-
Products
-
Solutions
-
- By IT challenge
- Application development
- Enterprise application integration
- Interoperability
- Operational efficiency
- Security
- Virtualization
- Migration Center
- Migrate to Red Hat Enterprise Linux
- Systems management
- Upgrading to Red Hat Enterprise Linux
- JBoss Enterprise Middleware
- IBM AIX to Red Hat Enterprise Linux
- HP-UX to Red Hat Enterprise Linux
- Solaris to Red Hat Enterprise Linux
- UNIX to Red Hat Enterprise Linux
- Start a Conversation with Red Hat
- Migration services
-
- Support
- Training
- Consulting
Course Description
RHS429 introduces advanced system administrators, security administrators, and applications programmers to SELinux policy writing. Participants in this course will learn how SELinux works; how to manage SELinux; and how to write an SELinux policy. This class culiminates in a major project to scope out and then write policies for previously unprotected services.
What you will learn:
Check out the complete course outline.
Prerequisites:
RHS429 requires RHCE-level skills. Prerequisite skills can be shown by passing the RHCE Exam in either RH302 or RH300, or by taking RH253 or by possessing comparable skills and nowledge.
Preassessment questionnaires:
To assist you in determining if you have sufficient system administration knowledge to take RH300, try taking the following pre-assessment questionnaires:
- RH033 Pre-assessment Questionnaire
- RH133 Pre-assessment Questionnaire
- RH253 Pre-assessment Questionnaire
In order to ensure that the prerequisites for RHS429 are met, you should expect to receive a high score for the RH033 and RH133 classes (36 points or more) and a moderate score for the RH253 class (24 points or more). If one or more of these scores falls below the recommended level, consider taking the related class before taking RHS429.
Goal:
Among the most significant features of Red Hat Enterprise Linux is SELinux (Security Enhanced Linux), a powerful, kernel-level security layer that provides fine-grained control over what users and processes may access and execute on a system. By default, SELinux is enabled on Red Hat Enterprise Linux systems, enforcing a set of mandatory access controls that Red Hat calls the targeted policy. These access controls substantially enhance the security of the network services they target, but can sometimes affect the behavior of third-party applications and scripts that worked under previous versions of Red Hat Enterprise Linux.
RHS429 provides a four day tutorial on SELinux and SELinux policy writing. The first day of the course provides a introduction to SELinux, how it operates within the Red Hat targeted policy, and the tools used to manipulate it. The class then will spend the remaining days learning how policies are written, compiled, and debugged.
This culminates in a project in which participants will create a set of policies from scratch for a previously unprotected service. The class will analyze the service, determining its security needs; design and implement a set of policies; test and fix the policies; document the service´s new policies so that others can effectively administer the service.
Audience:
RHS429 is designed for computer security specialists and other system administrators responsible for setting and implementing security policies on a Linux computer. Applications programmers also may consider taking the course to understand how to provide a set of SELinux policies for third party applications.
Participants need not have indepth knowledge of SELinux, but should have a basic understanding of the SELinux security layer. For example, SELinux information as taught in RH133 or RH300 is sufficient.
Certification Tracks:
| RHCSS Certification | |
|---|---|
| Recommended Course | Required Exam ** |
| RHS333 | EX333 |
| RH423 | EX423 |
| RHS429 | EX429 |
** To be certified as an RHCSS students must pass all three exams
Prepares for:
Class times:
-
Monday through Thursday
- Start: 9:00am
- End: 5:00pm (depending on class progress)