ExitCertified Training Training with Java Solaris Red Hat IBM Symantec Siebel PeopleSoft Certified
 
Start Training Courses and Schedules Training Savings IT Certification Training Solutions
Training Search
Trust Your IT Training   |
Oracle University Awards ExitCertified Corporation with North American Partner of the Year.
Email Training Course

Red Hat Enterprise SELinux Policy Administration  (RHS429)

Category: Training  Red Hat
Format: Instructor-Led Classroom
Other Formats:
 
 

RHS429 introduces advanced system administrators, security administrators, and applications programmers to SELinux policy writing. Participants in this course will learn how SELinux works; how to manage SELinux; and how to write an SELinux policy. This class culiminates in a major project to scope out and then write policies for previously unprotected services.
 
This Course is Certified By Red Hat   Red hat Training Savings
 

Skills Gained
  Among the most significant features of Red Hat Enterprise Linux is SELinux (Security Enhanced Linux), a powerful, kernel-level security layer that provides fine-grained control over what users and processes may access and execute on a system. By default, SELinux is enabled on Red Hat Enterprise Linux systems, enforcing a set of mandatory access controls that Red Hat calls the targeted policy. These access controls substantially enhance the security of the network services they target, but can sometimes affect the behavior of third-party applications and scripts that worked under previous versions of Red Hat Enterprise Linux. RHS429 provides a four day tutorial on SELinux and SELinux policy writing. The first day of the course provides a introduction to SELinux, how it operates within the Red Hat targeted policy, and the tools used to manipulate it. The class then will spend the remaining days learning how policies are written, compiled, and debugged. This culminates in a project in which participants will create a set of policies from scratch for a previously unprotected service. The class will analyze the service, determining its security needs; design and implement a set of policies; test and fix the policies; document the service's new policies so that others can effectively administer the service.

Who Can Benefit
  RHS429 is designed for computer security specialists and other system administrators responsible for setting and implementing security policies on a Linux computer. Applications programmers also may consider taking the course to understand how to provide a set of SELinux policies for third party applications. Participants need not have indepth knowledge of SELinux, but should have a basic understanding of the SELinux security layer. For example, SELinux information as taught in RH133 or RH300 is sufficient.

Prerequisites
  RHS429 requires RHCE-level skills. Prerequisite skills can be shown by passing the RHCE Exam in either RH302 or RH300, or by taking RH253 or by possessing comparable skills and knowledge.
 
Enroll For This Class
Enroll For This Class
Red Hat Linux JBoss Training Class This course is taught by Certified Red Hat instructors.

There is a difference. Learn More
Training Class Enrollment Ask A Question About This Training
Code: RHS429
Format: Instructor-Led Classroom
Length: 4 days
Certified By: Red Hat
Tuition (USD): $2,898
Browse Similar Training Classes
Related training classes
Sort Schedule By: 
No Course Dates There are currently no scheduled dates for this course. If you are interested in this course, request a course date with the links below. We can also contact you when the course is scheduled in your area.
   
Request course date Request Course On-Site
 

Red Hat Enterprise SELinux Policy Administration  (RHS429) Content Details
 
 
Unit 1 - Introduction to SELinux
  • Discretionary Access Control vs. Mandatory Access Control
  • SELinux History and Architecture Overview
  • Elements of the SELinux security model:
  • user identity and role
  • domain and type
  • sensitivity and categories
  • security context
  • SELinux Policy and Red Hat's Targeted Policy
  • Configuring Policy with Booleans
  • Archiving
  • Setting and Displaying Extended Attributes
  • Hands-on Lab: Understanding SELinux
Unit 2 - Using SELinux
  • Controlling SELinux
  • File Contexts
  • Relabeling Files and Filesystems
  • Mount options
  • Hand-on Lab: Working with SELinux
Unit 3 - The Red Hat Targeted Policy
  • Identifying and Toggling Protected Services
  • Apache Security Contexts and Configuration Booleans
  • Name Service Contexts and Configuration Booleans
  • NIS Client Contexts
  • Other Services
  • File Context for Special Directory Trees
  • Troubleshooting and avc Denial Messages
  • setroubleshootd and Logging
  • Hands-on Lab: Understanding and Troubleshooting the Red Hat Targeted Policy
Unit 4 - Introduction to Policies
  • Policy Overview and Organization
  • Compiling and Loading the Monolithic Policy and Policy Modules
  • Policy Type Enforcement Module Syntax
  • Object Classes
  • Domain Transition
  • Hands-on Lab: Understanding policies
 
Unit 5 - Policy Utilities
  • Tools available for manipulating and analyzing policies
  • apol
  • seaudit and seaudit_report
  • checkpolicy
  • sepcut
  • sesearch
  • sestatus
  • audit2allow and audit2why
  • sealert
  • avcstat
  • seinfo
  • semanage and semodule
  • Man pages
  • Hands-on Lab: Exploring Utilities
Unit 6 - User and Role Security
  • Role-based Access Control
  • Multi Category Security
  • Defining a Security Administrator
  • Multi-Level Security
  • The strict Policy
  • User Identification and Declaration
  • Role Identification and Declaration
  • Roles in Use in Transitions
  • Role Dominance
  • Hands-on Lab: Implementing User and Role Based Policy Restrictions
Unit 7 - Anatomy of a Policy
  • Policy Macros
  • Type Attributes and Aliases
  • Type Transitions
  • When and How do Files Get Labeled
  • restorecond
  • Customizable Types
  • Hands-on Lab: Building Policies
Unit 8 - Manipulating Policies
  • stalling and Compiling Policies
  • The Policy Language
  • Access Vector
  • SELinux logs
  • Security Identifiers - SIDs
  • Filesystem Labeling Behavior
  • Context on Network Objects
  • Creating and Using New Booleans
  • Manipulating Policy by Example
  • Macros
  • Enableaudit
  • Hands-on Lab: Compiling Policies
Unit 9 - Project
  • Best practices
  • Create File Contexts, Types and Typealiases
  • Edit and Create Network Contexts
  • Edit and Create Domains
  • Hands-on Lab: Editing and Writing Policy


  ExitCertified Training with Java Solaris Red Hat IBM Symantec Apple MySQL Siebel PeopleSoft  
  When you take a certified course with ExitCertified, you are learning from the creators of the products you use. Our commitment to your IT community, along with our authorization to deliver certified courses, ensures you receive a premium training experience.

There is a difference. Learn from the source.		  
     
Training Contacts    
     
Spotlight Centers All United States Training Centers
Sacramento Training :: 916.669.3970
San Francisco Training :: 415.975.3948
San Jose Training :: 408.288.3948
Las Vegas Training :: 1.800.803.3948
Phoenix Training :: 602.889.9350 		New York Training
Chicago Training
Los Angeles Training
Atlanta Training
Washington Training

 Denver Training
Boston Training
Dallas Training
Houston Training
Philadelphia Training
View All US Training Centers
     
Worldwide and All US Cities:
408.288.3948		 Got Questions?
We are happy to help. Just email us with this form and we'll get back to you shortly.
   



(c) 2009 ExitCertified Corp. All rights reserved.


ExitCertified is a global provider of authorized technology training. Some of our popular course topic include:
 
Sun Microsystems Training Oracle Training Symantec Training IBM Training Red Hat - Linux Training
Java Training, J2EE Training, JSP Training, Java Courses, Servlets Training, EJB Training, Struts Training, Networking Courses, Solaris Training, Java Composite Application Platform (JCAPS) Training, Java Certification, SeeBeyond Training, XML Training, Solaris Certification, Corporate Training PeopleSoft Training, 11g Training, 11g Certification, Oracle SQL, Oracle PL/SQL, DBA Training, Oracle Certification, Hyperion Training, Fusion Middleware Training, 10g Training, Siebel Training, JD Edwards Training, Stellent Class, BEA Courses, e-Business Suite NetBackup Training, Veritas Training, Symantec Certification, Virus Protection Courses, IT Security Training DB2 Training, Cognos Classes, WebSphere Training, CICS Training, Informix, Rational Training, Lotus, Notes and Domino Training, Tivoli Courses, AIX Class, CISCO Training, VMWare Training SUSE Training, RedHat Course , JBoss Class
         
MySQL Training Apple Training Hitachi - HDS Training Project Management PMI Training  
  Apple Course, Leopard Training, Xsan Training