The modules for the program comprise of:

--> RHS333 Enterprise Network Services Security
--> RH423 Enterprise Directory Services & Authentication
--> RHS429 SELinux Policy Administration

RH423
Red Hat Enterprise Directory Services and Authentication - 32 hours

RHS429 introduces advanced system administrators, security administrators, and applications programmers to SELinux policy writing. Participants in this course will learn how SELinux works; how to manage SELinux; and how to write an SELinux policy. This class culiminates in a major project to scope out and then write policies for previously unprotected services.

1. . Introduction to Directory Services
  -->   What is a directory?
  -->  LDAP: models, schema, and attributes
  -->   Object classes
  -->   LDIF

2. The LDAP Naming Modely
    -->  Directory information trees and Distingued Names
    -->  X.500 and "Internet" naming suffixes
    -->  Planning the directory hierarchy

3. Red Hat Directory Server: Basic Configuration
    -->  Installation and setup of Red Hat Directory Server
    -->   Using the Red Hat Console
    -->   Using logging to monitor Red Hat Directory Server activity
    -->   Backing up and restoring the directory
    -->   Basic performance tuning with indexes

4. Red Hat Directory Server: Authentication and Security
    -->   Configuring TLS security"
    -->   Using access control instructions (ACI´s)
    -->   ACI´s and the Red Hat Console

5.Searching and Modifying the LDAP Directory
    -->   Using command line utilities to search the directory
    -->   Search filter syntax
    -->   Updating the directory
    -->   Using graphical LDAP client utilities

6. Linux User Authentication with NSS and PAM
    -->   Understanding authentication and authorization
    -->   Name service switch (NSS)
    -->   Advanced pluggable authentication modules (PAM) configuration

7. Centralized User Authentication with LDAP
    -->   Central account management with LDAP
    -->   Using migration scripts to migrate existing data into an LDAP server
    -->   LDAP user authentication

8. Kerberos and LDAP
    -->   Introduction to Kerberos
    -->   Configuring the Kerberos key distribution center (KDC) and clients
    -->   Configuring LDAP to support Kerberos
    -->   Access control with Simple Authentication and Security Layer (SASL)

9.Directory Referrals and Replication
    -->   Referrals and replication
    -->   Single master configuration
    -->   Multiple master configuration
    -->   Planning for directory server availability

10. Authenticating Windows Clients
    -->   Windows networking overview
    -->   Configuring a Samba primary domain controller (PDC) using LDAP

11. Windows Domain Authentication and Linux Clients
    -->   Active Directory servers
    -->   Linux as a client
    -->   Active Directory and NSS
    -->   OpenLDAP
    -->   Winbind