At a glance
View schedule & enroll Sorted by: location or date
Course number H7092S
Length 5 days
Delivery method Virtual Instructor-Led Training (VILT)
Instructor-led training (ILT)
Onsite dedicated training (OST)
Price USD $2,500
CAD $2,750
*Courses are supported in the delivery formats above, but are not necessarily scheduled in every delivery format listed. Please click the schedule links at the top of the page to see which delivery formats are currently scheduled.

Special note

The RedHat versions of the course covers the following Linux distributions:

  • RedHat Enterprise Linux 6.0

The SUSE versions of the course covers the following Linux distributions:

  • SUSE Linux Enterprise Server 11.0

Students will receive course workbooks for RedHat Enterprise Linux 6.0 and SUSE Linux Enterprise Server 11.0 and select which distribution to perform the labs on.

Each on-site course delivery will run on either RedHat Enterprise Linux 6.0 or SUSE Linux Enterprise Server 11.0.

Course overview

This 5-day course is the follow-on course to Linux system administration I (H7091S), provides those with basic Linux admin experience, the knowledge & skills necessary to setup, configure & manage the most popular network services available for their Red Hat and SUSE Linux systems. Topics include protocol theory of operation and detailed configuration of DNS, LDAP, web (HTTP, HTTPS), FTP, SMTP, POP3 IMAP etc. Coupled with the previous course, Linux system administration I (HP H7091S) is our recommended curriculum to assist those system administrators wishing to prepare for Linux certification.


  • UNIX fundamentals (51434S) or
  • Linux fundamentals (U8583S) and
  • Enterprise Linux Network Administration (H7091S)


  • New Linux system administrators

Supported Distributions

  • Red Hat Enterprise Linux 6
  • SUSE Linux Enterprise 11

Ways to save

Benefits to you

  • This course, coupled with the previous course, Linux Administration I (HP H7091S) is our recommended curriculum to assist those system administrators wishing to prepare for one of the Linux certifications. Linux Professional Institute (LPI) Level 1, Red Hat (RHCE, RHCT) or SAIR
  • Effectively use networking services and security options
  • Understand and configure services to your specific needs
  • Avoid unwanted emails by configuring mail services with spam filtering

Next Steps

Course outline

Securing Services


  • Xinetd Connection Limiting and Access Control
  • Xinetd: Resource limits, redirection, logging
  • TCP Wrappers
  • The /etc/hosts.allow & /etc/hosts.deny Files
  • /etc/hosts.{allow,deny} Shortcuts
  • Advanced TCP Wrappers
  • Basic Firewall Netfilter: Stateful Packet Filter Firewall
  • Netfilter Concepts
  • Using the iptables Command
  • Netfilter Rule Syntax
  • Targets
  • Common match_specs
  • Connection Tracking
  • AppArmor
  • SELinux Security Framework
  • Choosing an SELinux Policy
  • SELinux Commands and Booleans
  • Graphical SELinux Policy Tools
  • Lab Tasks

DNS Concepts

Naming Services

  • DNS – A Better Way, The Domain Name Space
  • Delegation, Zones and Server Roles
  • Resolving Names and Resolving IP Addresses
  • Basic BIND Administration
  • Configuring the Resolver
  • Testing Resolution
  • Lab Tasks

Configuring BIND

BIND Configuration Files

  • named.conf Syntax
  • named.conf Options Block
  • Creating a Site-Wide Cache
  • rndc Key Configuration
  • Zones In named.conf
  • Zone Database File Syntax
  • SOA – Start of Authority
  • A & PTR – Address & Pointer Records
  • NS – Name Server
  • CNAME & MX – Alias & Mail Host
  • Abbreviations and Gotchas
  • Lab Tasks

Creating DNS Hierarchies

Subdomains and Delegation

  • Subdomains
  • Delegating Zones
  • Delegation
  • Issues with
  • RFC2317 &
  • Lab Tasks

Advanced BIND DNS Features

Address Match Lists & ACLs

  • Split Namespace with Views
  • Restricting Queries
  • Restricting Zone Transfers
  • Running BIND in a chroot jail
  • Dynamic DNS Concepts
  • Allowing Dynamic DNS Updates
  • DDNS Administration with nsupdate
  • Common Problems
  • Common Problems
  • Securing DNS With TSIG
  • Lab Tasks

LDAP Concepts and Clients

LDAP: History and Uses

  • LDAP: Data Model Basics
  • LDAP: Protocol Basics
  • LDAP: Applications
  • LDAP: Search Filters
  • LDIF: LDAP Data Interchange Format
  • OpenLDAP Client Tools
  • Alternative LDAP Tools
  • Lab Tasks

OpenLDAP Servers

Popular LDAP Server Implementations

  • OpenLDAP: Server Architecture
  • OpenLDAP: Backends
  • OpenLDAP: Replication
  • OpenLDAP: Configuration Options
  • OpenLDAP: Configuration Sections
  • OpenLDAP: Global Parameters
  • OpenLDAP: Database Parameters
  • OpenLDAP Server Tools
  • Enabling LDAP-based Login
  • System Security Services Daemon (SSSD)
  • Lab Tasks

Using Apache

HTTP operation

  • Apache Architecture
  • Dynamic Shared Objects
  • Adding Modules to Apache
  • Apache Configuration Files
  • httpd.conf – Server Settings
  • httpd.conf – Main Configuration
  • HTTP Virtual Servers
  • Virtual Hosting DNS Implications
  • httpd.conf – VirtualHost Configuration
  • Port and IP based Virtual Hosts
  • Name-based Virtual Host
  • Apache Logging
  • Log Analysis
  • The Webalizer
  • Lab Tasks

Apache Security

Virtual Hosting Security Implications

  • Delegating Administration
  • Directory Protection
  • Directory Protection with AllowOverride
  • Common Uses for .htaccess
  • Symmetric Encryption Algorithms
  • Asymmetric Encryption Algorithms
  • Digital Certificates
  • SSL Using
  • Lab Tasks

H7092S  J.00