Learn to protect an application on an application server with OpenAM, including testing on a dedicated second server and understanding web versus application servers.

Explore the mvc architecture, where a client request is intercepted by a servlet, dispatched to the model using the backend database, and rendered to the client by a jsp view.

Explore how the java agent intercepts inbound requests in a java container, forwards them to access manager for authentication and authorization, using core components like agent filter and agent profile.

Configure the java agent in the subscriber realm, enable centralized configuration and the filter, and test protection and JWT cookies in a Tomcat deployment.

Study how authentication levels in OpenAM assign integers to modules and compute the final token level from executed modules, with options to exclude required or requisite modules in deployment.

Explore ForgeRock OpenAM part 2's various authentication modules, including Active Directory configurations and adaptive risk for multi-factor authentication, plus anonymous and data store modules, with cookie and OTP-based risk assessment.

Implement multi-factor authentication with a chain in ForgeRock OpenAM, using a data store module and a custom email otp module. Learn to test and validate the mfa flow.

Explore adaptive MFA with data store, adaptive risk, and email OTP modules, implementing a chain where first login prompts OTP and subsequent logins bypass it via a custom post-auth cookie.

Explore authentication trees in Forgerock OpenAM, learning how authentication nodes enable intelligent authentication, offering multiple outcomes beyond two, and how trees differ from chains to design complex workflows.

Identify the two node types in OpenAM trees—collector nodes that collect data and decision nodes that return true or false—along with examples like username, password, and OTP collectors.

Create a login tree in Forgerock OpenAM by collecting username and password with collector nodes and a page node, then validate with a data store decision and test the tree.

Learn to implement retry logic in Forgerock OpenAM authentication trees by calling a tree within a tree and using account lockout to log out after failed logins.

Develop multi-factor authentication in Forgerock OpenAM using a tree, generating and emailing an OTP, then collecting and validating it via OTP decision nodes.

Master rest apis and postman to test identity and access management tasks in OpenAM. Explore client–server dynamics, three-tier architecture, json and xml formats, and CRUD-style operations with practical postman workflows.

Explore openam rest api practical using postman, learning authentication, token handling, and querying users across realms. Master rest api basics, status codes, headers, and resource navigation for openam.

Explore rest api problems and solutions in openam: diagnose session expiration, token invalidation, and authentication challenges using admin sessions, postman tests, and dynamic session updates.