Entrust Authority Security Manager Comprehensive

- Industries
- Solutions
  - Our Expertise
  - Strong Identities
  - Secure Payments
  - Protected Data
- Featured Products
  - As a Service Products
- Enterprise ID & Issuance
  - Instant ID as a Service
    Learn More
  - Instant Issuance
- Financial ID & Issuance
  - Digital Card Solution
    Learn More
  - Digital Banking
    1. Digital Account Opening
    2. Digital Card Solution
  - Instant Issuance
  - Central Issuance
- Government ID & Issuance
  - Digital Citizen
    1. Seamless Travel as a Service
    2. ePassport as a Service
  - Instant Issuance
    1. Other citizen IDs and licenses.
    2. System Software
    3. Supplies
    4. Services
  - Central Issuance
    1. Passports, national IDs and driver licenses.
    2. Passport Issuance Systems
    3. National ID and Driver License Systems
    4. Inline Delivery & Insertion
    5. Standalone Delivery & Insertion
    6. System Software
    7. Supplies
    8. Services
  - Identity Verification as a Service
    Our IDVaaS solution allows remote verification of an individual’s claimed identity for immigration, border management, or digital services delivery.
    Learn More
- Cloud Security Posture Management
  - CloudControl 30-Day Free Trial
    Entrust CloudControl offers comprehensive security and automated compliance across virtualization, public cloud, and container platforms while increasing visibility and decreasing risks that can lead to unintended downtime or security exposure.
    Start Free Trial
- Key Management and Encryption
  - KeyControl for VM Encryption
  - KeyControl 30-Day Free Trial
    VMware vSphere and vSAN encryption require an external key manager, and KeyControl is VMware Ready certified and recommended. KeyControl enables enterprises to easily manage all their encryption keys at scale, including how often keys are rotated, and how they are shared securely.
    Start Free Trial
- Hardware Security Modules (HSM)
  - 1. nShield as a Service
  - nShield HSMs
  - Why you need an HSM
    Learn about all the details related to what hardware security modules offer you in security and cost savings...
    Learn More
- Digital Certificates
  - 1. Buy Certificates
    2. Renew Certificates
  - TLS/SSL Certificates
  - Qualified Certificates
    1. QWAC eIDAS Certificates
    2. QWAC PSD2 Certificates
  - Sales and Services
- Identity and Access Management (IAM)
  - Products
    1. Identity as a Service
      Cloud-Based IAM
    2. Identity Enterprise
      On-prem IAM
    3. Identity Essentials
      On-prem MFA solution for Windows users
    4. APIs and SDKs
  - Get Entrust Identity as a Service Free for 60 Days
    Explore the Identity as a Service platform that gives you access to best-in-class MFA, SSO, adaptive risk-based authentication, and a multitude of advanced features that not only keep users secure, but also contribute to an optimal experience.
    Start Free Trial
- Electronic and Digital Signing
  - Digital Signing as a Service
  - Digital Signing Certificates
  - Digital Signing Infrastructure
  - EU Qualified Trust Services
    In addition to our long-standing Adobe Approved Trust List (AATL) membership, we are a European Qualified Trust Service Provider for the issuance of eIDAS qualified certificates for qualified signatures and advanced seals, for PSD2 certificates and for QWACs
    Learn More
- Public Key Infrastructure (PKI)
  - PKI Products
  - Managed Services
  - Cryptographic Center of Excellence
  - Try Post-Quantum PKI as a Service Now
    Get PQ Ready. PKIaaS PQ provides customers with composite and pure quantum Certificate Authority hierarchies.
    Try Now
- Resources
  - Issuance Systems Knowledge Base
    Learn More
  - Digital Security Knowledge Base
    Learn More
  - Cybersecurity Institute
    Get critical insights and education on security concepts from our Trust Matters newsletter, explainer videos, and the Cybersecurity Institute Podcast.
    Learn More
- Partners
  - Partner with Entrust
    Join one or more of our partner programs and we’ll help you increase profitability, expand your brand, and target strategic customers.
    Learn More
  - Partner Directory
    Search for partners based on location, offerings, channel or technology.
    Search for a Partner
  - Programs
  - Partner Logins
- Buy
  - Shop Certificate Services
    Shop for new single certificate purchases.
    Learn More
  - Certificate Services Customer Portal
    Existing Entrust Certificate Services customers can login to issue and manage certificates or buy additional services.
    Learn More
  - Certificate Services Partner Portal
    Existing partners can provision new customers and manage inventory.
    Learn More
  - Instant Financial Card Issuance Supplies
    1. Registered Customer Login
    2. Request Access
- About Entrust
  - Securing a World in Motion Since 1969
    We’ve established secure connections across the planet and even into outer space. We’ve enabled reliable debit and credit card purchases with our card printing and issuance technologies. Protected international travel with our border control solutions. Created secure experiences on the internet with our SSL technologies. And safeguarded networks and devices with our suite of authentication products.
    Explore Our History
  - Cybersecurity Institute
    Get critical insights and education on security concepts from our Trust Matters newsletter, explainer videos, and the Cybersecurity Institute Podcast.
    Learn More
- Search Entrust
  - Search:

The Entrust Authority Security Manager Comprehensive course is an in-depth, hands-on treatment of the Entrust Authority Security Manager solution. The platform is designed to manage the digital keys and certificates that make up the digital identities required to transparently automate all security-related processes in an organization. This course provides students a thorough knowledge of the Entrust PKI components and how to work with them, allowing each student to plan, install, configure and manage their own infrastructure in classroom labs.

Summary

Entrust Authority Security Manager Comprehensive is a five-day, hands-on overview of Entrust Authority Security Manager and the components of the Entrust public-key infrastructure. The introductory lessons of this course provide participants with background information on the organizational requirements related to data security and the cryptographic operations used to satisfy these requirements.

The concept of the digital ID is introduced which leads into a discussion about digital certificates and the functionality of the Certification Authority. Entrust Authority Security Manager serves as the Certification Authority in the Entrust public-key infrastructure. Participants will install, configure and initialize Entrust Authority Security Manager on their server computer, along with the administration interfaces and client desktop client software. Participants will assume the different roles in the infrastructure to learn how to manage digital IDs for users and devices, customize policies, create and assign roles and organize the user community. Advanced customization will be performed through manual editing of the certificate specification file.

Finally, trust will be extended between the different Certification Authorities in the classroom through cross-certification. Hands-on exercises at the end of each section provide participants with the ability to apply the knowledge gained through the lecture segment of each lesson.

Objectives

Upon completion of this course, participants will be able to:

Describe the steps in the encryption and digital signature operations
Identify the contents of the digital ID and the need for digital certificates
Identify the components of the public-key infrastructure (both required and optional) and describe the role of the Certification Authority
Install, configure and initialize Entrust Authority Security Manager on Windows Server 2012 R2
Assume the roles used in the public-key infrastructure, including Master User, Security Officer, Administrator, Auditor, Directory Administrator, and End User and identify their characteristics
Install and configure management and client software on Windows Server 2012 R2
Register and activate digital IDs for administrative users, end users and devices
Identify the various security stores that can be used to store digital IDs
Perform typical management operations on users and devices
Implement the organization’s security policy by customizing policies and certificate specifications
Supplement the built-in certificate types available in Entrust Authority Security Manager by creating additional customized types
Customize the administrative environment through the use of groups, searchbases, roles, and templates
Assess logging information generated by Entrust Authority Security Manager
Recover from disaster scenarios related to digital IDs, the Directory, and Entrust Authority Security Manager

Topics

The Entrust Authority Security Manager Comprehensive course includes the following lessons:

Lesson 1 - Security concepts

Lesson 2 - Digital certificates

Lesson 3 - Entrust Certification Authority

Lesson 4 - Entrust public-key infrastructure

Lesson 5 - The role of the Directory

Lesson 6 - Installing Entrust Authority Security Manager

Lesson 7 - Entrust Authority Security Manager Control Command Shell

Lesson 8 - Registering and activating administrative users

Lesson 9 - Managing key pairs

Lesson 10 - Entrust Entelligence Security Provider

Lesson 11 - Managing users

Lesson 12 - Distributing revocation information

Lesson 13 - Web certificates

Lesson 14 - General security policy

Lesson 15 - Client policies

Lesson 16 - Roles and permissions

Lesson 17 - Certificate definition policies

Lesson 18 - Customizing certificate specifications

Lesson 19 - Organizing users

Lesson 20 - Bulk operations

Lesson 21 - Logging and reporting

Lesson 22 - Cross-certification

Lesson 23 - Hierarchical cross-certification

Lesson 24 - Disaster recovery

Appendix A - Entrust Authority Administration Services

Appendix B - Entrust Authority Enrollment Server for Web