Configuring the ForgeRock Identity Platform™ in a DevOps Environment

  • Tuition USD $3,075
  • Reviews star_rate star_rate star_rate star_rate star_half 839 Ratings
  • Course Code FR-523
  • Duration 3 days
  • Available Formats Classroom, Virtual

This expert-led workshop guides students through the deployment of the ForgeRock Identity Platform™ (the Platform) on a Kubernetes cluster running in Google Kubernetes Environment (GKE). The workshop initially describes how to use the ForgeRock Cloud Developer’s Kit (CDK) to deploy a sample configuration of the Platform, which includes ForgeRock® Access Management (AM) and ForgeRock® Identity Management (IDM), which share ForgeRock® Directory Service (DS) as an identity store. The CDK is used to configure the Platform and redeploy the updated configuration in an existing Kubernetes cluster. Students then create a new cluster using Pulumi tools and deploy the Platform by following the Cloud Deployment Model (CDM). Monitoring add-ons tools are included with the CDM example. The skills gained by performing deployments with the CDK and CDM reference examples, help you identify the Kubernetes cluster and the Platform configuration requirements needed for preparation to move deployments into other environments, such as test and production. The last chapter of the workshop explores how to migrate the ForgeRock Entertainment Company (FEC) portal configuration from the IDM Core Concepts course to Kubernetes. This workshop uses the ForgeRock DevOps documentation set as a reference for the hands-on labs instead of providing a dedicated Student Workbook, as offered with the Core Concepts courses. You will work with the instructor to improvise any steps that are necessary for the given lab environment. Also, it is important that you have already successfully completed the relevant ForgeRock Core Concepts courses before attending this workshop. It is beneficial that you also have experience working with DevOps technology such as Kubernetes, Skaffold, Kustomize, Git, among other related tools.

Skills Gained

Upon completion of this course, you should be able to:

  • Introduce the Platform and deploy a default configuration using DevOps techniques.
  • Configure the Platform using the Cloud Developer Kit (CDK).
  • Deploy a configuration of the Platform based on the Cloud Deployment Model (CDM).
  • Prepare the Platform for deployment to multiple environments.
  • Migrate the FEC Portal sample application to Kubernetes.

Who Can Benefit

This workshop is aimed at technical audiences who are responsible for deploying and managing the Platform on Kubernetes. This includes, but is not limited to, those with the following responsibilities:

  • Developers who are responsible for deploying and configuring the Platform in a DevOps development environment, and helping others migrate those deployments to production.
  • Other technical audiences, such as system integrators, consultants, architects, administrators, and sales/support engineers who need to learn how to plan deployments and configure clusters suitable for deploying the Platform in the cloud.

Prerequisites

The following are the prerequisites for successfully completing this course:

  • Completion of the ForgeRock University [AM-400, IDM-400, DS-400, IG-400 (optional)] Core Concept courses, to ensure that you know:
  • How to configure and administer DS, AM, Amster, IDM, and (optionally) ForgeRock® Identity Gateway (IG).
  • How to use the appropriate commands and user interfaces for each component.
  • Students should already be familiar with the following technologies and be able to use the related commands to deploy and manage software in a DevOps environment:
  • Docker
  • Kubernetes
  • kubectl command
  • A cloud provider that supports Kubernetes, such as GKE, EKS, or AKS
  • Skaffold
  • Kustomize
  • Optionally, Pulumi (or Terraform) for creating clusters
  • Git and Git registries

Course Details

Note

To deploy the Platform on Kubernetes, ForgeRock has simplified its reference cloud deployment, based on a new tool set that includes Git, Skaffold, and Kustomize, to simplify deployment to Kubernetes. The CDK and CDM examples can be used by your DevOps team to deploy and start up the Platform in a public cloud such as Amazon, Google, or Microsoft Azure.

Course Contents

Chapter 1: Introducing the ForgeRock Identity Platform and Deploying a DevOps Example

Lesson 1: Introducing ForgeRock DevOps Documentation and Examples

  • Describe the Platform and related DevOps techniques for deploying the Platform to Kubernetes
  • Access your Cloudshare lab environment and developer desktop
  • Access your associated GCP account for deploying the Platform
  • Describe the DevOps documentation and the CDK and CDM methods of deployment
  • Describe the DevOps tools for deployment, and deploy a simple application to validate the environment

Lesson 2: Deploying the ForgeRock Identity Platform to GKE

  • Prepare your DevOps environment
  • Deploy the Platform to a GKE cluster
  • Verify that the Platform is deployed and accessible
  • Work with basic DevOps commands to explore the Platform
  • Remove the Platform deployment and clean up the environment
  • Compare the deployment of the Platform to other cloud providers, such as Amazon Elastic Cloud Services for Kubernetes (Amazon EKS) and Azure Kubernetes Service (AKS)

Lesson 3: Troubleshooting When Problems Arise

  • Approach troubleshooting of common issues in Kubernetes systematically
  • Run commands for troubleshooting environment issues, containerization issues, and orchestration issues
  • Identify resources for getting additional support

Chapter 2: Configuring the ForgeRock Identity Platform

Lesson 1: Deploying the Platform with Custom Docker Images

  • Navigate the forgeops repository
  • Describe data used during the deployment of the Platform
  • Customize Docker images for the Platform
  • Work with Kubernetes manifests and objects
  • Manage the configuration life cycle with Skaffold

Lesson 2: Preparing Your Environment for Deployment Based on the CDM

  • Describe the ForgeRock Cloud Deployment Model (CDM)
  • Describe the requirements for creating and setting up the deployment environment for the CDM
  • Create a Kubernetes cluster using Pulumi
  • Deploy an ingress controller on the cluster
  • Deploy the certificate manager on the cluster
  • Set up your local environment to push Docker images

Chapter 3: Monitoring, Backing Up, and Restoring the Environment

Lesson 1: Monitoring Your Deployment

  • Describe the monitoring infrastructure for the CDM
  • Deploy the monitoring tools on a cluster
  • Monitor the CDM deployment
  • Benchmark the CDM deployment for monitoring

Lesson 2: Backing Up and Restoring the Platform

  • Describe backup and restore with CDM
  • Enable CDM backup
  • Manage the backup schedule
  • Initiate backups manually
  • Use CDM restoration features
  • Initiate restoration manually

Chapter 4: Deploying the Platform to Multiple Environments

Lesson 1: Managing Multiple Deployment Environments

  • Manage multiple environments with Skaffold and Kustomize profiles
  • Prepare for deployment to multiple environments
  • Move from development to other environments

Lesson 2: Building Your Own Docker Base Images

  • Prepare ForgeRock software for your own base Docker images
  • Create your own base Docker images
  • Deploy with your own Docker base images

Lesson 3: Handling Secrets

  • Provide an overview of the forgeops secret generation functionality
  • Manage and override generated secrets

Chapter 5: Migrating an Application to Kubernetes

Lesson 1: Migrating an Existing DS Configuration to Kubernetes

  • Discuss how you can migrate an existing DS configuration to Kubernetes
  • Migrate the DS configuration and sample user data using the CDK

Lesson 2: Migrating an Existing AM Configuration to Kubernetes

  • Discuss how you can migrate an existing AM configuration to Kubernetes
  • Migrate an existing AM configuration to Kubernetes
  • Customize the AM web application during deployment

Lesson 3: Migrating an Existing IDM Configuration to Kubernetes

  • List the challenges of migrating IDM to Kubernetes
  • Implement the required changes to IDM to update IDM from a previous release
  • Migrate the configuration from a previous version of IDM to the CDK
  • Migrate data from a previous version of IDM to Kubernetes (Optional)

How do I enroll?

A comprehensive listing of ExitCertified courses can be found here. You can register directly for the required course/location when you select "register". If you have any questions or prefer to speak with an ExitCertified education consultant directly, please submit your query here. A representative will contact you shortly.

How do I pay for a class?

You can pay at the time of registration using credit card (Mastercard/Visa/American Express) cheque or PO.

What if I have training credits?

ExitCertified honors all savings programs from the partners we work with. ExitCertified also offers training credits across multiple partners through our FLEX Account.

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Does the course schedule include a Lunchbreak?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

What does GTR stand for?

GTR stands for Guaranteed to Run; if you see a course with this status, it means this event is confirmed to run. View our GTR page to see our full list of Guaranteed to Run courses.

very good... also gave relevant examples to our current business requirements.

Ken was a fantastic teacher who was very knowledgeable and encouraged class participation.

Good training. The instructor was very knowledgeable and was able to answer questions with a professional demeanor. Course material was comprehensive and I felt I had a solid understanding of the topic after the training concluded.

I've taken 2 AWS courses at ExitCertified both of them IMVP, they're my training provider of choice!

Great instructor and good class material. Labs were helpful and put together very well.

1 options available

undo
  • Nov 23, 2020 Nov 25, 2020 (3 days)
    Location
    iMVP
    Language
    English
    Time
    9:00AM 5:00PM EST
    Enroll
    Enroll
Contact Us 1-800-803-3948
Contact Us Live Chat
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward