Plan Szkolenia
Introduction
- The case for SOS (Single-Sign-On-Authentication)
- CAS vs LDAP vs OpenID
An overview of the CAS Architecture
- System components
- CAS Server
- CAS clients
- Supported protocols
- Software components
- Spring MVC/Spring Webflow
- Ticketing
- Authentication
Building CAS as an Overlay Project
- Building and deploying with Gradle, Maven and Docker
- Using custom and third-party source
- Managing dependencies
Configuring Authentication in CAS
- Orchestrating authentication handlers with authentication manager
- Choosing authentication handlers and schemes
- Testing the default authentication scheme
- Principal Resolution
- Transforming the user id
- Setting up "Remember Me" long-term authentication
- Setting up proxy authentication
- Multi-factor authentication (MFA)
- Limiting failed login attempts with login throttling
- Configuring an SSO session cookie
Attribute Resolution and Release
- Principal-Id attribute: receiving authenticated userid
- Attribute release policy: Releasing attributes to applications
- Caching attributes: Caching resolved attributes
- Encrypting attributes: Conditionally encrypting attributes
Troubleshooting
Summary and Next Steps
Wymagania
- An understanding of security concepts (authentication, authorization etc.)
- Familiarity with Linux and the command line
Audience
- System administrators
Opinie uczestników (5)
Dostęp do narzędzi i możliwość zadawania pytań komuś przyjaznemu, kto nie będzie mnie oceniał.
Kiara
Szkolenie - Open Source Cyber Intelligence - Introduction
Przetłumaczone przez sztuczną inteligencję
Przegląd tematów związanych z ryzykiem i przygotowanie do egzaminu
Leszek - EY GLOBAL SERVICES (POLAND) SP Z O O
Szkolenie - CRISC - Certified in Risk and Information Systems Control
Przetłumaczone przez sztuczną inteligencję
The simple explanation of the trainer
Mohammed salem - Palestinian Police
Szkolenie - Open Source Intelligence (OSINT) Advanced
A wide range of knowledge of the lecturer.
Marcin Szklarski - Santander Consumer Bank
Szkolenie - CCSK Plus (Certificate of Cloud Security Knowledge - Plus)
Lot's of information explained very well. Good examples, interesting exercises. Trainer showed us his real world experience.