Study points for the exam RHCE exam candidates should consult the RHCSA exam objectives and be capable of RHCSA-level tasks, as some of these skills may be required in order to meet RHCE exam objectives. Red Hat reserves the right to add, modify, and remove objectives. Such changes will be made public in advance through revisions to this document. RHCE exam candidates should be able to accomplish the following without assistance. These have been grouped into several categories. System configuration and management Use network teaming or bonding to configure aggregated network links between two Red Hat Enterprise Linux systems Configure IPv6 addresses and perform basic IPv6 troubleshooting Route IP traffic and create static routes Use firewalld and associated mechanisms such as rich rules, zones and custom rules, to implement packet filtering and configure network address translation (NAT) Use - proc - sys and sysctl to modify and set kernel runtime para * Experienced Linux IT professionals who currently have RHCSA certification and are interested in earning an RHCE certification Experienced Red Hat Enterprise Linux system administrators seeking validation of their skills students who have attended the Red Hat System Administration I, II, and III courses or the RHCE Certification lab Experienced Linux system administrators who require a certification either by their organization or based on a mandate (DOD 8570 directive) An RHCE who is noncurrent and has passed the RHCSA exam study points for the exam RHCE exam candidates should consult the RHCSA exam objectives and be capable of RHCSA-level tasks, as some of these skills may be required in order to meet RHCE exam objectives. Red Hat reserves the right to add, modify, and remove objectives. Such changes will be made public in advance through revisions to this document. RHCE exam candidates should be able to accomplish the following without assistance. These have been grouped into several categories. System configuration and management Use network teaming or bonding to configure aggregated network links between two Red Hat Enterprise Linux systems Configure IPv6 addresses and perform basic IPv6 troubleshooting Route IP traffic and create static routes Use firewalld and associated mechanisms such as rich rules, zones and custom rules, to implement packet filtering and configure network address translation (NAT) Use - proc - sys and sysctl to modify and set kernel runtime parameters Configure a system to authenticate using Kerberos Configure a system as either an iSCSI target or initiator that persistently mounts an iSCSI target Produce and deliver reports on system utilization (processor, memory, disk, and network) Use shell scripting to automate system maintenance tasks Network services Network services are an important subset of the exam objectives. RHCE candidates should be capable of meeting the following objectives for each of the network services listed below: Install the packages needed to provide the service Configure SELinux to support the service Use SELinux port labeling to allow services to use non-standard ports Configure the service to start when the system is booted Configure the service for basic operation Configure host-based and user-based security for the service HTTP - HTTPS Configure a virtual host Configure private directories Deploy a basic CGI application Configure group-managed content Configure TLS security DNS Configure a caching-only name server Troubleshoot DNS client issues NFS Provide network shares to specific clients Provide network shares suitable for group collaboration Use Kerberos to control access to NFS network shares SMB Provid ...

The main purpose of this 3 day instructor led course is to give students a good understanding of the Transact-SQL language which is used by all SQL Server-related disciplines; namely, Database Administration, Database Development and Business Intelligence. As such, the primary target audience for this course is: Database Administrators, Database Developers and BI professionals. The course will very likely be well attended by SQL power users who aren’t necessarily database-focused; namely ...

In this 2-day class, you will lea> how to use basic FortiGate UTM. In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more. These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security. Audience Anyone who is responsible for day-to-day management of a FortiGate appliance. You must master this course before atten ...

In this 3-day class, you will lea> how to use basic FortiGate UTM. In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more. These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security. Audience Anyone who is responsible for day-to-day management of a FortiGate appliance. You must master this course before atten ...

In this 3-day class, you will lea> how to use basic FortiGate UTM. In interactive labs, you will explore firewall policies, basic VPNs, virus detection, web filtering, application control, user authentication, and more. These administrative fundamentals will provide you with a solid understanding of how to integrate basic network security. Audience Anyone who is responsible for day-to-day management of a FortiGate appliance. You must master this course before attending FortiGate Infrastru ...

Study points for the exam Use Red Hat Ansible ® Engine Install Red Hat Ansible Engine on a control node. Configure managed nodes. Configure simple inventories. Perform basic management of systems. Run a provided playbook against specified nodes. Configure intrusion detection Install AIDE. Configure AIDE to monitor critical system files. Configure encrypted storage Encrypt and decrypt block devices using LUKS. Configure encrypted storage persistence using NBDE. Change encrypted storage passphrases. Restrict USB devices Install USBGuard. Write device policy rules with specific criteria to manage devices. Manage administrative policy and daemon configuration. Manage system login security using pluggable authentication modules (PAMs) Configure password quality requirements. Configure failed login polic * for this exam These audiences may be interested in becoming a Red Hat Certified Specialist in Security: Linux: System administrators responsible for managing large enterprise environments System administrators responsible for securing their organization s infrastructure Red Hat Certified Engineers interested in pursuing the Red Hat Certified Architect (RHCA) credential Prerequisites for this exam Be a Red Hat Certified System Administrator or have comparable work experience and skills (Red Hat Certified Engineer would be even better) Review the Red Hat Certified Specialist in Security: Linux exam objectives or have comparable work experience using Red Hat OpenStack Platform. study points for the exam Use Red Hat Ansible ® Engine Install Red Hat Ansible Engine on a control node. Configure managed nodes. Configure simple inventories. Perform basic management of systems. Run a provided playbook against specified nodes. Configure intrusion detection Install AIDE. Configure AIDE to monitor critical system files. Configure encrypted storage Encrypt and decrypt block devices using LUKS. Configure encrypted storage persistence using NBDE. Change encrypted storage passphrases. Restrict USB devices Install USBGuard. Write device policy rules with specific criteria to manage devices. Manage administrative policy and daemon configuration. Manage system login security using pluggable authentication modules (PAMs) Configure password quality requirements. Configure failed login policy. Modify PAM configuration files and parameters. Configure system auditing Write rules to log auditable events. Enable prepackaged rules. Produce audit reports. Configure SELinux Enable SELinux on a host running a simple application. Interpret SELinux violations and determine remedial action. Restrict user activity with SELinux user mappings. Analyze and correct existing SELinux configurations. Enforce security compliance Install OpenSCAP and Workbench. Use OpenSCAP and Red Hat Insights to scan hosts for security compliance. Use OpenSCAP Workbench to tailor policy. Use OpenSCAP Workbench to scan an individual host for security compliance. Use Red Hat Satellite server to implement an OpenSCAP policy. Apply OpenSCAP remediation scripts to hosts. As with all Red Hat performance-based exams, configurations must persist after reboot without intervention. Prerequisites Be a Red Hat Certified System Administrator or have comparable work experience and skills (Red Hat Certified Engineer would be even better) Review the Red Hat Certified Specialist in Security: Linux e ...

Study points for the exam As an RHCE exam candidate, you should be able to handle all responsibilities expected of a Red Hat Certified System Administrator, including these tasks: Be able to perform all tasks expected of a Red Hat Certified System Administrator Understand and use essential tools Operate running systems Configure local storage Create and configure file systems Deploy, configure, and maintain systems Manage users and groups Manage security Understand core components of Ansible Inventories Modules Variables Facts Plays Playbooks Configuration files Install and configure an Ansible control node Install required packages Create a static host inventory file Create a configuration file Configure Ansible managed nodes Create and distribute SSH keys to managed nodes Configure privilege escalatio * Experienced Red Hat Enterprise Linux system administrators seeking validation of their skills or require a certification either by their organization or based on a mandate (DoD 8570 directive) students who have taken Red Hat System Administration III: Linux Automation (RH294) and are on the path to becoming a Red Hat Certified Engineer (RHCE) students who are on the path to becoming a Red Hat Certified Architect (RHCA) Systems administrators who want to demonstrate competency in managing multiple systems IT professionals who work in a DevOps environment and want to demonstrate competency in automating part of their workload Red Hat Certified Engineers who are noncurrent or who are about to become noncurrent and wish to recertify as RHCEs study points for the exam As an RHCE exam candidate, you should be able to handle all responsibilities expected of a Red Hat Certified System Administrator, including these tasks: Be able to perform all tasks expected of a Red Hat Certified System Administrator Understand and use essential tools Operate running systems Configure local storage Create and configure file systems Deploy, configure, and maintain systems Manage users and groups Manage security Understand core components of Ansible Inventories Modules Variables Facts Plays Playbooks Configuration files Install and configure an Ansible control node Install required packages Create a static host inventory file Create a configuration file Configure Ansible managed nodes Create and distribute SSH keys to managed nodes Configure privilege escalation on managed nodes Validate a working configuration using ad hoc Ansible commands Script administration tasks Create simple shell scripts Create simple shell scripts that run ad hoc Ansible commands Create and use static inventories to define groups of hosts Create Ansible plays and playbooks Know how to work with commonly used Ansible modules Use variables to retrieve the results of running a command Use conditionals to control play execution Configure error handling Create playbooks to configure systems to a specified state Use Ansible modules for system administration tasks that work with: Software packages and repositories Services Firewall rules File systems Storage devices File content Archiving Scheduled tasks Security Users and groups Create and use templates to create customized configuration files Work with Ansible variables and facts Create and work with roles Download roles from an Ansible Galaxy and use them Manage parallelism Use Ansible Vault in playbooks to protect sens ...

Study points for the exam To help you prepare, these exam objectives highlight the task areas you can expect to see covered in the exam. Red Hat reserves the right to add, modify, and remove exam objectives. Such changes will be made public in advance. Understand, identify, and work with containerization features Deploy a preconfigured application and identify crucial features such as namespaces, SELinux labels, and cgroups Deploy a preconfigured application with security context constraint capabilities and view the application’s capability set Configure security context constraints Use trusted registries Load images into a registry Query images in a registry Work with trusted container images Identify a trusted container image Sign images View signed images Scan images Load signed images into a registry Build secure container images Perform simple S2I builds Implement S2I bui * System administrators or developers who want to demonstrate their ability to properly secure containers System administrators or developers who are working in a DevOps environment using Red Hat OpenShift Container Platform Red Hat Certified Engineers who wish to become Red Hat Certified Architects study points for the exam To help you prepare, these exam objectives highlight the task areas you can expect to see covered in the exam. Red Hat reserves the right to add, modify, and remove exam objectives. Such changes will be made public in advance. Understand, identify, and work with containerization features Deploy a preconfigured application and identify crucial features such as namespaces, SELinux labels, and cgroups Deploy a preconfigured application with security context constraint capabilities and view the application’s capability set Configure security context constraints Use trusted registries Load images into a registry Query images in a registry Work with trusted container images Identify a trusted container image Sign images View signed images Scan images Load signed images into a registry Build secure container images Perform simple S2I builds Implement S2I build hooks Automate builds using Jenkins Automate scanning and code validations as part of the build process Control access to OpenShift Container Platform clusters Configure users with different permission levels, access, and bindings Configure OpenShift Container Platform to use Red Hat Identity Management services (IdM) for authentication Query users and groups in IdM Log into OpenShift Container Platform using an IdM managed account Configure single sign-on (SSO) Install SSO authentication Configure OpenShift Container Platform to use SSO Integrate web applications with SSO Automate policy-based deployments Configure policies to control the use of images and registries Use secrets to provide access to external registries Automatically pull and use images from a registry Use triggers to verify that automated deployments work Manage orchestration Restrict nodes on which containers may run Use quotas to limit resource utilization Use secrets to automate access to resources Configure network isolation Create software-defined networks (SDN) Associate containers and projects with SDNs Configure and manage secure container storage Configure and secure file-based container storage Configure and secure block-based container storage As with all Red Hat performance-based exams, configurations must persist after reboot without intervention. Scores and reporting Official scores for exams come exclusively from Red Hat Certification Central . Red Hat does not authorize e ...

Red Hat System Administration III: Linux Automation (RH294) is designed for Linux® system administrators and developers who need to automate provisioning, configuration, application deployment, and orchestration. This course is based on Red Hat® Enterprise Linux 8 and Red Hat® Ansible Engine 2.8. Ways To Train - Test Red Hat offers a method of training that is convenient to you - classroom, online, or at your site. Audience This course is ...

Red Hat System Administration III: Linux Automation with exam (RH295) is designed for Linux® system administrators and developers who need to lea> and validate how to automate provisioning, configuration, application deployment, and orchestration. You will prove your ability to install and configure Ansible® on a management workstation; prepare managed hosts for automation; write Ansible Playbooks to automate tasks; and run playbooks to ensure servers are correctly depl ...