RH124 - ch06s10

Preface A: Introduction

Section A.1: Red Hat System Administration I

Section A.2: Orientation to the Classroom Environment

Section A.3: Performing Lab Exercises

Chapter 1: Get Started with Red Hat Enterprise Linux

Section 1.1: What Is Linux?

Section 1.2: Quiz: Get Started with Red Hat Enterprise Linux

Section 1.3: Summary

Chapter 2: Access the Command Line

Section 2.1: Access the Command Line

Section 2.2: Quiz: Access the Command Line

Section 2.3: Access the Command Line with the Desktop

Section 2.4: Guided Exercise: Access the Command Line with the Desktop

Section 2.5: Execute Commands with the Bash Shell

Section 2.6: Quiz: Execute Commands with the Bash Shell

Section 2.7: Lab: Access the Command Line

Section 2.8: Summary

Chapter 3: Manage Files from the Command Line

Section 3.1: Describe Linux File System Hierarchy Concepts

Section 3.2: Quiz: Describe Linux File System Hierarchy Concepts

Section 3.3: Specify Files by Name

Section 3.4: Quiz: Specify Files by Name

Section 3.5: Manage Files with Command-line Tools

Section 3.6: Guided Exercise: Manage Files with Command-line Tools

Section 3.7: Make Links Between Files

Section 3.8: Guided Exercise: Make Links Between Files

Section 3.9: Match File Names with Shell Expansions

Section 3.10: Quiz: Match File Names with Shell Expansions

Section 3.11: Lab: Manage Files from the Command Line

Section 3.12: Summary

Chapter 4: Get Help in Red Hat Enterprise Linux

Section 4.1: Read Manual Pages

Section 4.2: Guided Exercise: Read Manual Pages

Section 4.3: Lab: Get Help in Red Hat Enterprise Linux

Section 4.4: Summary

Chapter 5: Create, View, and Edit Text Files

Section 5.1: Redirect Output to a File or Program

Section 5.2: Quiz: Redirect Output to a File or Program

Section 5.3: Edit Text Files from the Shell Prompt

Section 5.4: Guided Exercise: Edit Text Files from the Shell Prompt

Section 5.5: Change the Shell Environment

Section 5.6: Guided Exercise: Change the Shell Environment

Section 5.7: Lab: Create, View, and Edit Text Files

Section 5.8: Summary

Chapter 6: Manage Local Users and Groups

Section 6.1: Describe User and Group Concepts

Section 6.2: Quiz: Describe User and Group Concepts

Section 6.3: Gain Superuser Access

Section 6.4: Guided Exercise: Gain Superuser Access

Section 6.5: Manage Local User Accounts

Section 6.6: Guided Exercise: Manage Local User Accounts

Section 6.7: Manage Local Group Accounts

Section 6.8: Guided Exercise: Manage Local Group Accounts

Section 6.9: Manage User Passwords

SectionSection 6.10: Guided Exercise: Manage User Passwords

Section 6.11: Lab: Manage Local Users and Groups

Section 6.12: Summary

Chapter 7: Control Access to Files

Section 7.1: Interpret Linux File System Permissions

Section 7.2: Quiz: Interpret Linux File System Permissions

Section 7.3: Manage File System Permissions from the Command Line

Section 7.4: Guided Exercise: Manage File System Permissions from the Command Line

Section 7.5: Manage Default Permissions and File Access

Section 7.6: Guided Exercise: Manage Default Permissions and File Access

Section 7.7: Lab: Control Access to Files

Section 7.8: Summary

Chapter 8: Monitor and Manage Linux Processes

Section 8.1: Process States and Lifecycle

Section 8.2: Quiz: Process States and Lifecycle

Section 8.3: Control Jobs

Section 8.4: Guided Exercise: Control Jobs

Section 8.5: Kill Processes

Section 8.6: Guided Exercise: Kill Processes

Section 8.7: Monitor Process Activity

Section 8.8: Guided Exercise: Monitor Process Activity

Section 8.9: Lab: Monitor and Manage Linux Processes

Section 8.10: Summary

Chapter 9: Control Services and Daemons

Section 9.1: Identify Automatically Started System Processes

Section 9.2: Guided Exercise: Identify Automatically Started System Processes

Section 9.3: Control System Services

Section 9.4: Guided Exercise: Control System Services

Section 9.5: Lab: Control Services and Daemons

Section 9.6: Summary

Chapter 10: Configure and Secure SSH

Section 10.1: Access the Remote Command Line with SSH

Section 10.2: Guided Exercise: Access the Remote Command Line

Section 10.3: Configure SSH Key-based Authentication

Section 10.4: Guided Exercise: Configure SSH Key-based Authentication

Section 10.5: Customize OpenSSH Service Configuration

Section 10.6: Guided Exercise: Customize OpenSSH Service Configuration

Section 10.7: Lab: Configure and Secure SSH

Section 10.8: Summary

Chapter 11: Manage Networking

Section 11.1: Describe Networking Concepts

Section 11.2: Quiz: Describe Networking Concepts

Section 11.3: Validate Network Configuration

Section 11.4: Guided Exercise: Validate Network Configuration

Section 11.5: Configure Networking from the Command Line

Section 11.6: Guided Exercise: Configure Networking from the Command Line

Section 11.7: Edit Network Configuration Files

Section 11.8: Guided Exercise: Edit Network Configuration Files

Section 11.9: Configure Hostnames and Name Resolution

Section 11.10: Guided Exercise: Configure Hostnames and Name Resolution

Section 11.11: Lab: Manage Networking

Section 11.12: Summary

Chapter 12: Install and Update Software Packages

Section 12.1: Register Systems for Red Hat Support

Section 12.2: Quiz: Register Systems for Red Hat Support

Section 12.3: Explain and Investigate RPM Software Packages

Section 12.4: Guided Exercise: Explain and Investigate RPM Software Packages

Section 12.5: Install and Update Software Packages with DNF

Section 12.6: Guided Exercise: Install and Update Software Packages with DNF

Section 12.7: Enable DNF Software Repositories

Section 12.8: Guided Exercise: Enable DNF Software Repositories

Section 12.9: Lab: Install and Update Software Packages

Section 12.10: Summary

Chapter 13: Access Linux File Systems

Section 13.1: Identify File Systems and Devices

Section 13.2: Quiz: Identify File Systems and Devices

Section 13.3: Mount and Unmount File Systems

Section 13.4: Guided Exercise: Mount and Unmount File Systems

Section 13.5: Locate Files on the System

Section 13.6: Guided Exercise: Locate Files on the System

Section 13.7: Lab: Access Linux File Systems

Section 13.8: Summary

Chapter 14: Analyze Servers and Get Support

Section 14.1: Analyze and Manage Remote Servers

Section 14.2: Guided Exercise: Analyze and Manage Remote Servers

Section 14.3: Create a Diagnostics Report

Section 14.4: Guided Exercise: Create a Diagnostics Report

Section 14.5: Detect and Resolve Issues with Red Hat Insights

Section 14.6: Quiz: Detect and Resolve Issues with Red Hat Insights

Section 14.7: Summary

Chapter 15: Comprehensive Review

Section 15.1: Comprehensive Review

Section 15.2: Lab: Manage Files from the Command Line

Section 15.3: Lab: Manage Users and Groups, Permissions, and Processes

Section 15.4: Lab: Configure and Manage a Server

Section 15.5: Lab: Manage Networks

Section 15.6: Lab: Mount File Systems and Find Files

Bookmark this page

P 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15

Guided Exercise: Manage User Passwords

Set password policies for several users.

Outcomes

Force a password change when the user logs in to the system for the first time.
Force a password change every 90 days.
Set the account to expire 180 days from the current day.

As the student user on the workstation machine, use the lab command to prepare your system for this exercise.

This command prepares your environment and ensures that all required resources are available.

[student@workstation ~]$ lab start users-password

Instructions

From workstation, open an SSH session as the student user to the servera machine.
```
[student@workstation ~]$ ssh student@servera
[student@servera ~]$
```
On servera, use the usermod command to lock and unlock the operator1 user.
1. As the student user, use administrative rights to lock the operator1 account.
```
[student@servera ~]$ sudo usermod -L operator1
[sudo] password for student: student
```
2. Try to log in as operator1. This command should fail.
```
[student@servera ~]$ su - operator1
Password: redhat
su: Authentication failure
```
3. Unlock the operator1 account.
```
[student@servera ~]$ sudo usermod -U operator1
```
4. Try to log in as operator1 again. This time, the command should succeed.
```
[student@servera ~]$ su - operator1
Password: redhat
...output omitted...
[operator1@servera ~]$
```
5. Log out of the operator1 user shell to return to the student user shell.
```
[operator1@servera ~]$ exit
logout
```

Change the password policy for the operator1 user to require a new password every 90 days. Confirm that the password age is successfully set.

Switch to the root user.

[student@servera ~]$ sudo -i
[sudo] password for student: student
[root@servera ~]#

Set the maximum age of the operator1 user's password to 90 days.
```
[root@servera ~]# chage -M 90 operator1
```

Verify that the operator1 user's password expires 90 days after it is changed.

[root@servera ~]# chage -l operator1
Last password change      : Mar 10, 2022
Password expires          : Jun 10, 2022
Password inactive         : never
Account expires           : never
Minimum number of days between password change    : 0
Maximum number of days between password change    : 90
Number of days of warning before password expires : 7

Force a password change on the first login for the operator1 account.
```
[root@servera ~]# chage -d 0 operator1
```

Exit as the root user from the servera machine.

[root@servera ~]# exit
logout
[student@servera ~]$

Log in as operator1 and change the password to forsooth123. After setting the password, return to the student user's shell.

[student@servera ~]$ su - operator1
Password: redhat
You are required to change your password immediately (administrator enforced)
Current password: redhat
New password: forsooth123
Retype new password: forsooth123
...output omitted...
[operator1@servera ~]$

Exit the operator1 user's shell to return to the student user and then switch to the root user.

[operator1@servera ~]$ exit
logout
[student@servera ~]$ sudo -i
[sudo] password for student: student
[root@servera ~]#

Set the operator1 account to expire 180 days from the current day.

Determine a date 180 days in the future. Use the format %F with the date command to get the exact value. This returned date is an example; use the value on your system for the steps after this one.
```
[root@servera ~]# date -d "+180 days" +%F
2022-09-06
```
Set the account to expire on the date that is displayed in the preceding step. For example:
```
[root@servera ~]# chage -E 2022-09-06 operator1
```

Verify that the account expiry date is successfully set.

[root@servera ~]# chage -l operator1
Last password change      : Mar 10, 2022
Password expires          : Jun 10, 2022
Password inactive         : never
Account expires           : Sep 06, 2022
Minimum number of days between password change    : 0
Maximum number of days between password change    : 90
Number of days of warning before password expires : 7

Set the passwords to expire 180 days from the current date for all users. Use administrative rights to edit the configuration file.

Set PASS_MAX_DAYS to 180 in /etc/login.defs. Use administrative rights when you open the file with the text editor. You can use the vim /etc/login.defs command to perform this step.

...output omitted...
# Password aging controls:
#
#       PASS_MAX_DAYS   Maximum number of days a password may be
#       used.
#       PASS_MIN_DAYS   Minimum number of days allowed between
#       password changes.
#       PASS_MIN_LEN    Minimum acceptable password length.
#       PASS_WARN_AGE   Number of days warning given before a
#       password expires.
#
PASS_MAX_DAYS 180
PASS_MIN_DAYS   0
PASS_WARN_AGE   7
...output omitted...

Important

The default password and account expiry settings apply to new users but not to existing users.

Return to the workstation system as the student user.

[root@servera ~]# exit
logout
[student@servera ~]$ exit
logout
Connection to servera closed.
[student@workstation ~]$

Finish

On the workstation machine, change to the student user home directory and use the lab command to complete this exercise. This step is important to ensure that resources from previous exercises do not impact upcoming exercises.

[student@workstation ~]$ lab finish users-password

Discuss Red Hat System Administration I

Go to community

RH124 Chapter 15 Lab 3: Install zsh Package

VictoriaB97

16 sty 2024

Hello,I am trying to finish up Lab 3 of the Chapter 15 Comprehensive Review Labs in RH124, and when I type in sudo dnf install zsh for the 6th specification of the lab, I get an error message basically saying that it failed to download metadata for the repo 'ansible-2.9-for-rhel-9-x86_64-rpms', and that they could not download repomd.xml. It provided a 404 status code.Can someone please let me know what the problem is, and if there is a current workaround? Thanks.

378

Red Hat System Administration I | Guided Exercise: Explain and Investigate RPM Software Pack

AbeHiero

10 lis 2023

I cannot start the lab with command: lab start software-rpm. I get this error:ModuleNotFoundError: No module named 'rhcsa-classroom'Script software-rpm not in course library rhcsa-classroom Anyone else see this?

1183

Red Hat System Administration I (RH124)

Haley_Ruccio

19 lip 2023

The first of two courses covering the core system administration tasks needed to manage Red Hat Enterprise Linux serversRed Hat System Administration I (RH124) is designed for IT professionals without previous Linux system administration experience. The course provides students with Linux administration competence by focusing on core administration tasks. This course also provides a foundation for students who plan to become full-time Linux system administrators by introducing key command-line concepts and enterprise-level tools. This course is the first of a two-course series that takes a computer professional without Linux system administration knowledge to become a fully capable Linux administrator. These concepts are further developed in the follow-on course, Red Hat System Administration II (RH134).This course is based on Red Hat® Enterprise Linux 9.0.Course content summaryIntroduce Linux and the Red Hat Enterprise Linux ecosystem.Run commands and view shell environments.Manage, organize, and secure files.Manage users, groups and user security policies.Control and monitor systemd services.Configure remote access using the web console and SSH.Configure network interfaces and settings.Manage software using DNFAudience for this courseThe primary persona is a technical professional with current or pending responsibilities as a Linux enterprise or cloud system administrator.This course is popular in Red Hat Academy, and is targeted at the student who is planning to become a technical professional using Linux.Prerequisites for this courseBasic technical user skills with computer applications on some operating systems are expected.Take our free assessment to gauge whether this offering is the best fit for your skills.Technology considerationsThere are no special technical requirements for this course.This course is not designed for bring your own device (BYOD).Internet access is not required but is recommended so that students can research and browse Red Hat online resources.

336

Revision: rh124-9.3-770cc61