RH134 - ch12s03

Installation of at least two packages to support automounting Samba shares.
Automount /shares/work with authenticated, RW access to your home directory on serverX.
Automount /shares/docs with RO guest access to the public share.
Automount /shares/cases with authenticated, RW access to restricted team share bakerst.
Available persistently after a reboot.

If you haven't already done so at start of the previous exercise:

Reset your serverX system.
Log into and set up your server system.
```
[student@serverX ~]$ lab samba setup
```

Always perform this step:

Reset your desktopX system.
Log into desktopX and open a terminal.

Your company runs a Samba service on serverX to provide document sharing for both Red Hat Enterprise Linux and Microsoft Windows clients. The server contains a directory for each user to store their personal documents, a publicly available read-only directory for common documents, and a number of team directories to host collaborative documents.

You may need to perform some basic user and group administration on desktopX to ensure student can access files on all of the shares.

Here are the key details from serverX that you will need:

Username: student
Password: student
Group membership: bakerst, GID=10221
Domain: MYGROUP
Home shares are enabled and writeable.
desktopX mount point: /shares/work
There is a share called public that only requires guest privileges to access.
desktopX mount point: /shares/docs
Your team has a private, writeable share called bakerst that is only accessible to members of the bakerst group.
desktopX mount point: /shares/cases

When you are done, reboot your desktopX machine, then run the command lab samba grade from your desktopX machine to verify your work.

Install the two packages needed to automount a CIFS file system.

[student@desktopX ~]$ sudo yum -y install cifs-utils autofs
Loaded plugins: langpacks
Resolving Dependencies
...
Complete!

Add an auto.master.d configuration file that identifies the base directory and associated map file (use any name you like for the configuration file, but it must end with .autofs), and create the associated map file (use any name you like for the map file), ensuring proper authentication on each mount. As needed, you can create other configuration files to support the automount mapping configuration.
Use vim to create and edit the /etc/auto.master.d/shares.autofs file.
[student@desktopX ~]$ sudo vim /etc/auto.master.d/shares.autofs
Add the following line:
/shares /etc/auto.shares
Note
This solution is using shares.autofs as the master map file and auto.shares as the map file, but the file names are not important.
Use vim to create the auto.shares map file.
[student@desktopX ~]$ sudo vim /etc/auto.shares
Add the following lines:
work -fstype=cifs,credentials=/etc/me.cred ://serverX/student docs -fstype=cifs,guest ://serverX/public cases -fstype=cifs,credentials=/etc/me.cred ://serverX/bakerst
Note
An alternative to the credentials file (and the steps shown here to create and edit it) would be to substitute the credentials=/etc/me.cred entry in the auto.shares file with two entries, username=student,password=student, but that would be less secure.
Use vim to create the credentials file.
[student@desktopX ~]$ sudo vim /etc/me.cred
Add the following lines:
username=student password=student domain=MYGROUP
Use chmod to secure the credentials file.
[student@desktopX ~]$ sudo chmod 600 /etc/me.cred
Note
This step is not essential for this lab, but shown for completeness.
Ensure that username student has the correct UID and GIDs to access each of the shares (Hint: bakerst). If necessary, add any new groups that are needed, modify student's group membership, or both.
Note: If you add a new group to student's supplementary groups, then you will either need to exit the shell and start a new shell, or use newgrp groupname to switch to the newly added group. This is necessary because the environment Bash starts with does not get updated with student's new details.
Use the groups command to check the current group memberships for the student user.
[student@desktopX ~]$ groups student
The student account does not belong to the bakerst group (GID 10221) and will need to be added.
Check if the bakerst group exists on desktopX. Use grep to check the /etc/group file.
[student@desktopX ~]$ grep -e bakerst -e 10221 /etc/group
The bakerst group does not exist either; it will need to be added first.
Use groupadd to add the bakerst group with GID 10221.
[student@desktopX ~]$ sudo groupadd -g 10221 bakerst
Use usermod to add the bakerst group to student as a supplementary group.
[student@desktopX ~]$ sudo usermod -aG bakerst student
Note
This approach is not typically the best solution to align UID and GID values, as there are mount options that can handle this. However, it is a suitable solution for this lab, and you get to practice some user and group administration skills.
Use newgrp to switch to bakerst.
[student@desktopX ~]$ newgrp bakerst

Enable and start the automount service.

[student@desktopX ~]$ sudo systemctl enable autofs
ln -s '/usr/lib/systemd/system/autofs.service'  ...
[student@desktopX ~]$ sudo systemctl start autofs

Check that you can access each share and write to those shares you have write privileges on, work and cases.

There is a file called samba.txt that contains the message "Success" in each of the share locations. Use cat samba.txt.

Use echo testing > my.txt to test if you can write to a directory.

Check you can read and write in work:

[student@desktopX ~]$ cd /shares/work
[student@desktopX work]$ cat samba.txt
Success
[student@desktopX work]$ echo testing > my.txt

Check you can read, but not write, in docs:

[student@desktopX work]$ cd ../docs
[student@desktopX docs]$ cat samba.txt
Success
[student@desktopX docs]$ echo testing > my.txt
bash: my.txt: Permission denied

Check you can read and write in cases:

[student@desktopX docs]$ cd ../cases
[student@desktopX cases]$ cat samba.txt
Success
[student@desktopX cases]$ echo testing > my.txt

When you are done, reboot your desktopX machine, then run the command lab samba grade from your desktopX machine to verify your work.
[student@desktopX ~]$ sudo systemctl reboot
[student@desktopX ~]$ lab samba grade

Discuss Red Hat System Administration II

Go to community

Is It possible to reset root password when the system is on multi-user.target?

jennifer1987

27 lip 2023

Hi thereWell, i have a question, Is It possible to reset root password when the system is on multi-user.target? I was not be able to found a foro o some information related with this and another question that I have, If the grub menu dont show up, is it posible to reset the root password?

991

Red Hat System Administration II (RH134)

Haley_Ruccio

21 lip 2023

Build the skills to perform the key tasks needed to become a full-time Linux administratorRed Hat System Administration II (RH134) is the second part of the RHCSA training track for IT professionals who have already attended Red Hat System Administration I. The course goes deeper into core Linux system administration skills in storage configuration and management, installation and deployment of Red Hat Enterprise Linux, management of security features such as SELinux, control of recurring system tasks, management of the boot process and troubleshooting, basic system tuning, and command-line automation and productivity. This course assumes that students have attended Red Hat System Administration I (RH124).Experienced Linux administrators who seek rapid preparation for the RHCSA certification should instead start with RHCSA Rapid Track (RH199).This course is based on Red Hat Enterprise Linux 9.0.Course summaryInstall Red Hat Enterprise Linux using scalable methodsAccess security files, file systems, and networksExecute shell scripting and automation techniquesManage storage devices, logical volumes, and file systemsManage security and system accessControl the boot process and system servicesRun containersAudience for this courseThis course is geared toward Windows system administrators, network administrators, and other system administrators who are interested in supplementing current skills or backstopping other team members, in addition to Linux system administrators who are responsible for these tasks:Configuring, installing, upgrading, and maintaining Linux systems using established standards and proceduresProviding operational supportManaging systems for monitoring system performance and availabilityWriting and deploying scripts for task automation and system administrationRecommended trainingSuccessful completion of Red Hat System Administration I (RH124) is recommended.Experienced Linux administrators seeking to accelerate their path toward becoming a Red Hat Certified System Administrator should start with the RHCSA Rapid Track course (RH199).Take our free assessment to gauge whether this offering is the best fit for your skills.Technology considerationsThere are no special technology requirements.This course is not designed for bring your own device (BYOD).Internet access is not required, but is recommended to allow students to research and access Red Hat online resources.

Welcome to the Red Hat System Administration II (RH134) group in the Red Hat Learning Community!

Deanna

18 lip 2023

We are excited to launch a space dedicated to the Red Hat Training course Red Hat System Administration II! To gain the most value from this group - click the "Join Group" button in the upper right hand corner.We encourage group members to collaborate in this group to discuss topics, ask questions, share best practices and tips, provide course feedback, and share their accomplishments as it relates to RH134.Read more about Red Hat System Administration II here.

417

Revision: rh134-7-c643331

Red Hat System Administration II

Lab: Accessing Network Storage with SMB

Note

Note

Note

Note