04 -
06
December
2023
IAM03 - Deploy and administer the OKTA© solution
IAM03 - Deploy and administer the OKTA© solution
N° IAM03
CYBERSECURITY
3 DAYS
Description
Program
Prerequisites
Description
- Understanding the different modules of the Okta solution
- Configure the basic settings of your Okta tenant
- Set up primary authentication on an MS AD directory
- Implement strong authentication (MFA) via Okta Verify
- Connecting applications based on federation protocols
- Provisioning via Okta Integration Network (OIN)
Program
Part 1 - Identity federation reminder :
Identity federation theory: principle, causes and objectives
Main protocols: SAML v2, OpenID Connect and OAuth
Part 2 - Basic Okta Configuration :
Theoretical presentation of the solution
Principle of connection to the MS AD directory
Practical work: configuration of a test Okta tenant,
connection of an MS AD directory, first graphic customizations
Part 3 - Application Federation in SAMLv2 :
Implementing SAML in Okta
Practical work: connecting an application
SAML2 in Okta, SAML assertion manipulation, SLO
Part 4 - OpenID Connect Identity Federation:
OIDC protocol: concept, flow (authorization code),
implicit, hybrid), SLO
Implementation of OIDC in Okta
Practical work: authorization code flow, implicit flow, hybrid flow, IDToken exploitation
Part 5 - Implementing MFA:
Principles of strong authentication: second factor typology, adaptive authentication
MFA in Okta: second factor available, policies.
Practical work: implementation of MFA with Okta Verify, triggering policy
Part 6 - Connecting and provisioning a SaaS application :
Principle of provisioning
Okta solution capability: application catalog, Okta Integration Network (OIN)
Practical work: implementation on a SaaS application
Part 7 - Integration of protocols in applications :
Integration principle: multi page application, single page application
Practical work: OIDC integration, SAML2 integration
Prerequisites
It is necessary to have a general knowledge of the principles related to access management (identification, authentication, authorization) and Web applications, as well as identity federation protocols (SAML, OIDC, OAuth)
INTENDED PUBLIC:
- CISO
- Security Engineer
- Architect
- Security Consultant
BOOK THE NEXT SESSION OF YOUR CHOICE
Click on the course of your choice
No events found!
3490€ HT
Inter and Intra-company
Face-to-face or distance learning
Difficulty : All public
PARIS / RENNES
