1

Oracle Enterprise 11g Course

Oracle Enterprise Gateway 11g: Security Management for SOA & Cloud

What you will learn

Oracle Enterprise Gateway 11g, a security gateway product in the FMW product family, primarily provides the first line of defense for SOA and Cloud environments.

This course is ideal for participants who have a basic understanding of web application security vulnerabilities. It will help participants brush up on their XML and web services security knowledge. It will teach them the usage of OEG tools to configure policies and filter in order to secure and accelerate XML as well as Web Services.

Participants will also learn how OEG is used together with Oracle Service Bus and Oracle Web Services Manager to provide an end-to-end security solution for SOA composite applications and web services in the Cloud, and how it leverages Oracle Identity and Access Management products to provide authentication and authorization. Learn To:

Describe the XML-based threats to an enterprise environment Describe OEG architecture and components Block XML attacks using OEG

Accelerate XML processing and manage traffic through OEG Secure XML messages and web services via OEG tools Provide end-to-end security for SOA composites with OEG


Benefits to You

Provide the first line of defense for SOA and Cloud environments for your organization. Use your new skills to secure XML-based threats to your enterprise environment and to secure web services in the Cloud.


Audience

  • Application Developers
  • Architect
  • SOA Architect
  • Security Administrators
  • System Administrator
  • Technical Consultant

Related Training

  • Required Prerequisites
  • Understanding of XML concepts and Web Service standards such as WSDL, SOAP, and UDDI (or equivalent)
  • Basic knowledge on web security
  • Suggested Prerequisites
  • Oracle SOA Suite 11g: Essential Concepts

Course Objectives

  • Describe the XML-based threats to an enterprise environment
  • Describe web service security concepts
  • Describe OEG capabilities
  • Describe OEG architecture and components
  • Use OEG to block XML attacks
  • Use OEG to accelerate XML processing and manage traffic
  • Use OEG to secure XML messages and web services
  • Use OEG and OWSM to provide end-to-end security for SOA composites
  • Integrate OEG with Oracle Identity Management products to provide authentication and fine-grained authorization
  • Secure web services in the Cloud

Course Topics

Web Services Security Overview

  • About Web Services security challenges
  • Discussing key Web Services security concepts
  • About XML and Web Services security standards

Getting Started with Oracle Enterprise Gateway 11g

  • Describing the role Oracle Enterprise Gateway plays in a multilayered security deployment for Web Services Describing the capabilities of Oracle Enterprise Gateway Describing the Oracle Enterprise Gateway components
  • Become familiar with the OEG user interface
  • Configuring an Oracle Enterprise Gateway instance

Registering Web Services in OEG

  • Describing the capabilities of registered Web Services
  • Outlining the main steps of registering services in OEG
  • Applying policies to the registered services

Monitoring, Logging, and Tracing

  • Monitoring traffic by using OEG monitoring tools
  • Identifying the differences between OEG logging and tracing
  • Configuring log settings
  • Setting tracing levels
  • Viewing trace information

Managing OEG Configurations

  • Describing OEG configuration structure
  • Managing a deployed configuration
  • Managing configuration versions
  • Importing and Exporting configuration data

Fault Handling

  • Changing default fault information that is passed back by OEG
  • Registering a fault handler
  • Using OEG’s trace to see why messages are blocked

Blocking XML Threats

  • Describing the different types of XML threats
  • Identifying the filters that block specific threats

Accelerating XML and Managing Traffic

  • Describing how Caching improves performance
  • Configuring Caches in OEG
  • Managing traffic

Configuring SSL

  • Describing how OEG manages Certificates and Keys
  • Describing SSL support in the Enterprise Gateway
  • Setting up SSL
  • Setting up mutual SSL

Securing XML Messages

  • Using policy to verify a Digital Signature
  • Using policy to encrypt data
  • Transforming message utilizing XSLT to remove sensitive data

Securing Web Services

  • Using the WS-Security Username Token to authenticate a user
  • Configuring security policies from WSDL files

Securing SOA Applications with OEG and OWSM

  • Describing security for SOA
  • Explaining how OSB virtualize SOA applications
  • Describing the OWSM architecture
  • Securing SOA composite applications by using OWSM security policy
  • Using OEG, OSB, and OWSM to provide end-to-end security for SOA composite applications

Integrating with Identity and Access Management

Describing how OEG works with Oracle Access Manager (OAM) for authentication

Describing how OEG leverages Oracle Entitlements Server (OES) for fine-grained authorization


Securing Services in the Cloud

Describing Cloud security risks


Minimum Participants : 4 Person or More



Flexible Class Options

  • Week End Classes For Professionals  SAT | SUN
  • Corporate Group Trainings Available
  • Online Classes – Live Virtual Class (L.V.C), Online Training

Related Courses 

Oracle BPM 11g Essentials
Oracle Database 12c R2: Administration Workshop
Oracle Application Development Framework 11g – ADF
Oracle WebLogic Server 12c Administration
Oracle Forms Developer Course – Build Internet Applications


KEY FEATURES

Flexible Classes Schedule

Online Classes for out of city / country students

Unlimited Learning - FREE Workshops

FREE Practice Exam

Internships Available

Free Course Recordings Videos

Register Now