Join InCommon

19
Sep.
2024

Academy

6 Things You Need to Know About the New MidPoint Deployment: Group Synchronization Course

Share

Array

Estimated reading time: 6 minutes

By Iain Oldman – Copywriter, Content Marketing, Internet2

As part of InCommon Academy’s mission to meet the professional development needs of the identity and access management (IAM) community, we are excited to offer a new training course to enhance your knowledge of group and role synchronization solutions.

This December, InCommon Academy is running MidPoint Deployment: Group Synchronization training — a new virtual course that builds on skills learned through our MidPoint Deployment: First Steps training.

midPoint

MidPoint, built by Evolveum, is an identity governance and administration platform that provides solutions for unified management of institutional identity data. The new course follows Evolveum’s “Group Synchronization Methodology” and teaches participants how to utilize midPoint to extend identity governance configurations via synchronization and provisioning.

Ivan Noris, an expert identity engineer with Evolveum, leads this new course with InCommon Academy. For the past five years, Ivan has taught engaging midPoint training courses for InCommon Academy and is now returning with the newly built MidPoint Deployment: Group Synchronization course.

To help IAM professionals understand why this new course may be vital for their professional development journey and why they should enroll, Ivan has laid out the most essential information about MidPoint Deployment: Group Synchronization.

From what you’ll learn to who should take the class — and more — here are six key takeaways you should know about MidPoint Deployment: Group Synchronization training.

InCommon academy logo

What You’ll Learn From MidPoint Deployment: Group Synchronization Training


  • Extend midPoint configuration from synchronization of users and their accounts to synchronization of groups, roles, and similar objects, including membership
  • Assign roles to users to provision their accounts to the target system and make them members of corresponding groups, roles, and similar objects
  • Use simulations to preview all changes to avoid unintended data modification or deletion

Sign Up Today
Ivan Norris posing for a photo.
Ivan Noris
1. What Will I Learn From MidPoint Deployment: Group Synchronization Training?


Ivan: Students will learn how to extend the knowledge they gained from the MidPoint Deployment: First Steps training to groups, roles, and memberships. They can look forward to smooth configuration in the midPoint graphical user interface, utilizing a new and improved resource wizard. 

Similar to First Steps, this course will explain how to get existing objects (including membership) into midPoint, deal with various exceptions, and manage data inconsistency. Then, the management of said objects will be transferred to midPoint, where we will learn to automate their management using other midPoint features.

Some groups may be managed exclusively in the target system and not in midPoint, temporarily or permanently after the integration. Special administrator groups or groups irrelevant to user administration (such as groups of printers) can be excluded from provisioning.

We will explain the relations between accounts and entitlements (which represent access rights) and show how midPoint can manage, visualize, and report them in its GUI.

After graduating from this course and its prerequisite, First Steps, you will have enough information to integrate any system and manage all available objects there.

We utilize a methodology that explains how to proceed with Group Synchronization, similar to our First Steps methodology.

2. Who Should Enroll in This Class?


Ivan: Our virtual course is designed for identity management architects, system engineers, and deployment partners. 

The course is aimed to extend the identity governance and administration configuration delivered in the First Steps training with synchronization and provisioning.

Group Synchronization training is ideal for midPoint beginners who have completed First Steps training. We also encourage experienced midPoint users to take the course, especially midPoint veterans who want to learn the “Group Synchronization” deployment methodology, get a refresh on midPoint basics, and expand their knowledge of the platform using the latest midPoint release and its features.

3. Why Did Evolveum Develop This New Course?


Ivan: The IAM field is attracting an increasing number of newcomers. They need not only midPoint training but also the correct methodology to apply their knowledge quickly and efficiently in a real environment. This new training is focused on exactly that.

This training is designed to utilize all the new features of the upcoming midPoint 4.9. We want to introduce the proper way to synchronize groups with roles and their membership.

We should also mention the simulation feature, which has been possible since midPoint 4.8. We use simulations all the time to see what will happen and to prevent unexpected data modifications or deletions.

4. How Does This Class Build On Knowledge Learned from MidPoint Deployment: First Steps?


Ivan: Our courses are designed to follow the identity governance learning journey of architects and engineers. In the First Steps course, participants learned about the provisioning and synchronization of users and accounts, which were demonstrated on a personal database as a source of identities and a directory server as a target. 

In Group Synchronization, we will add proper group management and introduce the concept of roles. We will create midPoint roles from the existing groups and will assign these roles to the users.

To ensure continuity, all of this will be demonstrated in the same environment where First Steps finished.

*Note from InCommon Academy: Completion of MidPoint Deployment: First Steps is a prerequisite for enrollment in MidPoint Deployment: Group Synchronization. If you have not yet completed the course, you can still enroll in our Fall 2024 MidPoint Deployment: First Steps course today.

5. How Do Training Participants Learn the Course Materials?


Ivan: The training will include many hands-on labs. Without them, it would just be all theory. 

We are particularly committed to mimicking the real-life environment, which contains the directory server (simulating Active Directory) with existing group accounts. Therefore, we are not starting from scratch but rather from an environment with preexisting data that you learn to migrate under centralized control.

6. When Does Training Start?


MidPoint Deployment: Group Synchronization Training runs Dec. 2-5, 2024. 

If you are interested in expanding your knowledge of midPoint as a solution for your identity data management, you need to register in MidPoint Deployment: Group Synchronization by Nov. 18.

You can sign up for MidPoint Deployment: Group Synchronization on the InCommon Academy website. Please contact cbroomfield@internet2.edu with any questions about course materials, registration, or other InCommon Academy courses.

Sign Up for This Course Today