Hands on Training to Accelerate and Secure XML and Web Services with IBM Data Power SOA Appliances

Top Reasons for Attending our Training Engagement

Content
This instructor-led course covers the Web service and XML application security and monitoring features provided by IBM DataPower SOA Appliances. Learn how to configure an XML firewall to protect against a new class of XML – based threats. Create a Web services proxy to virtualize Web service application. Configure SSL to and from that Datapower appliance. Enforce service level policies to manage traffic entering to and from this appliance. Students will learn how to troubleshoot their services using logs and probes. Lastly, examine best practices and architectural scenarios for effective using DataPoawer appliances in you SOA architecture.

Structure
Our innovative and flexible learning approach consists of instructor-led learning methods, supplemented with hands-on exercises, mentoring and access to our online library of knowledge (OASIS) including our World-class training material. You have the choice to customize your training plan by choosing from 50 different topics or use our full training engagement.

Location
Training can be provided at the customer location. Systems and software should be provided by them.

Budget
We offer a great value for your money. If the training takes place at your own premises, you will eliminate travel costs and avoid time away from the office (Any installation work is done at your company site will be charged at $150/Hr). Our training engagement is priced at $6000.00 + Expenses (Unlimited attendee’s if training engagement is hosted at your company site)

Course Duration /Scheduling
A full-length engagement spans over 5 business days (1 Week). Course outline and duration can also be customized based on your time and need.

Our Premium Services

We deliver premium services to help customers by improving the performance, security and management of business processes built of reusable, open-standards based software components, which operate independently from the applications and computing platforms on which they run.
We help customers to improve security and speed the processing of computer transactions through our vast experience.

Course Objectives

After completing this course, you should be able to

• Describe the security features and key capabilities of the XI50 IBM Data Power SOA appliance.
• Explain the role and values of an IBM Data Power SOA appliance in IBM middleware solution architecture in terms of performance, security and integration.
• Configure key security on an IBM DataPower SOA appliances elaborating on the configuration objects for each service.
• Integrate WebSphere Data Power SOA Appliances with desecrate Systems.
• Develop/Integrate any-to-any transformation using WebSphere Transformation Extender
• Configure Open Database Connectivity (ODBC) support for database connectivity.
• Manage/Monitor access controls using ITCAM

Audience

This Course is intended for integration developers responsible for configuring service policies on the IBM WebSphere Data Power SOA appliance

Pre-Requisites

Security-based concepts and protocols, XML related technologies such as XML schemas, XPath and XSLT, Web Service fundamentals and Web Service security specification.

Introduction to WebSphere Data Power appliances

• Introduction to IBM Web Sphere Data Power SOA appliances
• Introduction to Data Power SOA appliances Administration
• Data Power SOA appliance installation and configuration
• Introduction to Web Services, XML and XSL, XML firewall
• Configuration to create Web service Proxy, XML Firewall
• Content-based routing using XML firewalls

Introduction XML and Web Service security

• Introduction to XS40/XI50 security features
• Introduction to Data Power Crypto tools
• Configure Data Power appliance to communicate using SSL
• Associate SSL proxy profile with keys and certificate
• SSL handshake/Digital Signatures
• Advance XML firewall configuration
• Implementing service policy
• Content based routing using XML firewalls

Introduction to XML threat protection

• Addressing the security concerns
• Types of XML attacks
• Message tampering
• Recursive entity attack threat protection
• Excessive attribute count protection
• SQL injection attack and other potential attack prevention

Introduction to Web Service encryption and decryption

• Create cryptographic objects
• Create XML firewall to encrypt messages
• Create an XML firewall to sign message
• Field level encryption and decryption

Introduction to Authentication, Authorization and Auditing

• Obtain connectivity to any LDAP
• Create AAA policy using LDAP
• Defining access control policies
• Internal access control resources
• AAA XML file
• Access control using SAML

Common use patterns for connecting Data Power Service to different Systems

• FTP
• HTTP/HTTS
• IMS
• MQ/JMS/TIBCO
• Database
• NFS Clients
• WTX (WebSphere Transformation Extender)
• ITCAM

Introduction to Multi protocol gateway service for any-any communication and transformation

• Create an multi-protocol gateway for any-any transformation
• Configuration of Data Power for use with WebSphere Transformation Extender.
• Create an multi-protocol gateway for any-any communication
  • MQ-to-HTTP gateway
  • HTTP-to-MQ gateway
  • MQ-to-MQ gateway

Introduction to troubleshooting / problem determination

• Create traffic patterns, message types, message filters, message monitors.
• Configure a service level monitoring policy
• Associate message monitors with XML firewall service
• Data Power architectural scenarios