Course Outline 
for 
WSO2 Identity Server 5.10.0 

Fundamentals 
 
 
 
 
 
 
​Email:​ [email protected] 
 
 

© 2020 WSO2 Inc. 

  
WSO2 Identity Server - Course Outline
 

Table of Contents 

Executive Summary 

Prerequisites 

Course Agenda 

Infrastructure Requirements 
Hardware Requirement 
Software Requirement 
Java 
WSO2 Products Used 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

   

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

Executive Summary 
WSO2  Identity  Server  Fundamentals  is  a  course  aimed at training Identity Server administrators 
on  the  features  of  the  product  as  well  as  the  underlying  concepts  and  standards.  The scope of 
this  course  will  be  limited  to  using  commonly  used  features  of  the  WSO2  Identity  Server  to 
provide a solution related to identity management without having to extend the product. 
 
 
Duration 

3 days  
 
 
Training Type 

WSO2 product training and hands-on session 

 
 
Target Audience 

System Administrators and Identity Administrators 

 
 
Complexity 

Beginner/Intermediate 
 
 
   

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

Prerequisites 
Open Standards 
 
Having a knowledge of the following standards will be useful when following this course: 
 
● LDAP [1] 
● SAML2 [2] 
● OAuth 2.0 [3] 
● OpenID Connect [4] 
● SCIM 2.0 [5] 
● XACML 2.0 and 3.0 [6][7] 
 
[1]​ https://tools.ietf.org/rfc/rfc4511.txt 
[2]​ http://saml.xml.org/saml-specifications 
[3]​ ​http://oauth.net/2/ 
[4] ​http://openid.net/connect/ 
[5]​ ​https://tools.ietf.org/html/draft-ietf-scim-core-schema-20 
[6]​ https://www.oasis-open.org/committees/xacml/ 
[7] ​http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.html 
   

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

Course Agenda 
Identity Server 5.10.0 Developer Fundamentals  
 
Day 1 
Introduction to Identity and Access Management  
● Traditional Access Management 
● Identity and Access Management Concepts 
● Introduction to WSO2 Identity Server 
 
User Management  
● Introduction to User Management 
● Users, Claims, Roles and Permissions 
● Role-Based Access Control 
● User Stores  
Lab: User Management via Management Console 
Lab: User Self-Registration via User Portal  
 
User Account Management 
● User Registration 
● Password Management 
● Account Recovery 
● Account Locking, Disabling and Suspension 
Lab: Password Recovery 
Lab: Username Recovery 
Lab: Account Locking a​nd Disabling 
Lab: Password Policies 
 
Access Delegation with OAuth 2.0 
● Access delegation 
● OAuth 2.0 Concepts 
● OAuth 2.0 in Action 
Lab: Access Delegation with OAuth 2.0 
 
Day 2 
 
Access Delegation with UMA 
● Access delegation 
● User Managed Access Concepts 
● UMA in ActionUMA Roles 
● UMA Phases 
Lab: Access Delegation with UMA  

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

 
Single Sign-on (SSO) 
● Introduction to SSO 
● Benefits of SSO 
● SSO Standards 
 
SSO with OpenID Connect 
● Requirement of OpenID connect  
● ID token and OIDC Identity Layer
 
● OpenID Connect Overview
 
Lab: SSO with OpenID Connect 
 
SSO with SAML 
● Introduction to SAML 
● SAML2 participants and Authorization Flow 
● SAML Specifications 
Lab: Single Sign-On - SAML 
 
Identity Federation 
● Requirement of Identity Federation 
● Identity Federation Concepts 
● Benefits of Identity Federation 
Lab: Identity Federation 
 
 
Day 3 
 
Strong Authentication with Multi-Factor Authentication (MFA) 
● Authentication 
● Multi-Factor Authentication 
● Benefits of Multi-Factor Authentication 
Lab: Strong Authentication - MFA  
 
Strong Authentication with Adaptive Authentication 
● Authentication 
● Adaptive Authentication 
● Adaptive Authentication Scenarios  
Lab: Strong Authentication - Adaptive Authentication  
 
 
 
 

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

User Provisioning  
● User Provisioning 
● Benefits of User Provisioning 
● User Provisioning Standards 
● User Provisioning Methods 
Lab: Inbound Provisioning with SCIM2 
Lab: Outbound Provisioning with Salesforce 
 
Fine-Grained Access Control with XACML 
● Access control and authorization 
● Authorization models 
● Overview of XACML 
● XACML Reference Architecture 
● XACML in Action 
● Pros and Cons of XACML 
Lab: Building an XACML policy 
Lab: Testing an XACML policy 
 
 
Multi-Tenancy 
● Overview of Multi-tenancy 
● Multi-tenancy vs. Single-tenancy Architecture 
● Multi-tenancy vs. Multi-instance Architecture 
● Multi-tenancy vs Cloud-native Architecture 
Lab: Configuring multi-tenancy  
 
 
 
   

© 2020 WSO2 Inc.   

  
WSO2 Identity Server - Course Outline
 

Infrastructure Requirements 

Hardware Requirement 

During the lab session attendees are required to deploy the created samples in multiple 
middleware products. P​ articipants are required to have a workstation with at least 6GB of 
memory to run the samples smoothly. 
 
Software Requirement 

 
Java 

Oracle Java 1.8.x [1] 

Apache Tomcat 8 [2]  
MySQL 5.7 or above [3]  
Corresponding MySQL JDBC Connector [4]  
 
[1] ​http://www.oracle.com/technetwork/java/javase/downloads/index.html 
[2] ​https://tomcat.apache.org/tomcat-8.0-doc/setup.html 
[3] ​https://dev.mysql.com/downloads/mysql/5.7.html 
[4] ​https://dev.mysql.com/downloads/connector/j/ 
 
WSO2 Products Used 

WSO2 Identity Server 5.10.0  

[1] ​https://wso2.com/identity-and-access-management/ 
 
 
The participants are expected to be connected to the internet throughout in order to 
successfully complete the lab exercises.  
 

© 2020 WSO2 Inc.