立即与支持人员聊天
与支持团队交流

Safeguard-Foundation

Detail Image
  • All classes are priced per student.
  • Private classes are available.

Register Online

Overview| Training Course Details

The purpose of this course is to provide students with a general overview of the One Identity Safeguard feature-set, installation, configuration and customization of the solution framework as well an overview of the main business processes that are part of the solution framework. This course focuses on lab performance and was developed for people just interested how Password Management and Privileged Session Monitoring and Analytics concepts are implemented in One Identity Safeguard.

Audience:

Customer, Sales and Technical Sales

Language:

English

Duration:

5 days (remote)

Prerequisite(s):

None

Agenda

  • Overview of the feature-set of One Identity Safeguard for Privileged Passwords (SPP)
  • PAM main business processes
  • Customization capabilities of the solution framework
  • Deployment Considerations
  • Setup and Configuration
  • Privileged Passwords Workflow
  • External ingegration
  • Day-to-day operations
  • Support and Troubleshooting
  • Overview of the feature-set of One Identity Safeguard for Privileged Sessions (SPS)
  • Setup and initialize SPS and deployment scenarios
  • Setup connections and Policies
  • Device management and maintenance
  • Advanced authentication techniques
  • Advanced features
  • Connecting Safeguard and Safeguard for Privileged Sessions
  • Setup analytics in SPS

Content Details

TopicLabs
Overview & Architectire of SPP
Training Module: SPP-IAO
  • Features
  • High-level Workflow
  • Appliance Architecture
  • System Requirements
  • Ports
  • Glossary of Terms
  • -
Setup and Configuration of SPP
Training Module: SPP-APM
  • Setup
  • Appliance Configuration
  • Backup & Retention
  • Initialize SPP
  • Setup networking
  • Setup admin user
Asset and Account Management
Training Module: SPP-AAM
  • Adding Assets
  • Adding Directories as Assets
  • Adding Accounts
    • Manually
    • Through Import
  • Through Discovery
  • Add Windows Server as asset
  • Add Linus server as asset
  • Add accounts
  • Setup account discovery
  • Add AD as asset
User Management on SPP
Training Module: SPP-SUM
  • Users
  • Local and Directory
  • Linked Accounts
  • User Groups
  • Local and Directory
  • Add local users and setup roles
  • Add AD users and setup roles
Entitlements of SPP
Training Module: SPP-SGE
  • Entitlements
  • Access Request Policies
    • General
    • Scope
    • Requester/Approver/Reviewer
    • Access Config
    • Session Settings
    • Time Restrictions
  • Emergency Access
  • Asset Groups
  • Account Groups
  • Create password entitlements for Windows servers
  • Create password entitlements for Linux servers
  • Assign users
  • Create SSH key release assess request policy
Password Request Workflow
Training Module: SPP-PPW
  • Workflow Overview
  • Request
  • Approval
  • Retrieve
  • Review
  • Checkout credentials for SSH
  • Checkout credentials for RDP
  • Test AD group users
External Integration
Training Module: SPP-EXI
  • System related integration: SNMP, SMTP and syslog
  • Identity and Authentication: LDAP, RADIUS, Fido
  • Other integration: Ticketing, Cloud and Application to Application (A2A)
  • Integrate SPP to Starling Cloud Assistant
  • Integrate SPP to OneLogin
Reporting & Auditing SPP
Training Module: SPP-SRA
  • Activity Center
  • Entitlement Reports
  • Export
  • Password Archive
  • Changelog
  • -
Using SPP REST API Interface
Training Module: SPP-API
  • SPP API interface
  • Configure via swagger, postman, curl
  • Shell and cmdlet integration
  • Configure SPP via swagger
  • Configure SPP via curl and Postman
  • Install bash extension
  • Install Powershell commandlets
SPP Clusters
Training Module: SPP-SHA
  • Node roles
  • Primary nodes
  • Replicas
  • Quorum
  • Node numbers
  • Cluster configuration
  • -
Support & Troubleshooting SPP
Training Module: SPP-TRB
  • Backup and retention
  • Archive servers
  • Audit log maintenance
  • Licensing models
  • Certificates
  • Update SPP
  • Diagnostics
  • The OI Support Portal
  • Support bundle generation
  • Setup backup server
  • Manual archive
Introduction to SPS
Training Module: SPS-INT
  • What is SPS
  • Deployment scenarios
  • Core functionalities
  • Operation modes
  • External integration
  • -
Configuration and Welcome Wizard
Training Module: SPS-CWI
  • Configuration of SPS
  • Access
  • Landing Page
  • System status
  • Menu areas
  • Basic settings
  • Initialize pre-installed SPS
  • Setup networking
  • Setup the management interface
Connections
Training Module: SPS-CST
  • Protocol overview
  • Enable simple transparent telnet connection
  • Enable a non-transparent telnet connection
  • Setup transparent telnet connection
  • Setup non-transparent telnet connection
  • Initiate telnet connections
Search and Audit Player
Training Module: SPS-SAP
  • List connections
  • Connection details
  • Replay audit trail
  • Use the search interface
  • Replay audit trail with the Desktop Player
  • Replay audit trail with the built-in player
  • Search audit trail content
Simple SSH connections
Training Module: SPS-SSH
  • Protocol overview
  • Setup ssh connections
  • Host key checking
  • Setup transparent, non-transparent connection
  • Setup inband destination selection
  • Configure server-side host key checking modes
Simple RDP Connections
Training Module: SPS-RDP
  • Protocol Overview
  • RDP versions and authentication
  • Setup transparent RDP connection
  • Setup non-transparent connection
  • Cretate transparent RDP connection
  • Setup inband destination selection
  • Test interactive mode
Sudo IOLog in SPS
Training Module: SPS-SIL
  • What is sudo
  • What is sudio iolog
  • SPS and sudo iolog
  • Configure sudo iolog and SPS
  • Replay sudo iolog in SPS
Policies
Training Module: SPS-POL
  • Policy types
  • Channel policy
  • Time policy
  • Create SSH channel policy
  • Test the policy
Device User Management
Training Module: SPS-DUM
  • Managing users and groups
  • Setup group permissions
  • Access Rights Report
  • Create user
  • Create group
  • Set permissions
  • Assign users to groups
Support & Troubleshooting SPS
Training Module: SPS-TRB
  • Licensing
  • Firmware and hot fixes
  • Versioning
  • System Backup & Configuration Management
  • Monitoring & Alerting
  • Troubleshooting Tools
  • Logging
  • Debug Bundle
  • Console
  • Support Tickets
  • Setup backup policy
  • Use backup policy
  • Export SPS configuration
  • Setup mail alert
Advanced Authentication
Training Module: SPS-AAF
  • User listing policy
  • AD/LDAP integration
  • Gateway Authentication
  • 4-eyes authentication
  • User mapping
  • Configure user listing policy
  • Configure gateway authentication
  • Configure user mapping in SSH
Credential Stores
Training Module: SPS-CST
  • Why credential store
  • Types of credential stores
  • Configure and use local credential store in SSH
Realtime Monitoring
Training Module: SPS-RTM
  • What is monitored
  • Filters and actions
  • Configuration
  • -
Advanced RDP
Training Module: SPS-ARC
  • Inband destination selection in RDP
  • Restrictions and solutions
  • Remote Destop Gateway
  • Join SPS to a domain
  • Configure certificates
  • Configure RDGW
Audit Policy
Training Module: SPS-APO
  • Encrypt audit trails
  • Sign audit trails
  • Timestamp audit trails
  • Configure audit policy to encrypt/sign/timestamp audit trails
  • Replay and check audit trails
Reporting SPS
Training Module: SPS-REP
  • Available reports in SPS
  • -
Clustering SPS
Training Module: SPS-SHA
  • Provide Hight Availability in SPS
  • Share service load between SPS devices (standalone or HA)
  • -
Connecting SPS to SPP
Training Module: SPS-JSS
  • Connect SPS and SPP together
  • Methods of Workflow if devices are connected
  • Linked accounts
  • Join SPS and SPP
  • Configure password initiated workflow
  • Configure session initiated workflow
Analytics and SPS
Training Module: SPS-SPA
  • What is UBA and biometrics
  • Prepare analytics
  • Setup SPS-PAA
  • Setup external indexer
  • Build baselines
  • Scores in search queries
  • Configure external indexers