Red Hat Certified Technician and Red Hat Certified Engineer ( RHCT & RHCE)
Q1. Your system has a new 100MB physical partition mounted under /mnt/new with a 100MB ext3 filesystem.
Note:because partition sizes are seldom exactly what is specified when they are created, anything within the range of 90 to 110MB is acceptable.
Q2. Create the following users,groups and group memberships:
- A group named sysusers.
- A user andrew who belongs to sysusers as a secondary group.
- A user susan who also belongs to sysusers as a secondary group.
- A user brad who does not have access to an interactive shell on the system, and who is not a member of sysusers.
- andrew, susan and brad should all have th password of password.
Q3. Create a collaborative directory /shared/sysusers with the following characteristics.
- Group ownership of /shared/sysusers is sysusers.
- The directory should be readable, writable and accessible to member of sysusers, but not to any other user.
( it is understood that root has access to all o,less and directories on the system.)
- Files crated in /shared/sysusers automatically have group ownership set to the sysusers group.
Q5. Set SELinux running in the Enforcing mode.
Q6. Enable IP forwarding on your machine.
Q7. Install th appropriate kernel update from
ftp://server1.example.com/pub/update. the following criteria must also be met:
- The updated kernel is the default kernel when the system is rebooted
- The original kernel remains available and bootable on the system .
Q8. The user andrew must configure a cron job that runs daily at 15:25 local time and ececutes
- /bin/echo hello
Q9. Bind to the NFS domain RHCE provided by 192.168.1.254 for user authentication.
Note the following:
- nisuserx should be able to log into your system, where x is your station number.
- but will not have a home directory untilll you have completed the autofs requirement below.
- All NFS users have a password of password
Q10. Configure autofs to automount the home directories of NIS users.
Note the following:
- server1.example.com (192.168.1.254) NFS-exports /rhome/stationX to your system where X is your station Number.
nisuserX's home directory is
server1.example.com:/rhome/stationX/nisuserX
- nisuserX's home directory should be automounted locally beneath /rhome as /rhome/nisuserX
- Home directories must be writable by thier users.
- While you are able to log in as any of the users nisuser1 through nisuser20, the only home.
directory that is accessible from your system is nisuserX.
Q11. Copy the file /etc/fstab to /var/tmp. Configure the permissions of /var/tmp/fstab so that:
- The file /var/tmp/fstab is owned by the root user.
- The file /var/tmp/fstab belongs to the group root.
- The file /var/tmp/fstab should not be executable by anyone.
- The user andrew is able to read and write /var/tmp/fastab.
- The user susan can neither write nor rad /var/tmp/fstab.
- All other users ( current or future ) have the ability to read /var/tmp/fstab.
Q12. Configure your system so that it is an NTP client of server1.example.com.
Q13. Set up the default local print queue to forward jobs to the IPP ( CUPS ) print queue stationX on server1.example.com,
- Where X is your station number. Configure this printer as a "Generic - test - only " print queue.
Note: The queue stationX on server1 dump print jobs into the file
http://server1.example.com:631/printers/stationX.
- This file can be examined to confirm that you have configured the print queue correctly.
RHCE Requirement
Q1. Resize the lvm lv00 up to 100 MB.
Q2. Implement user quota according to following criteria.
- The user neo should be able to run the command
- dd if = /dev/zero of=/home/neo/somefile bs=1024k count=30
- and should not be able to run the command
- dd if=/dev/zero of=/home/neo/somefile bs=1024k count=70
Q3. Configure SSH access as follows:
- susan has remote SSH access to your not have access to your machine from with in example.com.
- Clients within my133t.org should not have access to ssh on your system.
Q4. Configure POP3 email on your system according to these criteria;
- brad must be able to retrieve email from your machine using POP3 from
within example.com
- Client within the my133t.org domain should not have access to your POP3 services.
Q5. Configure FTP access on your system:
- Clients within the example.com domain should have anonymous FTP access
to your machine.
- Clients outside example.com should not have access to your FTP services .
Q6. Share the /share directory via SMB:
- Your SMB server must be a member of the SMBGROUP workgroup
- The share's name must shared.
- Theshared share must be available to example.com domain clients only.
- Theshared share must be browseable.
- susan must have read access to the share, authenticating with the sane password password, if necessary.
Q7. Implement a web server for the site http://stationX.example.com, then
perform the following steps:
- Download ftp://server1.example.com/pub/rhce/station.html
- Rename the downloaded file to index.html
- Copy this index.html to the DocumentRoot of your web server.
- Do not nake any modification to the content of index.html
Q8. Export your /shared directory via NFS to the example.com domain only.
Q9. Configure an email alias for your MTA such that mail sent to acctmgr is received by the local user andrew.
Q10. Configure SMTP mail services according to the following requirements:
- Your mail server should accept mail from remote hosts and localhsot.
- susam must be able to receive mail from remote hosts.
- Mail delivered to susan should spool into the default mail spool for susam,
/var/spool/mail/susan.
Additional RHCE Requirements
Perform any two of the following steps.
Completion of more than two will not result in extra credit.
If time allows, you may wish to complete more than the minimum just in case one of your tasks does not meet our specio,cations.
Please note that these additional items are part of your RHCE-specific score.
Q1. Povide SSL-encapsulated IMAP access ( IMAPS ) :
- IMAPS must be available to bard from example.com
- IMAPS must not be available to other networks or domains.
- The SSL certion,cate for the IMAPS server must be created as follows.
- Use the default for country, state, locality and organization name.
- Set organization unit to GLS.
- Set common name to stationX.example.com
- Set Email address to root@stationX.example.com
Q2. Implement a web proxy server bound to port 8080.
- Clients within example.com should have access to your proxy server.
- Clients outside of example.com should not have access to your proxy server.
Q3. Extend your web server to include a virtual host for the site
http://wwwX.example.com/, where X is
- Your station number, then perform the following steps:
- Set the DocumentRoot to /var/www/virtual
- Download ftp://server1.example.com/pub/rhce/www.html
- Rename the downloaded file to index.html
- Place this index.html in the documentsroot of the virtual host
- Do not make any modification to the content of index.html
- Ensure that susan is able to create content in /var/www/virtual
Note: The original web site http://stationX.example.com must still be accessable.
DNS resolution for the hostname wwwX.example.com is already provided by the name server on server1.example.com
Exam Question and Solution
RHCT
Q1. Your system has a new 100MB physical partition mounted under /mnt/new with a 100MB ext3 filesystem.
Note:because partition sizes are seldom exactly what is specified when they are created, anything within the range of 90 to 110MB is acceptable.
Q2. Create the following users,groups and group memberships:
- A group named sysusers.
- A user andrew who belongs to sysusers as a secondary group.
- A user susan who also belongs to sysusers as a secondary group.
- A user brad who does not have access to an interactive shell on the system, and who is not a member of sysusers.
- andrew, susan and brad should all have th password of password.
Q3. Create a collaborative directory /shared/sysusers with the following characteristics.
- Group ownership of /shared/sysusers is sysusers.
- The directory should be readable, writable and accessible to member of sysusers, but not to any other user.
( it is understood that root has access to all o,less and directories on the system.)
- Files crated in /shared/sysusers automatically have group ownership set to the sysusers group.
Q5. Set SELinux running in the Enforcing mode.
Q6. Enable IP forwarding on your machine.
Q7. Install th appropriate kernel update from
ftp://server1.example.com/pub/update. the following criteria must also be met:
- The updated kernel is the default kernel when the system is rebooted
- The original kernel remains available and bootable on the system .
Q8. The user andrew must configure a cron job that runs daily at 15:25 local time and ececutes
- /bin/echo hello
Q9. Bind to the NFS domain RHCE provided by 192.168.1.254 for user authentication.
Note the following:
- nisuserx should be able to log into your system, where x is your station number.
- but will not have a home directory untilll you have completed the autofs requirement below.
- All NFS users have a password of password
Q10. Configure autofs to automount the home directories of NIS users.
Note the following:
- server1.example.com (192.168.1.254) NFS-exports /rhome/stationX to your system where X is your station Number.
nisuserX's home directory is
server1.example.com:/rhome/stationX/nisuserX
- nisuserX's home directory should be automounted locally beneath /rhome as /rhome/nisuserX
- Home directories must be writable by thier users.
- While you are able to log in as any of the users nisuser1 through nisuser20, the only home.
directory that is accessible from your system is nisuserX.
Q11. Copy the file /etc/fstab to /var/tmp. Configure the permissions of /var/tmp/fstab so that:
- The file /var/tmp/fstab is owned by the root user.
- The file /var/tmp/fstab belongs to the group root.
- The file /var/tmp/fstab should not be executable by anyone.
- The user andrew is able to read and write /var/tmp/fastab.
- The user susan can neither write nor rad /var/tmp/fstab.
- All other users ( current or future ) have the ability to read /var/tmp/fstab.
Q12. Configure your system so that it is an NTP client of server1.example.com.
Q13. Set up the default local print queue to forward jobs to the IPP ( CUPS ) print queue stationX on server1.example.com,
- Where X is your station number. Configure this printer as a "Generic - test - only " print queue.
Note: The queue stationX on server1 dump print jobs into the file
http://server1.example.com:631/printers/stationX.
- This file can be examined to confirm that you have configured the print queue correctly.
RHCE Requirement
Q1. Resize the lvm lv00 up to 100 MB.
Q2. Implement user quota according to following criteria.
- The user neo should be able to run the command
- dd if = /dev/zero of=/home/neo/somefile bs=1024k count=30
- and should not be able to run the command
- dd if=/dev/zero of=/home/neo/somefile bs=1024k count=70
Q3. Configure SSH access as follows:
- susan has remote SSH access to your not have access to your machine from with in example.com.
- Clients within my133t.org should not have access to ssh on your system.
Q4. Configure POP3 email on your system according to these criteria;
- brad must be able to retrieve email from your machine using POP3 from
within example.com
- Client within the my133t.org domain should not have access to your POP3 services.
Q5. Configure FTP access on your system:
- Clients within the example.com domain should have anonymous FTP access
to your machine.
- Clients outside example.com should not have access to your FTP services .
Q6. Share the /share directory via SMB:
- Your SMB server must be a member of the SMBGROUP workgroup
- The share's name must shared.
- Theshared share must be available to example.com domain clients only.
- Theshared share must be browseable.
- susan must have read access to the share, authenticating with the sane password password, if necessary.
Q7. Implement a web server for the site http://stationX.example.com, then
perform the following steps:
- Download ftp://server1.example.com/pub/rhce/station.html
- Rename the downloaded file to index.html
- Copy this index.html to the DocumentRoot of your web server.
- Do not nake any modification to the content of index.html
Q8. Export your /shared directory via NFS to the example.com domain only.
Q9. Configure an email alias for your MTA such that mail sent to acctmgr is received by the local user andrew.
Q10. Configure SMTP mail services according to the following requirements:
- Your mail server should accept mail from remote hosts and localhsot.
- susam must be able to receive mail from remote hosts.
- Mail delivered to susan should spool into the default mail spool for susam,
/var/spool/mail/susan.
Additional RHCE Requirements
Perform any two of the following steps.
Completion of more than two will not result in extra credit.
If time allows, you may wish to complete more than the minimum just in case one of your tasks does not meet our specio,cations.
Please note that these additional items are part of your RHCE-specific score.
Q1. Povide SSL-encapsulated IMAP access ( IMAPS ) :
- IMAPS must be available to bard from example.com
- IMAPS must not be available to other networks or domains.
- The SSL certion,cate for the IMAPS server must be created as follows.
- Use the default for country, state, locality and organization name.
- Set organization unit to GLS.
- Set common name to stationX.example.com
- Set Email address to root@stationX.example.com
Q2. Implement a web proxy server bound to port 8080.
- Clients within example.com should have access to your proxy server.
- Clients outside of example.com should not have access to your proxy server.
Q3. Extend your web server to include a virtual host for the site
http://wwwX.example.com/, where X is
- Your station number, then perform the following steps:
- Set the DocumentRoot to /var/www/virtual
- Download ftp://server1.example.com/pub/rhce/www.html
- Rename the downloaded file to index.html
- Place this index.html in the documentsroot of the virtual host
- Do not make any modification to the content of index.html
- Ensure that susan is able to create content in /var/www/virtual
Note: The original web site http://stationX.example.com must still be accessable.
DNS resolution for the hostname wwwX.example.com is already provided by the name server on server1.example.com
No comments:
Post a Comment