This document outlines exercises for adding identity management and access control to applications using FIWARE. The exercises include creating a FIWARE account, managing organizations, registering an application, adding OAuth2 authentication to applications using libraries or code examples, and securing backends using authentication with Wilma and authorization with roles, permissions, and advanced XACML rules. The document provides prerequisites, steps, and hints for completing each exercise ranging from easy to hard levels of difficulty.