|
|
IBM TAM for e-business Quickstart for Webservers
Overview
IBM Tivoli Access Manager for e-business QuickStart for Web Servers is designed to help organizations rapidly install and configure TAM for e-business. The deliverables include installation and configuration of the Policy server and web enforcer, level 1 integration with one application, on-site training, requirements workshop, and Design document. A project plan for phase two including options for level 2 integration and production roll-out is also delivered.
Statement of Work
Activities, Tasks and deliverables for this service are as follows:
| Phase |
Activities, Tasks and Deliverables |
Project Initiation |
Kick-off meeting
- Review scope, objectives and deliverables of QuickStart
- Identify enterprise web applications and review business and
technical requirements
- Identify primary application for QuickStart and document the
use case including:
- Application server components
- Types of users
- Types of transactions per user
- Types of objects
- Authentication mechanisms per user
- Document TAM e-business component architecture and hardware
specifications
- Identify Development, Quality Assurance and Production components
of the target application.
- Map TAM e-business components into enterprise network including
firewalls.
- Document available TAM e-business software. The latest versions
are listed for reference.
- Tivoli Access Manager Policy Server
- OS version with required patches
- Gskit 7.0
- DB2 8.2
- IBM Directory Server 5.2
- LDAP client 5.2
- Http server 1.3.28
- Access Manager Runtime 5.1
- Access Manager Policy Server 5.1
- WebSphere Application Server 5.1
- Web Portal Manager 5.1
- Tivoli Access Manager WebSeal Server
- OS version with required patches
- Gskit 7.0
- Ldap client 5.2 Access Manager Runtime 5.1
- WebSeal 5.1
- Get hostname, IP address, gateway and DNS server for all TAM
e-business servers
- Identify any Quality Assurance tests available to verify software
functionality.
Implementation
Plan
- Identify implementation contacts
- Project Manager
- Network Manager
- Application Manager
- Finalize implementation schedule
- Understand policy regarding visitors.
- Obtain any clearances or permits.
Deliverables:
Project plan and sign-off
|
|
Installation & Configuration |
Site orientation
- Get visitors badge
- Identify work space
- Introductions to project, network and application manager
Installation: Policy Server on
machine 1
Install DB2 server
- Validate OS installation and patches
- Install DB2 8.1
- Validate configuration
Install LDAP server
- Install Gskit 7.0
- Install IBM Directory Server 5.2
- Install IBM Directory Server client 5.2
- Install IBM Http server 1.3.26
Install Directory Server Admin Tool
- Install Java Runtime
- Install WebSphere Application Server 5.02
- Install IDS web admin tool
- Configure LDAP server
Install Policy Server
- Install Access Manager Runtime 5.1
- Install Access Manager Policy Server 5.1
Install Web Portal Manager 5.1
- Install Java Runtime
- Install WebSphere 5.02Install Web Portal Manager
- Validate admin console using web GUI
Installation: Web Server Plug-in
- Validate OS installation and patches
- Install Gskit 7.0
- Install IBM Directory Server client 5.2
- Install Access Manager Runtime 5.1
- Install WebSeal Server 5.1 or plug-in
- Request and install WebSeal PKI certificate
- Validate installation
Deliverable:
|
Application Integration |
Level 1 Integration with the target
web application
- Create test users and groups
- Setup smart junction with the back-end application
- Setup query-contents to import objects
- Define and attach a sample Access Control List
- Define and attach a sample protected object policies
- Define and attach an Authorization rule
- Setup Delegated Administration for one administrator
- Setup user self-service for passwords
|
| Training
|
IBM Tivoli Access
Manager for e-business 5.1 – Introduction
2 days – up
to two students – one copy of course workbook
- IBM Tivoli Access Manager for e-business 5.1
- IBM Tivoli Access Manager for e-business Components
- Access Manager and the LDAP User Registry
- Web Portal Manager and pdadmin
- Managers and User Groups
- ACL and POP
Management
- Authorization
Rules
- Introduction to WebSeal
- WebSeal Installation and Configuration
- WebSeal Authentication Mechanisms
- WebSeal Junctions
- Single Sign-On
- Windows Desktop Single Sign-On
- Logging and Auditing
- Web Server Plug-ins
- Web Application Server Integration
IBM Tivoli Access
Manager for e-business 5.1 Architecture
2 days –
up to two students – one copy of course workbook
-
IT Security Architecture
-
Access Manager Solution
Architecture
-
Access Manager Project
Planning
-
Access Manager for
e-business Design Points
-
Authentication and
Delegation Design
-
Authorization Design
-
Extending a Secure
e-business
|
| Requirements
Discussion |
- User Registry
- Application integration
- Authentication
- Authorization
- Capacity planning
- Firewall and network integration
|
| Architecture
& Design |
Production System Architecture
- User Registry architecture
- Application integration architecture – level 2 and 3
- Authentication architecture
- PKI architecture
- Authorization architecture
- Production system architecture
- Network integration architecture
- Performance and Scalability
Deliverable:
|
| Next
Step |
Production System - Implementation approach
- Phases
- Statement of work
- Project plan
- Cost estimate
|
Ordering Information
This service is ordered as a Firm Fixed Price Deliverable. It includes the labor expended for travel time but does not include travel expenses. SPS will charge for actual transportation costs. Any hardware or software required for the delivery of this product is not included.
|
