This is a Web-based course with optional hands-on labs for IBM Tivoli Access Manager for Operating Systems 6.0. IBM Tivoli Access Manager for Operating Systems provides additional authorization policy enforcement for UNIX and Linux systems.This course will cover architecture, user and access management, and troubleshooting. This training course discusses features of Tivoli Access Manager for Operating Systems V6.0. Promotional versions of Tivoli Access Manager for Operating Systems V6.0, which may be preinstalled on AIX systems, do not have all functions enabled.
Objectives
Upon completion of this course students will be able to:
Describe the architecture of Tivoli Access Manager for Operating Systems (TAMOS)
Explain the role of each component that comprises the TAMOS environment
Describe runtime components in detail
Explain the replication process
Describe how to manage users and groups in TAMOS
Create and import users and groups
Manage access to system resources
Describe how to verify and implement policies
Create and implement policies
Create protected object policies (POPs), access control lists (ACLs), and extended attributes
Create trusted computing base (TCB) objects and explain the impact of TCB
Describe how to enable tracing
Explain techniques for troubleshooting
Identify common problems
Course outline
Architecture
Describe the architecture of TAM for OS.
Explain the replication process.
Explain how TAM for OS behaves when isolated from Tivoli Access Manager (TAM) components.
Explain the role of each component that comprises the TAM for OS environment.
Explain the key files and directories that make up TAM for OS.
Describe runtime components in detail.
Describe the TAM for OS authentication and authorization models.
Explain the advantages of multiple secure domains.
Describe the TAM for OS protected object space structure.
Users and Groups
Describe the system defined users and groups.
Explain best practice security roles for TAM for OS.
Describe how to manage users and groups in TAM for OS.
Create and import users and groups.
Access
Describe protected access control lists (ACLs) and object policies (POPs).
Create ACLs and POPs.
Create objects.
Create policies to protect system resources.
Create trusted computing base (TCB) objects.
Describe how to implement and verify policies.
Explain how TAM for OS impacts various applications and processes.
Implement a policy that interacts with other applications.
Troubleshooting and Maintenance
Explain techniques for troubleshooting.
Identify common problems.
Manage certificates related to secure communications.
Describe how to enable tracing.
Manage credentials.
Manage the TCB.
Explain the impact of upgrading files that reside in the TCB.
Back up and restore TAM for OS files and databases.
Who will benefit from this course
System Administrators, Security Administrators and Implementers can benefit from this course.
Required skills/knowledge
The following list contains the prerequisite knowledge or Tivoli product knowledge an attendee must have prior to attending the course:
Basic operating-system administrative skills for Linux and Windows
Basic knowledge of Lightweight Directory Access Protocol (LDAP)
TCP/IP fundamentals
Basic knowledge of IBM WebSphere Application Server
Basic knowledge of IBM Tivoli Access Manager for e-business 6.0 architecture and system administration
