Skip to Scheduled Dates
Course Overview
Maintaining the security of computing systems is a process of managing risk through the implementation of processes and standards backed by technologies and tools. "Red Hat Security: Linux in Physical, Virtual, and Cloud" (RH415) is designed for security administrators and system administrators who need to manage the secure operation of servers running Red Hat Enterprise Linux, whether deployed on physical hardware, as virtual machines, or as cloud instances. You will learn about technologies and tools that can be used to help you implement and comply with your security requirements, including the kernel's Audit subsystem, AIDE, SELinux, OpenSCAP and SCAP Workbench, USBGuard, PAM authentication, and Network-Based Device Encryption. You will learn to monitor compliance and to proactively identify, prioritize, and resolve issues by using OpenSCAP, Red Hat Insights, Red Hat Satellite, and Red Hat Ansible Automation Platform. You will have a basic introduction to how Red Hat Ansible Automation Platform automates the deployment of remediation to systems, by using Ansible Playbooks from OpenSCAP or Red Hat Insights.
This course is based on RHEL 9.2, Ansible Core 2.14, Red Hat Ansible Automation Platform 2.4, Satellite 6.14, and OpenSCAP 1.3.7.
Who Should Attend
System administrators, IT security administrators, IT security engineers, and other professionals responsible for designing, implementing, maintaining, and managing the security of Red Hat Enterprise Linux systems and ensuring their compliance with the organization's security policies.
Be a Red Hat Certified Engineer (RHCE®), or demonstrate equivalent Red Hat Enterprise Linux knowledge and experience.
Course Objectives
- Manage compliance with OpenSCAP.
- Enable SELinux on a server from a disabled state, perform basic analysis of the system policy, and mitigate risk with advanced SELinux techniques.
- Proactively identify and resolve issues with Red Hat Insights.
- Monitor activity and changes on a server with Linux Audit and AIDE.
- Protect data from compromise with USBGuard and storage encryption.
- Manage authentication controls with PAM.
- Manually apply provided Ansible Playbooks to automate mitigation of security and compliance issues.
- Scale OpenSCAP and Red Hat Insights management with Red Hat Satellite and Red Hat Ansible Automation Platform.
Course Outline
1 - Managing Security and Risk
- Define and implement strategies to manage security on Red Hat Enterprise Linux systems.
2 - Automating Configuration and Remediation with Ansible
- Remediate configuration and security issues automatically with Ansible Playbooks.
3 - Protecting Data with LUKS and NBDE
- Encrypt data on storage devices with LUKS, and use NBDE to manage automatic decryption when servers are booted.
4 - Restricting USB Device Access
- Protect systems from rogue USB device access with USBGuard.
5 - Controlling Authentication with PAM
- Manage authentication, authorization, session settings, and password controls by configuring Pluggable Authentication Modules (PAM).
6 - Recording System Events with Audit
- Record and inspect system events relevant to security by using the Linux kernel's Audit system and supporting tools.
7 - Monitoring File System Changes
- Detect and analyze changes to a server's file systems and their contents by using AIDE.
8 - Mitigating Risk with SELinux
- Improve security and confinement between processes by using SELinux and advanced SELinux techniques and analysis.
9 - Managing Compliance with OpenSCAP
- Evaluate and remediate a server's compliance with security policies by using OpenSCAP.
10 - Analyzing and Remediating Issues with Red Hat Insights
- Identify, detect, and correct common issues and security vulnerabilities with Red Hat Enterprise Linux systems by using Red Hat Insights.
11 - Automating Compliance with Red Hat Satellite
- Automate and scale OpenSCAP compliance checks by using Red Hat Satellite.
12 - Comprehensive Review
- Review tasks from Red Hat Security: Linux in Physical, Virtual, and Cloud.