EX429

Retired - Red Hat Certified Specialist in SELinux Policy Administration exam

Overview

Course description

Note: This exam and credential are no longer available.

The Red Hat® Enterprise SELinux Policy Administration Expertise exam (EX429) tests the ability of an IT professional to modify parameters within the included SELinux policy in Red Hat Enterprise Linux® and to configure custom SELinux policies.

Audience for this course

  • Experienced RHCE Linux® system administrators responsible for Mandatory Access Control (MAC)-based security
  • Experienced RHCE Linux system administrators who want to harden their existing Linux system or networked services security
  • An RHCE interested in becoming a Red Hat Certification of Expertise or an RHCSS credential

Prerequisites for this exam

Exam candidates must:

  • Hold a current RHCE certification at the time the exam is taken
  • Have Red Hat Enterprise SELinux Policy Administration (RHS429) or equivalent experience
  • Understand that real-world system administration experience is also an important aspect of preparation for the exam
  • Review exam objectives for Red Hat Certified Specialist in SELinux Policy Administration exam (EX429)

Objectives

Candidates must be an RHCE on a release that is considered current in order to take this exam.

Components of the exam

The SELinux Policy Administration Expertise Exam is organized into one section:

  • SELinux Policy Writing and Targeted Policy System Maintenance: 3.5 hours

Study points for the exam

SELinux policy administration

Candidates should be able to perform the tasks listed below:

  • SELinux policy writing
  • Specify an enforcement mode
  • Specify a particular policy
  • Update a system to use the latest SELinux packages
  • Create and implement a custom policy module to support a given service, including:
    • Port bindings
    • File and directory access
    • Type transitions
    • Default file types
    • Booleans
    • Type Aliases
  • Modify an existing policy including:
    • Port bindings
    • File and directory access
    • Type transitions
    • Default file types
    • Booleans
    • Type Aliases
    • Backup/Restore a file system preserving SELinux attributes.

As with all Red Hat performance-based exams, configurations must persist after reboot without intervention.