RH415: Red Hat Security: Linux in Physical, Virtual, and Cloud

Course Information

Course Name

RH415: Red Hat Security: Linux in Physical, Virtual, and Cloud

Exam code

EX415

Duration

4 Days

Certification

Red Hat Certified Architect (RHCA)

Overview

• Maintaining the security of computing systems is a process of managing risk through the implementation of processes and standards backed by technologies and tools. “Red Hat Security: Linux in Physical, Virtual, and Cloud” (RH415) is designed for security administrators and system administrators who need to manage the secure operation of servers running Red Hat Enterprise Linux, whether deployed on physical hardware, as virtual machines, or as cloud instances. You will learn about technologies and tools that can be used to help you implement and comply with your security requirements, including the kernel’s Audit subsystem, AIDE, SELinux, OpenSCAP and SCAP Workbench, USBGuard, PAM authentication, and Network-Based Device Encryption. You will learn to monitor compliance and to proactively identify, prioritize, and resolve issues by using OpenSCAP, Red Hat Insights, Red Hat Satellite, and Red Hat Ansible Automation Platform. You will have a basic introduction to how Red Hat Ansible Automation Platform automates the deployment of remediation to systems, by using Ansible Playbooks from OpenSCAP or Red Hat Insights.

• This course is based on RHEL 9.2, Ansible Core 2.14, Red Hat Ansible Automation Platform 2.4, Satellite 6.14, and OpenSCAP 1.3.7.

• Maintaining the security of computing systems is a process of managing risk through the implementation of processes and standards backed by technologies and tools. In this course, you will learn about resources that can be used to help you implement and comply with your security requirements.

• Following course completion, hands-on lab access will remain available for up to 45 days for any live course that includes a virtual environment.

Audience Profile

System Administrator – responsible for supporting the company’s physical and virtual infrastructure, systems, and servers

IT Security Practitioner / Compliance & Auditor – responsible for ensuring the technology environment is protected from attacks and is in compliance with security/privacy rules and regulations.

Automation Architect – Engineer or architect responsible for the company’s automation development and optimizing cloud tools and infrastructure to achieve automation goals.

Prerequisites

Red Hat Certified Engineer (EX294 / RHCE) certification or equivalent Red Hat Enterprise Linux knowledge and experience.

At Course Completion

• Manage compliance with OpenSCAP.

• Enable SELinux on a server from a disabled state, perform basic analysis of the system policy, and mitigate risk with advanced SELinux techniques.

• Proactively identify and resolve issues with Red Hat Insights.

• Monitor activity and changes on a server with Linux Audit and AIDE.

• Protect data from compromise with USBGuard and storage encryption.

• Manage authentication controls with PAM.

• Manually apply provided Ansible Playbooks to automate mitigation of security and compliance issues.

• Scale OpenSCAP and Red Hat Insights management with Red Hat Satellite and Red Hat Ansible Automation Platform.

Course Outline

Module 1: Managing Security and Risk

Define and implement strategies to manage security on Red Hat Enterprise Linux systems.

Module 2: Automating Configuration and Remediation with Ansible

Remediate configuration and security issues automatically with Ansible Playbooks.

Module 3: Protecting Data with LUKS and NBDE

Encrypt data on storage devices with LUKS, and use NBDE to manage automatic decryption when servers are booted.

Module 4: Restricting USB Device Access

Protect systems from rogue USB device access with USBGuard.

Module 5: Controlling Authentication with PAM

Manage authentication, authorization, session settings, and password controls by configuring Pluggable Authentication Modules (PAM).

Module 6: Recording System Events with Audit

Record and inspect system events relevant to security by using the Linux kernel’s Audit system and supporting tools.

Module 7: Monitoring File System Changes

Detect and analyze changes to a server’s file systems and their contents by using AIDE.

Module 8: Mitigating Risk with SELinux

Improve security and confinement between processes by using SELinux and advanced SELinux techniques and analysis.

Module 9: Managing Compliance with OpenSCAP

Evaluate and remediate a server’s compliance with security policies by using OpenSCAP.

Module 10: Analyzing and Remediating Issues with Red Hat Insights

Identify, detect, and correct common issues and security vulnerabilities with Red Hat Enterprise Linux systems by using Red Hat Insights.

Module 11: Automating Compliance with Red Hat Satellite

Automate and scale OpenSCAP compliance checks by using Red Hat Satellite.

Module 12: Comprehensive Review

Review tasks from Red Hat Security: Linux in Physical, Virtual, and Cloud.

All Red Hat certification courses are conducted by certified trainers from Iverson.

Digital Methods acts as the official training partner and assists with program consultation, registration, coordination, scheduling, and administrative arrangements to ensure a seamless and professionally managed training experience.