Duration: 1 Day
The Red Hat Enterprise SELinux Policy Administration Expertise Exam (IES) is
a performance-based test of the skills covered in Red Hat Enterprise SELinux
Policy Administration (RHS429). To enroll in this exam, you must hold a current
Red Hat Certified Engineer (RHCE) certification.
What You Will Learn
Audience
- Experienced RHCE Linux system administrators responsible for Mandatory
Access Control (MAC)-based security
- Experienced RHCE Linux system administrators who want to harden their
existing Linux system or networked services security
- RHCEs interested in earning a Red Hat Certification of Expertise or an
RHCSS credential
Prerequistes
- Current RHCE certification at the time the exam is taken
- Real-world system administration experience is an important aspect of
exam preparation
Course Outline
1. SELinux Policy Writing
- Specify an enforcement mode
- Specify a particular policy
- Update a system to use the latest SELinux packages
- Create and implement a custom policy module to support a given service,
including:
- Port bindings
- File and directory access
- Type transitions
- Default file types
- Booleans
- Type Aliases
2. Targeted Policy System Maintenance
- Specify an enforcement mode
- Specify a particular policy
- Modify an existing policy, including:
- Port bindings
- File and directory access
- Type transitions
- Default file types
- Booleans
- Type Aliases
- Back up/Restore a filesystem preserving SELinux attributes
Note: As with all Red Hat performance-based exams, configurations must
persist after reboot without intervention.
Course Labs
