claims Types, Endpoints, and AttributeStoresAD FS SecurityThe Federation Server Proxy RoleAdministering AD FSWindows Identity FoundationAftercompleting this module, students will beable to:Describe the role of the federation serverin an AD FS 2.0 installation.Understand the importance of claims,claim types, endpoints, and attributestores for a successful AD FSimplementation.Discuss best practices for securing anAD FS implementation, including the roleof Public Key Infrastructure (PKI)certificates in securing the authenticationand communication process.Describe the role of the FederationServer Proxy.Describe the methods available toadminister an AD FS server.Understand the role of the WindowsIdentity Foundation (WIF) in creatingclaims-based applications.AD FS Within a Single OrganizationUnderstanding Claims and Claim TypesClaim Rules and Claim Rule TemplatesCreating Claim Rules from TemplatesConfiguring AD FS in a SingleOrganizationAfter completing thismodule, students will be able to:Define the certificate requirements for ADFS in a single organization.Discuss PKI certificate management forAD FS.Configuring a Claims Provider TrustUnderstanding Home Realm DiscoveryManaging Claims AcrossOrganizationsAfter completing thismodule, students will be able to:Deploy AD FS 2.0 in abusiness-to-business federation.Configure an AD FS Claims ProviderTrust.Describe and configure the Home RealmDiscovery process.Manage AD FS Claims and FederationTrust relationships across organizations.Planning for High AvailabilityAdditional AD FS ConfigurationScenariosAD FS 2.0 and SAMLInteroperabilityAfter completing thismodule, students will be able to:Configure the AD FS 2.0 server in theFederation Server Proxy role.Configure AD FS 2.0 for redundancy and


high availability.Deploy AD FS 2.0 to provideinteroperability with SAML 2.0-compliantfederation partners.Introducing the Claims RuleLanguageAfter completing this module,students will be able to:Describe the AD FS 2.0 Claims Pipelineand Claims Engine processes.Create and configure custom claim rulesusing the AD FS 2.0 claim rule language.AD FS TroubleshootingTracing AD FS TrafficAfter completingthis module, students will be able to:Configure troubleshooting and securityauditing for AD FS 2.0.Use built-in Windows tools totroubleshoot AD FS components andprerequisites.Trace AD FS Web traffic fortroubleshooting and configurationpurposes.

Extra informatie:

This course will be delivered with digital courseware. In order to have the best learning experience you are asked to bring your own secondscreen to view the courseware. A second screen includes: tablets and laptops.

Nadere informatie:

Neem voor nadere informatie of boekingen contact op met onze Customer Service Desk 030 - 60 89 444

[email protected]

www.globalknowledge.nl

Iepenhoeve 5, 3438 MR Nieuwegein

http://www.globalknowledge.nl

Implementing Active Directory Federation...

Documents

Transcript of Implementing Active Directory Federation...