• Needs technical guidance on how to enhance the security of Red Hat Enterprise Linux systems
• Responsible for implementing security policy requirements on Red Hat Enterprise Linux systems consistently and in a reproducible, scalable way
• Must be able to demonstrate that systems meet security policy requirements
• Maintains continued adherence to security requirements, including management of security-critical operating system/software updates
• Red Hat Certified Engineer (RHCE)–level skills highly recommended

Prerequisites for this course

• Be certified as an RHCE or Red Hat Certified Systems Administrator (RHCSA), or demonstrate equivalent experience
• If you have not earned RHCSA or RHCE certifications, confirmation of the required knowledge can be obtained by passing the online skills assessment

Track security updates

Understand how Red Hat Enterprise Linux produces updates and how to use the yum tool to perform queries to identify what errata are available.

Manage software updates

Develop a process for applying updates to systems, including verifying properties of the update.

Create file systems

Allocate an advanced file system layout and use file system encryption.

Manage file systems

Adjust file system properties through security-related options and file system attributes.

Manage special permissions

Work with set user ID (SUID), set group ID (SGID), and sticky (SVTX) permissions and locate files with these permissions enabled.

Manage additional file access controls

Modify default permissions applied to files and directories, and work with file access control lists.

Monitor for file system changes

Configure software to monitor the files on your machine for changes.

Manage user accounts

Set password-aging properties for users, and audit user accounts.

Manage pluggable authentication modules (PAMs)

Apply changes to PAMs to enforce different types of rules on users.

Secure console access

Adjust properties for various console services to enable or disable settings based on security.

Install central authentication

Install and configure a Red Hat identity management server and client.

Manage central authentication

Configure Red Hat identity management rules to control both user access to client systems and additional privileges granted to users on those systems.

Configure system logging

Configure remote logging to use transport layer encryption and manage additional logs generated by remote systems.

Configure system auditing

Enable and configure system auditing.

Control access to network services

Manage firewall rules to limit connectivity to network services.

Red Hat Certified Specialist in Server Security and Hardening exam (EX413)

Red Hat Enterprise Performance Tuning (RH442)

Red Hat Security: Identity Management and Active Directory Integration (RH362)

Impact on the organization

This course is intended to develop the skills needed to ensure data integrity on computer systems for organizations with high security standards.

Red Hat has created this course in a way intended to benefit our customers, but each company and infrastructure is unique, and actual results or benefits may vary.

Impact on the individual

As a result of attending this course, you should be able to recognize security vulnerabilities in system configurations and installed packages. You should be able to understand and respond to Common Vulnerabilities and Exposure (CVE) and Red Hat Security Advisory (RHSA) reports.

You should be able to demonstrate these skills:

• Deploy identity management to facilitate user account security policies.
• Implement system auditing and logging based on system and user security policies.
• Recognize, understand, and apply relevant errata to maintain system integrity.