Red Hat® Server Hardening (RH413) builds on a student's Red Hat
Certified Engineer (RHCE®) certification or
equivalent experience to provide an understanding of how to secure a Red Hat
Enterprise Linux® system to comply with security policy requirements.
Many security policies
and standards require systems administrators to address specific user
authentication concerns, application of updates, system auditing and logging,
file system integrity, and more. Red Hat Server Hardening provides strategies for
addressing specific policy and configuration concerns. This course can also
help you prepare for the Red Hat Certified
Specialist in Server Security and Hardening exam (EX413). This version of the course
includes the exam.
Impact on the organization
This course is intended to develop the skills needed to ensure
data integrity on computer systems for organizations with high security standards.
Impact on the individual
As a result of attending this course, students should be able to
recognize security vulnerabilities in system configurations and installed
packages. Students should be able to understand and respond to Common
Vulnerabilities and Exposure (CVE) and Red Hat Security Advisory (RHSA)
Students should be able to demonstrate the following skills:
identity management to facilitate user account security policies
system auditing and logging based on system and user security policies
understand, and apply relevant errata to maintain system integrity
Red Hat Certified Engineer (RHCE) certification, Red Hat Certified Systems Administrator (RHCSA) certification, or equivalent experience required
For candidates who have not earned their RHCSA or RHCE certifications, confirmation of the required knowledge can be obtained by passing theonline skills assessment
Needs technical guidance on how to enhance the security of Red Hat Enterprise Linux systems
Responsible for implementing security policy requirements on Red Hat Enterprise Linux systems consistently and in a reproducible, scalable way
Must be able to demonstrate that systems meet security policy requirements
Maintains continued adherence to security requirements, including management of security-critical operating system/software updates
RHCE-level skills highly recommended
Track security updates
Understand how Red Hat Enterprise Linux
produces updates and how to use yum to perform queries to identify what errata
Develop a process for applying updates to
systems including verifying properties of the update.
Create file systems
Allocate an advanced file system layout and
use file system encryption.
Manage file systems
Adjust file system properties through security
related options and file system attributes.
Work with set user ID (SUID), set group ID
(SGID), and sticky (SVTX) permissions and locate files with these permissions
Manage additional file
Modify default permissions applied to files
and directories; work with file access control lists.
Monitor for file
Configure software to monitor the files on
your machine for changes.
Manage user accounts
Set password-aging properties for users; audit
authentication modules (PAMs)
Apply changes to PAMs to enforce different
types of rules on users.
Secure console access
Adjust properties for various console services
to enable or disable settings based on security.
Install and configure a Red Hat Identity
Management server and client.
Configure Red Hat Identity Management rules to
control both user access to client systems and additional privileges granted to
users on those systems.
Configure remote logging to use transport
layer encryption and manage additional logs generated by remote systems.
Enable and configure system auditing.
Control access to
Manage firewall rules to limit connectivity to
A Red Hat® Certified Engineer (RHCE®) is a Red Hat Certified System Administrator (RHCSA) who possesses the additional skills, knowledge, and abilities required of a senior system administrator responsible for Red Hat Enterprise Linux® systems.