This Securing SUSE Linux Enterprise Server training course provides skills to develop a security policy and implement a more secure SUSE environment. A variety of approaches regarding system security from physical, local and network security will be reviewed. MAC and DAC access control methods and some of its supporting tools are also included in the course objectives. Auditing as a valid method to monitor security measures is also covered. Lastly, a description of the security process at SUSE and its publicly available resources will give you a better way to support the day to day SUSE Linux Enterprise Server administration and operation in a consistent and secure fashion.
By attending Securing SUSE Linux Enterprise Server workshop, delegates will learn to:
- Understand Security Concepts and Cryptography Basics
- Understand SUSE Security Resources and SLES 12 Security Certifications
- Secure the Boot Process
- Understand the YaST Security Module
- Understand Configurable Kernel Security Settings
- Understand the Importance of Patches and Updates
- Filesystem Security
- Secure Local User Accounts and Restricting Access to the Root Account
- Understand Systemd Session Management and Resource Control
- PAM Modules
- Delegate Administrative Privilege (sudo, polkit)
- Understand Network Packet Filtering, TCP Wrappers and Xinetd
- Restrict Network Access with Systemd
- Understand and Configure Virtual Private Networks
- Use Security Audit Tools: SUSE Seccheck, AIDE, Linux Audit Framework, Centralized Logging
- Understand the Linux Security Modules Framework ( LSM )
- Understand How AppArmor and SELinux Compare
- SCE in Enterprise Linux or equivalent experience is strongly recommended.
The Securing SUSE Linux Enterprise Server class is ideal for:
- SUSE system administrators who want to learn how to secure their systems.