Practical Authorization Workshop
RCCE students will learn authentication security including credential storage, password policies, multi-factor authentication, session management, and authentication protocol security. RCCE students will learn to evaluate authentication implementations for security weaknesses, test for credential brute-forcing vulnerabilities, assess password storage mechanisms for proper hashing and salting, verify multi-factor authentication implementation, identify session fixation and session hijacking vulnerabilities, implement secure authentication designs using modern standards, configure account lockout and adaptive authentication, and build authentication security into application development processes. This practice-intensive course emphasizes applied skills through lab exercises, real-world scenarios, and production-realistic workflows. Building on core knowledge, RCCE students will learn by doing, building muscle memory and practical confidence through repeated hands-on engagement. Students complete exercises that mirror actual workplace tasks, ensuring skills transfer directly to their professional roles.
- Security Engineers building defensive controls
- Security Analysts and Blue Team members
- Systems Administrators with security responsibilities
- GRC and Risk Professionals supporting controls
- Professionals implementing Practical Authorization Workshop
- Execute hands-on tasks for practical authorization workshop
- Execute hands-on tasks for intermediate level
- Execute hands-on tasks for prerequisite: web basics
- Execute hands-on tasks for speaker notes
- Explain Course Overview & Learning Objectives fundamentals
- Execute hands-on tasks for what you will master — covering Evaluate authentication for weaknesses.
- Execute hands-on tasks for hands-on focus — covering Build secure authentication designs.
- Execute hands-on tasks for practice-intensive approach — covering Labs simulate production environments with real credential stores and session managers.
- Execute hands-on tasks for authentication fundamentals
- Execute hands-on tasks for first step in aaa — covering ▸.
- Execute hands-on tasks for second step in aaa — covering ▸.
- Execute hands-on tasks for authentication factor categories — covering Knowledge: Something you know (passwords, PINs, security questions).
| Module 01 | Practical Authorization Workshop |
| Module 02 | Intermediate Level |
| Module 03 | Prerequisite: Web Basics |
| Module 04 | Speaker Notes |
| Module 05 | Course Overview & Learning Objectives |
| Module 06 | What You Will Master |
| Module 07 | Hands-On Focus |
| Module 08 | Practice-Intensive Approach |
| Module 09 | Authentication Fundamentals |
| Module 10 | First step in AAA |
| Module 11 | Second step in AAA |
| Module 12 | Authentication Factor Categories |
| Module 13 | Authentication Architecture Patterns |
| Module 14 | Auth Gateway |
All hands-on labs run on Rocheston Rose X OS. Students practice practical authorization workshop by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Execute hands-on tasks for practical authorization workshop
- Lab 2: Execute hands-on tasks for intermediate level
- Lab 3: Execute hands-on tasks for prerequisite: web basics
- Lab 4: Execute hands-on tasks for speaker notes
- Lab 5: Explain Course Overview & Learning Objectives fundamentals
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Practical Authorization Workshop, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI