This Course is available in the following format:
Red Hat Server Hardening Training Course Description
Red Hat Server Hardening Training builds on a student’s Red Hat Certified Engineer (RHCE®) certification or equivalent experience to provide an understanding of how to secure a Red Hat Enterprise Linux® system to comply with security policy requirements.
Many security policies and standards require systems administrators to address specific user authentication concerns, application of updates, system auditing and logging, file system integrity, and more. Red Hat Server Hardening provides strategies for addressing specific policy and configuration concerns. This Red Hat Server Hardening Training course can also help you prepare for the Red Hat Certificate of Expertise in Security and Server Hardening Exam (EX413).
• If you are familiar with some aspects of this Red Hat Server Hardening Training course, we can omit or shorten their discussion.
• We can adjust the emphasis placed on the various topics or build the Red Hat Server Hardening Training course around the mix of technologies of interest to you (including technologies other than those included in this outline).
• If your background is nontechnical, we can exclude the more technical topics, include the topics that may be of special interest to you (e.g., as a manager or policy-maker), and present the Red Hat Server Hardening Training course in manner understandable to lay audiences.
Red Hat Server Hardening Training (RH413) – Audience / Target Group:
The target audience for this Red Hat Server Hardening Training course:
• Needs technical guidance on how to enhance the security of Red Hat Enterprise Linux systems
• Responsible for implementing security policy requirements on Red Hat Enterprise Linux systems consistently and in a reproducible, scalable way
• Must be able to demonstrate that systems meet security policy requirements
• Maintains continued adherence to security requirements, including management of security-critical operating system/software updates
• RHCE-level skills highly recommended
Red Hat Server Hardening Training (RH413) – Related Courses:
Red Hat Server Hardening Training (RH413) – Prerequisites:
The knowledge and skills that a learner must have before attending this Red Hat Server Hardening Training course are as follows:
• Red Hat Certified Engineer (RHCE) certification, Red Hat Certified Systems Administrator (RHCSA) certification, or equivalent experience required.
Red Hat Server Hardening Training (RH413) – What You Will Learn:
Upon completing this Red Hat Server Hardening Training course, learners will be able to meet these objectives:
• Review errata and apply them to Red Hat Enterprise Linux.
• Use special permissions and file system access control lists.
• Manage users and password-aging policy requirements.
• Install and configure Red Hat Identity Management tools.
• Understand system auditing.
Red Hat Server Hardening Training – Course Syllabus:
Module 1: Track security updates
Understand how Red Hat Enterprise Linux produces updates and how to use yum to perform queries to identify what errata are available.
Module 2: Manage software updates
Develop a process for applying updates to systems including verifying properties of the update.
Module 3: Create file systems
Allocate an advanced file system layout and use file system encryption.
Module 4: Manage file systems
Adjust file system properties through security related options and file system attributes.
Module 5: Manage special permissions
Work with set user ID (SUID), set group ID (SGID), and sticky (SVTX) permissions and locate files with these permissions enabled.
Module 6: Manage additional file access controls
Modify default permissions applied to files and directories; work with file access control lists.
Module 7: Monitor for file system changes
Configure software to monitor the files on your machine for changes.
Module 8: Manage user accounts
Set password-aging properties for users; audit user accounts.
Module 9: Manage pluggable authentication modules (PAMs)
Apply changes to PAMs to enforce different types of rules on users.
Module 10: Secure console access
Adjust properties for various console services to enable or disable settings based on security.
Module 11: Install central authentication
Install and configure a Red Hat Identity Management server and client.
Module 12: Manage central authentication
Configure Red Hat Identity Management rules to control both user access to client systems and additional privileges granted to users on those systems.
Module 13: Configure system logging
Configure remote logging to use transport layer encryption and manage additional logs generated by remote systems.
Module 14: Configure system auditing
Enable and configure system auditing.
Module 15: Control access to network services
Manage firewall rules to limit connectivity to network services.