About this course

Course type Specialist
Course code RH413
Duration 4 Days
Special Notices

Please note, from 13th July 2015 all delegates booking onto a Red Hat course will need to provide their unique Red Hat Network ID. Bookings without a Red Hat Network ID will not be confirmed by Red Hat and may subject to cancellation. More information available here from Red Hat or contact us directly.


Secure a Red Hat Enterprise Linux system to comply with security policy requirements

Red Hat® Server Hardening (RH413) builds on a student's Red Hat Certified Engineer (RHCE®) certification or equivalent experience to provide an understanding of how to secure a Red Hat Enterprise Linux® system to comply with security policy requirements.

Many security policies and standards require systems administrators to address specific user authentication concerns, application of updates, system auditing and logging, file system integrity, and more. Red Hat Server Hardening provides strategies for addressing specific policy and configuration concerns. This course can also help you prepare for the Red Hat Certificate of Expertise in Server Hardening exam (EX413).

Target Audience:

  • Needs technical guidance on how to enhance the security of Red Hat Enterprise Linux systems
  • Responsible for implementing security policy requirements on Red Hat Enterprise Linux systems consistently and in a reproducible, scalable way
  • Must be able to demonstrate that systems meet security policy requirements
  • Maintains continued adherence to security requirements, including management of security-critical operating system/software updates
  • RHCE-level skills highly recommended

Prerequisites

Prerequisites for this course

  • Red Hat Certified Engineer (RHCE) certification, Red Hat Certified Systems Administrator (RHCSA) certification, or equivalent experience required
  • For candidates who have not earned their RHCSA or RHCE certifications, confirmation of the required knowledge can be obtained by passing the online skills assessment

Delegates will learn how to

Course content summary

  • Review errata and apply them to Red Hat Enterprise Linux
  • Use special permissions and file system access control lists
  • Manage users and password-aging policy requirements
  • Install and configure Red Hat Identity Management tools
  • Understand system auditing

Impact on the organization

This course is intended to develop the skills needed to ensure data integrity on computer systems for organizations with high security standards.

Red Hat has created this course in a way intended to benefit our customers, but each company and infrastructure is unique, and actual results or benefits may vary.

Impact on the individual

As a result of attending this course, students should be able to recognize security vulnerabilities in system configurations and installed packages. Students should be able to understand and respond to Common Vulnerabilities and Exposure (CVE) and Red Hat Security Advisory (RHSA) reports.

Students should be able to demonstrate the following skills:

  • Deploy identity management to facilitate user account security policies.
  • Implement system auditing and logging based on system and user security policies.
  • Recognize, understand, and apply relevant errata to maintain system integrity.

Outline

Track security updates
Understand how Red Hat Enterprise Linux produces updates and how to use yum to perform queries to identify what errata are available.

Manage software updates
Develop a process for applying updates to systems including verifying properties of the update.

Create file systems
Allocate an advanced file system layout and use file system encryption.

Manage file systems
Adjust file system properties through security related options and file system attributes.

Manage special permissions
Work with set user ID (SUID), set group ID (SGID), and sticky (SVTX) permissions and locate files with these permissions enabled.

Manage additional file access controls
Modify default permissions applied to files and directories; work with file access control lists.

Monitor for file system changes
Configure software to monitor the files on your machine for changes.

Manage user accounts
Set password-aging properties for users; audit user accounts.

Manage pluggable authentication modules (PAMs)
Apply changes to PAMs to enforce different types of rules on users.

Secure console access
Adjust properties for various console services to enable or disable settings based on security.

Install central authentication
Install and configure a Red Hat Identity Management server and client.

Manage central authentication
Configure Red Hat Identity Management rules to control both user access to client systems and additional privileges granted to users on those systems.

Configure system logging
Configure remote logging to use transport layer encryption and manage additional logs generated by remote systems.

Configure system auditing
Enable and configure system auditing.

Control access to network services
Manage firewall rules to limit connectivity to network services.

Specialist Course

4 Days

Duration
Red Hat
Delivery Method

Delivery method

Classroom

Face-to-face learning in the comfort of our quality nationwide centres, with free refreshments and Wi-Fi.

Trusted, awarded and accredited

Fully accredited to ensure we provide the highest possible standards in learning

All third party trademark rights acknowledged.