Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Identity & Access Management-Learn LDAP, SAML, OAuth, OpenID
Rating: 4.0 out of 5(723 ratings)
3,309 students

Identity & Access Management-Learn LDAP, SAML, OAuth, OpenID

SSO, OpenID Connect, Federated Identity, Azure RBAC Lab, LDAP Windows Server & IAM Lifecycle Management
Created byVarinder K
Last updated 5/2024
English

What you'll learn

  • Explain Identity and Access Management, differentiate Identity Management from Access Management, and describe their role in security
  • Distinguish Authentication, Authorization, and Accounting - and explain how MFA and context-based access strengthen identity verification
  • Understand federated identity - Identity Providers, Relying Parties, Secure Tokens — and select the right IDP for your organization
  • Explain SSO, describe SAML, OAuth, and OpenID Connect protocols, and determine which federation protocol suits each enterprise use case
  • Compare SAML, OAuth, and OpenID Connect - understanding key differences and when each protocol should be used in enterprise environments
  • Explain how LDAP works, understand Directory Information Trees and Object Classes, and build an LDAP server using Windows Server
  • Understand and compare 4 access control models - Role Based (RBAC), Rule Based, Mandatory Access Control (MAC), and Discretionary (DAC)
  • Configure Role Based Access Control in Microsoft Azure - assign real role permissions and understand how Azure implements RBAC
  • Manage the IAM identity lifecycle like user access reviews, system account reviews, and provisioning and deprovisioning processes
  • Apply NIST guidance on Attribute Based Access Control (ABAC) and understand how AWS Cognito manages cloud-native identity

Course content

8 sections36 lectures3h 6m total length
  • Course Introduction2:20
  • What is Identity and Access Management ?4:34

    An IAM Lecture! Uncover the secrets of "identity" in the digital world and explore "access" controls that keep your data safe. Learn how IAM secures your organization's resources!

  • What is Identity Management ?5:51

    Unlocking Secure Access! learn the art of verifying user identities & controlling data access. Learn how IAM safeguards your organization's valuable information.

  • What is Access Management ?5:23

    Access Management Explained! Unravel the secrets of granting & controlling user access to applications & data. Learn how IAM empowers secure and efficient resource management

Requirements

  • No prior IAM or identity protocol experience required as course starts from absolute basics
  • Basic familiarity with IT security, networking, or cloud concepts is helpful but not mandatory
  • Suitable for security analysts, IT administrators, cloud engineers, developers, and compliance professionals

Description

Identity management, also known as identity and access management, is a framework of policies and technologies for ensuring that the proper people in an enterprise have the appropriate access to technology resources.

Importance of Identity Security :

Identity Security empowers workers with simple and secure access to business resources using single sign-on and adaptive multi-factor authentication. Passwordless authentication improves the strength of security and reduces the friction involved for end users.

Identity security describes the proactive approach to safely controlling user and system information that is used to authenticate and authorize user identities for access to secure resources. It is an essential aspect of the identity and access management (IAM) space and serves as the cornerstone for security in any organization.

Do you struggle to explain the difference between authentication and authorization? Are you a security or IT professional trying to build a solid understanding of Identity and Access Management — from core protocols like SAML, OAuth, and OpenID Connect through to hands-on Azure RBAC and LDAP implementation?

Identity is the new perimeter. In a world of cloud applications, remote workforces, and Zero Trust security models, controlling who has access to what — and proving it to auditors — is the most critical security function in any organization.

This course gives you a complete, structured understanding of Identity and Access Management — from foundational IAM concepts through federation protocols, access control models, identity lifecycle management, and hands-on labs in Azure RBAC and LDAP using Windows Server.

What Makes This Course Different?


  • Covers all major identity federation protocols like SAML, OAuth, OpenID Connect — with a direct comparison of when to use each

  • LDAP deep dive : how LDAP works, Directory Information Trees, Object Classes, and a hands-on lab building an LDAP server using Windows Server

  • Azure RBAC lab : hands-on implementation of Role Based Access Control in Microsoft Azure

  • Covers 4 access control models like RBAC, Rule-Based, MAC, and DAC  in dedicated lectures

  • Complete IAM lifecycle coverage : provisioning, deprovisioning, user access reviews, and system account reviews

  • Covers AWS Cognito - cloud-native identity management for modern applications

  • Includes NIST guidance on Attribute Based Access Control (ABAC) - the next evolution beyond RBAC

  • Addresses Federated Identity Management (FIM) - including IDP selection, relying parties, and secure tokens

What You Will Learn


IAM Foundations

  • What Identity and Access Management is and why it is the cornerstone of organizational security

  • The difference between Identity Management and Access Management — and why both matter

  • The critical difference between Authentication and Authorization — and how they work together

  • What Accounting means in the context of IAM - the third pillar of AAA security

IAM Basics & Core Terminologies

  • What Multi-Factor Authentication (MFA) is and how it strengthens identity verification

  • What Context-Based Access Management is and how it enables adaptive, risk-aware access decisions

  • What LDAP is and how it works as a directory services protocol

  • What Federated Identity means and how it enables cross-organizational identity trust

  • How to make the right IDP (Identity Provider) selection decision for your organization

  • Key concepts - Secure Tokens, Identity Providers, and Relying Parties — explained clearly

Identity Federation & Protocols

  • How Single Sign-On (SSO) works and why it is essential for modern enterprise security

  • What SAML is, how it works, and when to use it for enterprise identity federation

  • What OAuth is, how its authorization flow works, and its role in API security

  • What OpenID Connect is and how it extends OAuth for authentication

  • A direct SAML vs OpenID Connect vs OAuth comparison — when to use which protocol

  • What AWS Cognito is and how it manages identity for cloud-native applications

  • Additional learning on Federated Identity Management (FIM) best practices

LDAP Deep Dive


  • How LDAP works in depth — the protocol, operations, and directory structure

  • Understanding LDAP and the Directory Information Tree (DIT) - how directory data is organized

  • What Object Classes are in LDAP and how they define directory entries

  • Hands-on lab: Build an LDAP server using Windows Server — from setup to connection

  • How to connect to Directory Services and query LDAP directories

Access Control Models


  • Role Based Access Control (RBAC) : assigning permissions based on organizational roles

  • Rule Based Access Control : dynamic access decisions based on defined rules and conditions

  • Mandatory Access Control (MAC) : system-enforced access based on classification labels

  • Discretionary Access Control (DAC) : owner-controlled access permissions and delegation

Identity & Access Lifecycle Management


  • Overview of the common IAM implementation process : planning, design, and deployment

  • How to conduct User Access Reviews : validating that access rights remain appropriate

  • How to conduct System Account Access Reviews : managing non-human privileged accounts

  • Provisioning and Deprovisioning : managing the full identity lifecycle from onboarding to offboarding

Additional Learning & Labs


  • NIST Guide to Attribute Based Access Control (ABAC) : the policy-based evolution beyond RBAC

  • Key differences between MAC and DAC : practical guidance for implementation decisions

  • How RBAC works in Azure : understanding Microsoft's implementation of role-based access

  • Hands-on lab: Implement RBAC in Azure : configuring real role assignments in Microsoft Azure

Course Structure at a Glance

Section 1 — IAM Introduction: Identity Management, Access Management Foundations

Section 2 — Basics & Terminologies: MFA, Context Access, LDAP, Federated Identity, IDP

Section 3 — Federation & Protocols: SSO, SAML, OAuth, OpenID Connect, AWS Cognito

Section 4 — LDAP Deep Dive: Protocol, DIT, Object Classes & Windows Server Lab

Section 5 — Access Control: RBAC, Rule-Based, MAC, DAC

Section 6 — IAM Lifecycle: Implementation, Access Reviews, Provisioning & Deprovisioning

Section 7 — Additional Learning: NIST ABAC, Azure RBAC Lab & Reference Articles

Section 8 — Quiz & Conclusion

Why This Matters Right Now

  • 80% of data breaches involve compromised identity credentials as IAM is the single most important security control

  • SAML, OAuth, and OpenID Connect are now mandatory knowledge for any security or cloud professional

  • Zero Trust security models are now mandated by US federal government - are built entirely on strong identity verification

  • Azure Active Directory is deployed in over 95% of Fortune 500 companies - Azure IAM skills are essential

  • Provisioning and deprovisioning failures are one of the top causes of insider threat incidents globally

  • Demand for professionals with IAM, federation protocol, and cloud identity skills is growing faster than any other security domain

Who this course is for:

  • Security Analysts & Engineers who need to Build complete IAM knowledge across protocols, models, and cloud identity
  • IT Administrators who need to Understand LDAP, Active Directory, and identity lifecycle management
  • Cloud & DevOps Engineers who need to learn OAuth, AWS Cognito, Azure RBAC, and cloud identity patterns
  • Compliance Officers & Auditors who need to understand access control models and user access review processes
  • CISOs & IT Managers who have to build strategic IAM program knowledge and IDP selection criteria
  • Software Developers who need to Understand SAML, OAuth, OpenID Connect for application integration
  • Anyone new to IAM Structured foundation covering every major IAM domain