Enterprise Linux System Administration (H7091S)

COURSE OVERVIEW

This in-depth course explores installation, configuration, and maintenance of Linux systems. The course focuses on issues universal to every workstation and server and provides extensive hands-on experience. Topics include installation and configuration, the boot process, user and group administration, filesystem administration including quotas, FACLs, RAID, and LVM, task automation, client networking, SELinux, software management, log files, troubleshooting and more.

PREREQUISITES

Students should already be comfortable working in a Linux or UNIX environment. Fundamentals such as the Linux filesystem, process management, and how to edit files are not covered. An understanding of network concepts and the TCP/IP protocol suite is helpful. These skills are taught in Linux Fundamentals (U8583S).

AUDIENCE

• New Linux system administrators

SUPPORTED DISTRIBUTIONS

• Red Hat Enterprise Linux 7, SUSE Linux Enterprise 12

COURSE OBJECTIVES

At the conclusion of this course you should be able to:

• Successfully install, configure, and bring a Linux system online

NEXT STEPS

• Enterprise Linux Network Services (H7092S)

BENEFITS TO YOU

• Learn Linux system administration tasks
• Understand Linux user interfaces, file systems, and run states
• Acquire the techniques for recovering an unbootable system
• Gain knowledge of Linux disk space management options
• Effectively manage software packages

COURSE OUTLINE

Chapter 1 – Linux Kernel & Devices

• Hardware Discovery Tools
• Configuring New Hardware with hwinfo
• Kernel Hardware Info – /sys/
• /sys/ Structure
• udev
• Managing Linux Device Files
• List Block Devices
• SCSI Devices
• USB Devices
• USB Configuration
• Kernel Modules
• Configuring Kernel Components and Modules
• Handling Module Dependencies
• Configuring the Kernel via /proc/
• Console
• Virtual Terminals
• Serial Ports

Lab Tasks

• Adjusting Kernel Options
• Introduction to Troubleshooting Labs
• Troubleshooting Practice: Kernel Modules

Chapter 2 – Boot Process & Systemd

• systemd System and Service Manager
• systemd Targets
• Using systemd
• Legacy Support for SysV init
• Booting Linux on PCs
• GRUB 2
• GRUB2 Configuration
• GRUB2 Security
• Boot Parameters
• Initial RAM Filesystem
• init
• System Init Styles Overview
• Linux Runlevels Aliases
• Systemd local-fs.target and sysinit.target
• Systemd basic.target and multi-user.target
• Legacy local bootup script support
• System Configuration Files
• RHEL7 Configuration Utilities
• SLES12 Configuration Utilities
• Shutdown and Reboot

Lab Tasks

• Boot Process
• Booting directly to a bash shell
• GRUB Command Line
• Basic GRUB Security
• Managing Services With Systemd’s systemctl
• Troubleshooting Practice: Boot Process

Chapter 3 – Software Maintenance

• Managing Software
• RPM Features
• RPM Architecture
• RPM Package Files
• Working With RPMs
• Querying and Verifying with RPM
• Updating the Kernel RPM
• Dealing With RPM & Yum Digest Changes
• Yum Plugins & RHN Subscription Manager
• YUM Repositories
• YUM Repository Groups
• Compiling/Installing from Source
• Manually Installed Shared Libraries
• Rebuilding Source RPM Packages

Lab Tasks

• Managing Software with RPM
• Creating a Custom RPM Repository
• Querying the RPM Database
• Installing Software via RPM & Source and Rebuilding SRPMs

Chapter 4 – Local Storage Administration

• Partitioning Disks with fdisk
• Partitioning Disks with parted
• Filesystem Creation
• Persistent Block Devices
• Mounting Filesystems
• Resizing Filesystems
• Filesystem Maintenance
• Managing an XFS Filesystem
• Swap
• Filesystem Structures
• Determining Disk Usage With df and du
• Configuring Disk Quotas
• Setting Quotas
• Viewing and Monitoring Quotas
• Filesystem Attributes

Lab Tasks

• Creating and Managing Filesystems
• Hot Adding Swap
• Setting User Quotas

Chapter 5 – LVM & RAID

• Logical Volume Management
• Implementing LVM
• Creating Logical Volumes
• Manipulating VGs & LVs
• Advanced LVM Concepts
• gnome-disk-utility
• SLES Graphical Disk Tool
• RAID Concepts
• Array Creation with mdadm
• Software RAID Monitoring
• Software RAID Control and Display

Lab Tasks

• Creating and Managing LVM Volumes
• Creating and Managing a RAID-5 Array

Chapter 6 – Remote Storage Administration

• Remote Storage Overview
• Remote Filesystem Protocols
• Remote Block Device Protocols
• File Sharing via NFS
• NFSv4+
• NFS Clients
• NFS Server Configuration
• YaST NFS Server Administration
• Implementing NFSv4
• AutoFS
• AutoFS Configuration
• Accessing Windows/Samba Shares from Linux
• SAN Multipathing
• Multipath Configuration
• Multipathing Best Practices
• iSCSI Architecture
• Open-iSCSI Initiator Implementation
• iSCSI Initiator Discovery
• iSCSI Initiator Node Administration
• Mounting iSCSI Targets at Boot
• iSCSI Multipathing Considerations

Lab Tasks

• Using autofs
• NFS Server Configuration
• iSCSI Initiator Configuration
• Multipathing with iSCSI

Chapter 7 – User/Group Administration

• User and Group Concepts
• User Administration
• Modifying Accounts
• Group Administration
• Password Aging
• Default User Files
• Controlling Login Sessions
• system-config-authentication
• SLES DS Client Configuration
• System Security Services Daemon (SSSD)

Lab Tasks

• User and Group Administration
• Using LDAP for Centralized User Accounts
• Troubleshooting Practice: Account Management

Chapter 8 – Pluggable Authentication Modules (PAM)

• PAM Overview
• PAM Module Types
• PAM Order of Processing
• PAM Control Statements
• PAM Modules
• pam_unix
• pam_nologin.so
• pam_limits.so
• pam_wheel.so
• pam_xauth.so

Lab Tasks

• Restricting superuser access to wheel group membership
• Using pam_nologin to Restrict Logins
• Setting Limits with the pam_limits Modules
• Using pam_limits to Restrict Simultaneous Logins

Chapter 9 – Security Administration

• Security Concepts
• Tightening Default Security
• SuSE Security Checker
• Security Advisories
• File Access Control Lists
• Manipulating FACLs
• Viewing FACLs
• Backing Up FACLs
• File Creation Permissions with umask
• User Private Group Scheme
• Alternatives to UPG
• AppArmor
• SELinux Security Framework
• SELinux Modes
• SELinux Commands
• Choosing an SELinux Policy
• SELinux Booleans
• Permissive Domains
• SELinux Policy Tools
• SUSE Basic Firewall Configuration
• FirewallD

Lab Tasks

• User Private Groups
• Using Filesystem ACLs
• Exploring AppArmor
• Exploring SELinux Modes
• SELinux File Contexts

Chapter 10 – Basic Networking

• IPv4 Fundamentals
• TCP/UDP Fundamentals
• Linux Network Interfaces
• Ethernet Hardware Tools
• Network Configuration with ip Command
• Configuring Routing Tables
• IP to MAC Address Mapping with ARP
• Starting and Stopping Interfaces
• NetworkManager
• DNS Clients
• DHCP Clients
• SUSE YaST Network Configuration Tool
• Network Diagnostics
• Information from ss and netstat
• Hardware and System Clock
• Managing Network-Wide Time
• Continual Time Sync with NTP
• Configuring NTP Clients
• Useful NTP Commands

Lab Tasks

• Network Discovery
• Basic Client Networking
• NTP Client Configuration

Chapter 11 – Advanced Networking

• Multiple IP Addresses
• Configuring a DHCP server
• IPv6
• Interface Bonding
• Interface Bridging
• 802.1q VLANS
• Tuning Kernel Network Settings

Lab Tasks

• Multiple IP Addresses Per Network Interface
• Configuring IPv6
• Troubleshooting Practice: Networking

Chapter 12 – Log File Administration

• System Logging
• Systemd Journal
• gnome-system-log
• Rsyslog
• /etc/rsyslog.conf
• Log Management
• Log Anomaly Detector
• Sending logs from the shell

Lab Tasks

• Using the systemd Journal
• Setting up a Full Debug Logfile
• Remote Syslog Configuration
• Remote Rsyslog TLS Configuration

Chapter 13 – Monitoring & Troubleshooting

• System Status – Memory
• System Status – I/O
• System Status – CPU
• Performance Trending with sar
• Determining Service to Process Mapping
• Realtime Monitoring of Resources Cgroups
• Troubleshooting Basics: The Process
• Troubleshooting Basics: The Tools
• strace and ltrace
• Common Problems
• Troubleshooting Incorrect File Permissions
• Inability to Boot
• Typos in Configuration Files
• Corrupt Filesystems
• RHEL7 Rescue Environment
• SUSE Rescue Environment

Lab Tasks

• Recovering Damaged MBR
• Cgroup for Processes

Appendix A – Pre-Installation Considerations

• Pre-Installation Considerations
• Hardware Compatibility
• Multi-OS Booting
• Partition Considerations
• Filesystem Planning
• Selecting a Filesystem

Appendix B – Installing RHEL7

• Anaconda: An Overview
• Anaconda: Booting the System
• Anaconda: Common Boot Options
• Anaconda: Loading Anaconda and Packages
• Anaconda: Storage Options
• Anaconda: Troubleshooting
• FirstBoot
• Kickstart
• Network Booting with PXE
• A Typical Install

Lab Tasks

• Linux Installation
• Automating Installation with Kickstart

Appendix C – Installing SLES12

• YaST Install Program Interface
• Network Installation
• SLP for SUSE Linux Installation
• Installation Choices
• Kernel Crash Dump Configuration
• Network Booting with PXE
• Creating AutoYaST2 Files
• Using AutoYaST2 files
• linuxrc Automation
• Installation Diagnostics
• After The First Reboot
• A Typical Install

Lab Tasks

• SUSE Linux Enterprise Server Installation
• Automating Installation with AutoYaST

Appendix D – Manage Virtual Machines

• Virtualization: What and Why?
• Introducing libvirt
• libvirt: Basic Concepts
• libvirt: Storage Architecture
• libvirt: Network Architecture
• libvirt: Graphical Tools
• libvirt: Command Line Tools
• virsh: Basics
• virsh: Common Tasks
• virt-install
• libguestfs and guestfish

Lab Tasks

• Installing a Virtual Machine

Appendix E – Backups

• Backup Software
• Managing Optical Media
• Tape Libraries
• Backup Examples

Lab Tasks

• Using rsync and ssh for Backups
• Using tar for Backups
• Using cpio for Backups
• Creating ISO Images for Backups
• Using dump and restore for Backups

For more information about HP training programs in Ukraine visit web site at http://www8.hp.com/ua/ru/training/index.html

For whom it is intended:

• System administrator