- (Exam Topic 1)
RHCE Test Configuration Instructions
Information for the two systems you will use in test is the following:
system1.group3.example.com: is one of the main sever. system2.group3.example.com: mainly used as a client. Password for both of the two systems is atenorth
System’s IP is provided by DHCP, you can regard it as normal, or you can reset to Static IP in accordance with the following requirements:
system1.group3.example.com: 172.24.3.5
system2.group3.example.com: 172.24.3.10 The subnet mask is 255.255.255.0
Your system is a member of DNS domain group3.example.com. All systems in DNS domain group3.example.com are all in subnet 172.24.3.0/255.255.255.0, the same all systems in this subnet are also in group3.example.com, unless specialized, all network services required to be configured can be accessed by systems of domain group3.
host.group3.example.com provides a centralized authentication service domain
GROUP3.EXAMPLE.COM, both system1 and system2 have already been pre-configured to be the client for this domain, this domain provides the following user account:
Firewall is enabled by default, you can turn it off when deemed appropriate, other settings about firewall may be in separate requirements.
Your system will be restarted before scoring, so please ensure that all modifications and service configurations you made still can be operated after the restart without manual intervention, virtual machine instances of all examinations must be able to enter the correct multi-user level after restart without manual assistance, it will be scored zero if the test using virtual machine system cannot be restarted or be properly restarted.
Corresponding distribution packages for the testing using operating system Red Hat Enterprise Linux version can be found in the following link:
http://server1.group3.example.com/rhel
Part of the requirements include host security, ensure your host security limit does not prevent the request to allow the host and network, although you correctly configured the network service but would have to allow the host or network is blocked, this also does not score.
You will notice that some requirements which clearly do not allow services be accessed by service domain my133t.org, systems of this domain are in subnet 172.25.1.0/252.255.255.0, and systems of these subnets also belong to my 133t.org domain.
PS: Notice that some test questions may depend on other exam questions, for example, you might be asked to perform a series of restrictions on a user, but this user creation may be required in other questions. For convenient identification, each exam question has some radio buttons to help you identify which questions you have already completed or not completed. Certainly, you do not need to care these buttons if you don’t need them.
Configure Multi-User SMB Mounts.
Share the directory /devops through SMB on the systeml, as required:
1. The share name is devops
2. The shared directory devops just can be used by clients in domain11.example.com
3. The shared directory devop must be able to be browsed
4. User silene must be able to access this share through read, access code is redhat
5. User akira must be able to access this share through read and write, access code is redhat
6. This share permanently mount to system2. domain11.example.com the user /mnt/dev, make user silene as authentication any users can get temporary write permissions from akira
Solution:
system1
system2:
Switch to user akira on the system2, access to /mnt/dev and view files
su akira cd /mnt/dev ls cifscreds add system1 touch 1
Does this meet the goal?
Correct Answer:A
- (Exam Topic 4)
There were two systems:
system1, main system on which most of the configuration take place
system2, some configuration here
Configure selinux.
Configure your systems that should be running in Enforcing.
Solution:
After reboot and verify with this command
Does this meet the goal?
Correct Answer:A
- (Exam Topic 3)
Make Secondary belongs the jeff and marion users on sysusers group. But harold user should not belongs to sysusers group.
Solution:
usermod -G sysusers jeff
usermod -G sysuser marion
Verify by reading /etc/group file Note:
Using usermod command we can make user belongs to different group. There are two types of group one primary and another is secondary. Primary group can be only one but user can belong to more than one group as secondary.
usermod -g groupname username - To change the primary group of the user. usermod -G groupname username
- To make user belongs to secondary group.
Does this meet the goal?
Correct Answer:A
- (Exam Topic 2)
Configure
the web server, which can be accessed by http://station.domain30.example.com.
Solution:
Does this meet the goal?
Correct Answer:A
- (Exam Topic 3)
There are Mail servers, Web Servers, DNS Servers and Log Server. Log Server is already configured. You should configure the mail server, web server and dns server to send the logs to log server.
Solution:
According to question, log server is already configured. We have to configure the mail, web and dns server for log redirection. In mail, web and dns server:
vi /etc/syslog.conf mail.* @logserveraddress
service syslog restart
mail is the facility and * means the priority. It sends logs of mail services into log server.
Does this meet the goal?
Correct Answer:A
- (Exam Topic 1)
RHCE Test Configuration Instructions
Information for the two systems you will use in test is the following:
system1.group3.example.com: is one of the main sever. system2.group3.example.com: mainly used as a client. Password for both of the two systems is atenorth
System’s IP is provided by DHCP, you can regard it as normal, or you can reset to Static IP in accordance with the following requirements:
system1.group3.example.com: 172.24.3.5
system2.group3.example.com: 172.24.3.10 The subnet mask is 255.255.255.0
Your system is a member of DNS domain group3.example.com. All systems in DNS domain group3.example.com are all in subnet 172.24.3.0/255.255.255.0, the same all systems in this subnet are also in group3.example.com, unless specialized, all network services required to be configured can be accessed by systems of domain group3.
host.group3.example.com provides a centralized authentication service domain
GROUP3.EXAMPLE.COM, both system1 and system2 have already been pre-configured to be the client for this domain, this domain provides the following user account:
Firewall is enabled by default, you can turn it off when deemed appropriate, other settings about firewall may be in separate requirements.
Your system will be restarted before scoring, so please ensure that all modifications and service configurations you made still can be operated after the restart without manual intervention, virtual machine instances of all examinations must be able to enter the correct multi-user level after restart without manual assistance, it will be scored zero if the test using virtual machine system cannot be restarted or be properly restarted.
Corresponding distribution packages for the testing using operating system Red Hat Enterprise Linux version can be found in the following link:
http://server1.group3.example.com/rhel
Part of the requirements include host security, ensure your host security limit does not prevent the request to allow the host and network, although you correctly configured the network service but would have to allow the host or network is blocked, this also does not score.
You will notice that some requirements which clearly do not allow services be accessed by service domain my133t.org, systems of this domain are in subnet 172.25.1.0/252.255.255.0, and systems of these subnets also belong to my 133t.org domain.
PS: Notice that some test questions may depend on other exam questions, for example, you might be asked to perform a series of restrictions on a user, but this user creation may be required in other questions. For convenient identification, each exam question has some radio buttons to help you identify which questions you have already completed or not completed. Certainly, you do not need to care these buttons if you don’t need them.
Share directories via SMB.
Configure the SMB service on the system1.
Your SMB server must be a member of the STAFF Working Group. Share the folder /common and the name must be common.
Only clients of domain11.example.com can access the common share. Common must be able to browse.
User Andy must be able to read the content of the share, if necessary, verification code is redhat.
Solution:
system1:
system2:
Does this meet the goal?
Correct Answer:A