This course helps secure a Red Hat Enterprise Linux system to comply with security policy requirements.
Red Hat Server Hardening (RH413) builds on a student`s Red Hat Certified Engineer (RHCE) certification or equivalent experience to teach how to secure a Red Hat Enterprise Linux system to comply with security policy requirements. Many security policies and standards require systems administrators to address specific user authentication concerns, application of updates, system auditing and logging, file system integrity, and more. Red Hat Server Hardening provides strategies for addressing specific policy and configuration concerns.
Red Hat Certified Engineer (RHCE) certification, Red Hat Certified Systems Administrator (RHCSA) certification, or equivalent experience required.
Understand how Red Hat Enterprise Linux produces updates and how to use yum to perform queries to identify what errata are available.
Develop a process for applying updates to systems including verifying properties of the update.
Allocate an advanced file system layout and use file system encryption.
Adjust file system properties through security related options and file system attributes.
Work with set user ID (SUID), set group ID (SGID), and sticky (SVTX) permissions and locate files with these permissions enabled.
Modify default permissions applied to files and directories; work with file access control lists.
Configure software to monitor the files on your machine for changes.
Set password-aging properties for users; audit user accounts.
Apply changes to PAMs to enforce different types of rules on users.
Adjust properties for various console services to enable or disable settings based on security.
Install and configure a Red Hat Identity Management server and client.
Configure Red Hat Identity Management rules to control both user access to client systems and additional privileges granted to users on those systems.
Configure remote logging to use transport layer encryption and manage additional logs generated by remote systems.
Enable and configure system auditing.
Manage firewall rules to limit connectivity to network services.