Course Overview

Open System Services (OSS) is an open computing interface to the HPE NonStop Kernel operating system and is based on POSIX standards. This course is intended for OSS application developers who will be creating or porting applications to the OSS environment on a NonStop server. New OSS users are introduced to OSS basic commands, editors, and utilities in the NonStop Kernel OSS environment. This course is 60 percent lecture and 40 percent hands-on labs using HPE servers.

Course Objectives

At the conclusion of this course, you

should be able to:

• Navigate the OSS directory structure

• Display the contents of a file and a

directory

• Create aliases

• Set and change file and directory

permissions

• Change user and group IDs

• Set the sticky bit

• Perform specific vi commands

• Configure a user profile

• Manipulate environment variables and

background jobs

• Stop an OSS process

• Time start an application

Course Content

Open System Services (OSS) Basic Commands and Utilities U5516S course data sheet (hpe.com)

Course Overview

MySQL Performance & Tuning Course Overview

This MySQL Performance & Tuning course is designed for Database Administrators,Application Developers and Technical Consultants who need to monitor and tune the performance of MySQL servers and databases.

The course provides practical experience in monitoring and tuning MySQL servers and databases.

Exercises and examples are used throughout the course to give practical hands-on experience with the techniques covered.

Versions supported 8.

Like most database software,MySQL can benefit from performance tuning. By adjusting certain settings and configurations,the speed and responsiveness of your databases can be improved. This can lead to improved overall performance of your applications and a better user experience. Optimized database performance also can help reduce hosting costs by getting the most out of the hardware that is available within the existing infrastructure.

In this course,we will cover some of the most important aspects of tuning MySQL for high performance.

Course Objectives

To provide the skills necessary to monitor and tune MySQL database performance.

Course Content

MySQL Performance & Tuning Training Course

Course Contents – DAY 1

Course Introduction

• Administration and Course Materials
• Course Structure and Agenda
• Delegate and Trainer Introductions

Session 1: INTRODUCTION TO PERFORMANCE TUNING

• Tuning Overview
• Resolving Performance Issues
• Recommended Approach to Tuning
• Items to Evaluate
• Where to look for performance issues
• Develop a monitoring and tuning plan
• Building a New Database for Performance
• Tuning an Existing Database for performance
• Set Suitable performance goals

Session 2: MYSQL PERFORMANCE TUNING TOOLS

• Tuning Overview
• Hardware optimization
• Increase RAM and use faster RAM
• Use more CPU cores
• Use a clustered database
• Optimize the operating system
• Use indexes to improve performance
• Optimize queries
• Optimize tables
• Assign suitable memory allocations
• Set values for system variables that affect performance
• Use benchmarking tool

Session 3: STATEMENT TUNING

• Overview of Statement Tuning
• Identifying and improve Problem Queries
• The Optimizer
• Understand the output from the Explain command
• Monitor queries using the Information Schema Processlist table
• Optimization strategies
• Optimizations for derived tables
• Filesort with small LIMIT optimization
• Limit rows examined
• Query limits and timeouts
• Abort statements that exceed a specific time to execute

Session 4: INDEXES

• An overview of MariaDB indexes
• Types of MySQL indexes
• Make efficient usage of indexes
• Assess the size of an Index
• Resolve queries without accessing some tables referred to in the query
• Force query plans using index hints
• Find rows in a table using named indexes
• Ignore indexes using an index hint
• How indexes impact table joins
• InnoDB Cached Indexes Information

MySQL Performance & Tuning Training Course

Course Contents – DAY 2

Session 5: SERVER CONFIGURATION AND MONITORING

• Set suitable values for server configuration variables
• Use server status variables to monitor performance
• Use table caching
• Store key distributions for a table with the ANALYZE TABLE command
• Reclaim unused space and defragment data with the OPTIMIZE TABLE command
• Use multi-threading
• Solve connection issues

Session 6: THE INNODB ENGINE

• Transactions
• Crash recovery with the innodb engine
• Effects of innodb locking on performance
• Monitoring InnoDB Locks in MySQL
• MySQL Disable Deadlock Detection
• Monitor the performance of the InnoDB engine
• Set and monitor caches and buffers
• Configuring data files for performance
• Configuring the log files for performance

Session 7: OVERVIEW OF CLUSTERING FOR PERFORMANCE

• The Performance Advantages of Clustering
• Performance Issues and Clustering
• The NDB Cluster
• The Galera Cluster
• The Percona XtraDB Cluster
• MySQL InnoDB Cluster
• The Federated Engine

Session 8: OPTIMIZING THE PERFORMANCE OF DUMPING AND LOADING DATA

• SQL statements versus delimited data
• Parameters affecting dump performance
• Parameters affecting load performance

Session 9: PARTITIONING TABLES FOR PERFORMANCE

• The concept of partitioned tables
• How partitioning can improve performance
• Range partitioning
• Hash partitioning
• Key partitioning
• List partitioning
• Composite partitioning or subpartitioning
• Partition Pruning
• Adding,dropping and coalescing partitions
• Convert a non-partitioned table to a partitioned table

Course Overview

Enhance container management capabilities with automation, governance, and security across clusters.

Multicluster Management with Red Hat OpenshiftPlatform Plus  teaches the skills required to maintain a diverse portfolio of applications, running across a fleet of OpenShift clusters. Applications follow placement rules determined by capacity and criticality; cluster configurations comply with governance and security policies; all automated according to Devops principles.

This course is based on Red Hat OpenShift Container Platform 4.10 and Red Hat Advanced Cluster Management 2.4.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Objectives

• Deploy Red Hat Advanced Cluster Management for Kubernetes (RHACM) in a hub cluster
• Add a managed cluster to RHACM (configure a cluster to be managed by RHACM)
• Define and apply cluster configuration policies
• Detect and correct non-conformance to cluster configuration policies
• Visualize and compare cluster settings between different clusters
• Define and apply application placement policies
• Identify and compare application resources from multiple clusters
• Deploy Red Hat Quay in the hub cluster
• Deploy Red Hat Advanced Cluster Security for Kubernetes (RHACS) in the hub cluster
• Integrate Red Hat Quay and RHACS with RHACM.

Course Content

Manage a Multicluster Kubernetes Architecture

Describe multicluster architectures and use Red Hat OpenShift Platform Plus to solve their challenges.

Inspect Resources from Multiple Clusters Using the RHACM Web Console

Describe and navigate the Red Hat Advanced Cluster Management for Kubernetes (RHACM) web console. Configure role-based access control (RBAC) and search for resources across multiple clusters by using the RHACM search engine.

Deploy and Manage Policies for Multiple Clusters with RHACM

Deploy and manage policies in a multicluster environment by using Red Hat Advanced Cluster Management for Kubernetes (RHACM) governance.

Install and Customize the RHACM Observability Stack

Gain insight into the fleet of managed clusters by using Red Hat Advanced Cluster Management for Kubernetes (RHACM) observability components.

Deploy Applications Across Multiple Clusters with RHACM

Deploy and manage applications in a multicluster environment with Red Hat Advanced Cluster Management for Kubernetes GitOps.

Install and Configure Red Hat Quay

Install and configure Red Hat Quay on Red Hat OpenShift Container Platform (RHOCP).

Integrate Red Hat Quay with Red Hat OpenShift and RHACM

Describe Red Hat Quay use cases in a multicluster environment,  and use Red Hat Advanced Cluster Management for Kubernetes (RHACM) to deploy applications and  control the image sources allowed in the cluster fleet.

Install and Configure RHACS

Install and configure Red Hat Advanced Cluster Security for Kubernetes (RHACS) and learn how it can help organizations with security in multicluster environments.

Multicluster Operational Security Using RHACS

Manage the operational security of a Kubernetes cluster fleet using Red Hat Advanced Cluster Security for Kubernetes (RHACS), and integrate RHACS with external services.

Course Overview

Learn to install, customize, and administer the AIX operating system in a multiuser IBM Power server partitioned environment.

The course is based on AIX 7.3 running on a IBM Power server managed by Hardware Management Console and provides practical discussions that are appropriate to earlier AIX releases.

Virtual Learning

This interactive training can be taken from any location, your office or home and is delivered by a trainer. This training does not have any delegates in the class with the instructor, since all delegates are virtually connected. Virtual delegates do not travel to this course, Global Knowledge will send you all the information needed before the start of the course and you can test the logins.

Course Objectives

After this course participants should be able to:

• Install the AIX operating system, filesets, and RedHat Package Manager (RPM) packages
• Perform system startup and shutdown
• Discuss and use system management tools such as System
• Management Interface Tool (SMIT)
• Manage physical and logical devices
• Discuss the purpose of the logical volume manager
• Perform logical volume and file system management
• Create and manage user and group accounts
• Perform and restore system backups
• Utilize administrative subsystems, including cron to schedule system tasks, and security to implement customized access of files and directories
• Configure TCP/IP networking
• Configure and conduct Live Updates on a running AIX LPAR

Course Content

Day 1

• Welcome
• Unit 1: AIX system management tools
• Exercise 1: Using SMIT
• Unit 2: Device Management
• Exercise 2: Device management
• Unit 3: The Logical Volume Manager
• Exercise 3: The Logical Volume Manager

Day 2

• Unit 4: File system management
• Exercise 4: File system management
• Unit 5: Paging space
• Exercise 5: Paging space
• Unit 6: User administration

Day 3

• Exercise 6: User administration
• Unit 7: Scheduling
• Exercise 7: Scheduling
• Unit 8: Backup and recovery
• Exercise 8: Backup and recovery

Day 4

• Unit 9: Startup and shutdown
• Exercise 9: Startup and shutdown
• Unit 10: AIX and software installation
• Exercise 10: AIX and software installation

Day 5

• Unit 11: AIX installation options
• Exercise 11: AIX installation options
• Unit 12: TCP/IP implementation
• Exercise 12: TCP/IP implementation

Course Overview

This course enables students to perform AIX Live Update operations on the AIX operating system. This includes installing interim fixes, service packs and technology levels using the AIX Live Update capability.

Students in this course will learn how to implement AIX Live Update. Students will also be exposed to the different management types for live update and learn skills required to install AIX updates, such as technology levels, service packs and interim fixes, without requiring downtime (a reboot) for the server.

Best practices and testing methods for live update will be discussed, providing students with the knowledge to effectively configure and manage live update in a production environment. Additionally, students will learn skills to troubleshoot and debug live update issues.

Course Objectives

After this course participants should be able to:

• Describe the purpose of AIX Live Update
• Describe AIX live update concepts and pre-requisites
• Understand the different live update management types (HMC or PowerVC)
• Perform HMC-based AIX live update operations
• Use Live Update to install AIX TLs, SPs and ifixes
• Test and apply Live Update best practices and troubleshooting techniques
• Perform PowerVC-based Live Update operations

Course Content

Day 1

• Unit 1: Introduction to AIX Live Update
• Exercise 1: Verification of Prerequisites
• Unit 2: AIX Live Update Management Types
• Exercise 2: Live Update Management Types
• Unit 3: Performing AIX Live Update Operations (HMC based)
• Exercise 3: Perform HMC-based Live Update operations
• Unit 4: Patching AIX without a reboot (installing interim fixes)
• Exercise 4: Install an AIX ifix without a reboot
• Unit 5: Testing Live Update
• Exercise 5: Testing Live Update

Day 2

• Unit 6: Live Update Best practices
• Exercise 6: Implementing Live Update Best Practices
• Unit 7: Troubleshooting Live Update
• Exercise 7: Troubleshooting Live Update Issues
• Unit 8: Performing AIX Live Update Operations (PowerVC based)
• Exercise 8: Perform PowerVC-based Live Update operations

Course Overview

The Managing HPE Alletra 9000 course describes the HPE Alletra 9000 portfolio hardware building blocks, theory of operation and features. Using hands-on labs (HOL), students learn to perform common day-to-day management tasks, including how to create hosts, volumes, and sets, as well as how to monitor the product. This course also provides knowledge of more advanced features, including local and remote replication, disaster recovery, QoS, as well as maintenance and data migration. You gain a practical understanding of HPE Alletra 9000 array capabilities using extensive hands-on lab exercises, performed on all applicable user interfaces.

Course Objectives

Course objectives

After completing this course, you should be

able to:

• Describe HPE Alletra 9000 hardware and

features

• List and compare HPE Alletra 9000

management options, roles, and security

• Explain provisioning terminology

• Perform HPE Alletra 9000 array on-boarding

and initialization

• Work with volumes, hosts, and corresponding

sets

• Protect data with snapshots, clones, and use

protection policies

• Describe priority optimization and quality of

service (QoS)

• Explain different types of Remote Copy

implementations and failure scenarios

• Briefly describe data migration, high

availability, and disaster tolerance solutions

• Describe HPE Alletra monitoring and alerting

options including HPE InfoSight

• Describe the HPE Alletra 9000 OS update

procedure, maintenance, and data migration

options

Course Content

Managing HPE Alletra 9000 | H61N3S

Course Overview

The Managing HPE Alletra 6000 and HPE Alletra 5000 course describes the HPE Alletra 6000 and HPE Alletra 5000 portfolio hardware building blocks, theories of operation, and features. Using hands-on labs, students learn to perform common day-to-day management tasks, including how to create hosts, volumes, and collections, as well as how to monitor the product. This course also provides knowledge of more advanced features, including local and remote replication, disaster recovery, scaling-out, QoS, and maintenance. You gain a practical understanding of HPE Alletra 6000 and HPE Alletra 5000 array capabilities using extensive hands-on lab exercises, performed on all applicable user interfaces

Course Objectives

After completing this course, you should be

able to:

• Describe HPE Alletra 6000 and HPE

Alletra 5000 hardware, architecture, and

software features

• List and compare HPE Alletra 6000 and

HPE Alletra 5000 management options

• Describe HPE Alletra 6000 and HPE

Alletra 5000 array initialization and Data

Services Cloud Console onboarding

• Explain HPE Alletra 6000 and HPE Alletra

5000 provisioning terminology, features, and

read/write operations flow

• Prepare and create hosts and initiator groups

for HPE Alletra 6000 and HPE Alletra 5000

storage arrays

• Work with volumes, volume collections, and

quality of service (QoS)

• Describe and manage snapshots, clones, and

protection templates

• Describe the concept, use, and benefits of

the HPE Alletra 6000 and HPE Alletra 5000

storage scale-out architectures

• Explain asynchronous remote replication

concepts, implementation, and failure

scenarios

• Describe peer persistence concepts,

architecture, requirements, and the automatic

switchover (ASO) process

• Describe HPE Alletra 6000 and HPE Alletra

5000 monitoring options and tools

• Describe the HPE Alletra 6000 and HPE

Alletra 5000 OS update procedure

Course Content

Managing HPE Alletra 6000 and HPE Alletra 5000 | H61N2S

Course Overview

LPIC-2 is the second certification in the multi-level professional certification program of the Linux Professional Institute (LPI). The LPIC-2 will validate the candidate’s ability to administer small to medium–sized mixed networks. LPIC-2 exam 202 topics

• Domain Name Server
• Web Services
• File Sharing
• Network Client Management
• E-Mail Services
• System Security

Course Objectives

To become LPIC-2 certified the candidate must be able to:

• perform advanced system administration, including common tasks regarding the Linux kernel, system startup and maintenance;
• perform advanced Management of block storage and file systems as well as advanced networking and authentication and system security, including firewall and VPN;
• install and configure fundamental network services, including DHCP, DNS,  SSH, Web servers, file servers using FTP, NFS and Samba, email delivery; and
• supervise assistants and advise management on automation and purchases.

Course Content

Topic 207: Domain Name Server 207.1 Basic DNS server configuration

Description: Candidates should be able to configure BIND to function as a caching-only DNS server. This objective includes the ability to manage a running server and configuring logging.

Key Knowledge Areas:

• BIND 9.x configuration files, terms and utilities
• Defining the location of the BIND zone files in BIND configuration files
• Reloading modified configuration and zone files
• Awareness of dnsmasq, djbdns and PowerDNS as alternate name servers 

207.2 Create and maintain DNS zones

Description: Candidates should be able to create a zone file for a forward or reverse zone and hints for root level servers. This objective includes setting appropriate values for records, adding hosts in zones and adding zones to the DNS. A candidate should also be able to delegate zones to another DNS server.

Key Knowledge Areas:

• BIND 9 configuration files, terms and utilities
• Utilities to request information from the DNS server
• Layout, content and file location of the BIND zone files
• Various methods to add a new host in the zone files, including reverse zones

207.3 Securing a DNS server

Description: Candidates should be able to configure a DNS server to run as a non-root user and run in a chroot jail. This objective includes secure exchange of data between DNS servers.

Key Knowledge Areas:

• BIND 9 configuration files
• Configuring BIND to run in a chroot jail
• Split configuration of BIND using the forwarders statement
• Configuring and using transaction signatures (TSIG)
• Awareness of DNSSEC and basic tools
• Awareness of DANE and related records

Topic 208: Web Services 208.1 Implementing a web server

Description: Candidates should be able to install and configure a web server. This objective includes monitoring the server’s load and performance, restricting client user access, configuring support for scripting languages as modules and setting up client user authentication. Also included is configuring server options to restrict usage of resources. Candidates should be able to configure a web server to use virtual hosts and customize file access.

Key Knowledge Areas:

• Apache 2.4 configuration files, terms and utilities
• Apache log files configuration and content
• Access restriction methods and files
• mod_perl and PHP configuration
• Client user authentication files and utilities
• Configuration of maximum requests, minimum and maximum servers and clients
• Apache 2.4 virtual host implementation (with and without dedicated IP addresses)
• Using redirect statements in Apache’s configuration files to customize file access

208.2 Apache configuration for HTTPS 

Description: Candidates should be able to configure a web server to provide HTTPS.

Key Knowledge Areas:

• SSL configuration files, tools and utilities
• Generate a server private key and CSR for a commercial CA
• Generate a self-signed Certificate
• Install the key and certificate, including intermediate CAs
• Configure Virtual Hosting using SNI
• Awareness of the issues with Virtual Hosting and use of SSL
• Security issues in SSL use, disable insecure protocols and ciphers

208.3 Implementing a proxy server

Description: Candidates should be able to install and configure a proxy server, including access policies, authentication and resource usage.

Key Knowledge Areas:

• Squid 3.x configuration files, terms and utilities
• Access restriction methods
• Client user authentication methods
• Layout and content of ACL in the Squid configuration files

208.4 Implementing Nginx as a web server and a reverse proxy

Description: Candidates should be able to install and configure a reverse proxy server, Nginx. Basic configuration of Nginx as a HTTP server is included.

Key Knowledge Areas:

• Nginx
• Reverse Proxy
• Basic Web Server

Topic 209: File Sharing 209.1 SAMBA Server Configuration

Description: Candidates should be able to set up a Samba server for various clients. This objective includes setting up Samba as a standalone server as well as integrating Samba as a member in an Active Directory. Furthermore, the configuration of simple CIFS and printer shares is covered. Also covered is a configuring a Linux client to use a Samba server. Troubleshooting installations is also tested.

Key Knowledge Areas:

• Samba 4 documentation
• Samba 4 configuration files
• Samba 4 tools and utilities and daemons
• Mounting CIFS shares on Linux
• Mapping Windows user names to Linux user names
• User-Level, Share-Level and AD security

209.2 NFS Server Configuration

Description: Candidates should be able to export filesystems using NFS. This objective includes access restrictions, mounting an NFS filesystem on a client and securing NFS.

Key Knowledge Areas:

• NFS version 3 configuration files
• NFS tools and utilities
• Access restrictions to certain hosts and/or subnets
• Mount options on server and client
• TCP Wrappers
• Awareness of NFSv4

Topic 210: Network Client Management 210.1 DHCP configuration

Description: Candidates should be able to configure a DHCP server. This objective includes setting default and per client options, adding static hosts and BOOTP hosts. Also included is configuring a DHCP relay agent and maintaining the DHCP server.

Key Knowledge Areas:

• DHCP configuration files, terms and utilities
• Subnet and dynamically-allocated range setup
• Awareness of DHCPv6 and IPv6 Router Advertisements

210.2 PAM authentication

Description: The candidate should be able to configure PAM to support authentication using various available methods. This includes basic SSSD functionality.

Key Knowledge Areas:

• PAM configuration files, terms and utilities
• passwd and shadow passwords
• Use sssd for LDAP authentication

210.3 LDAP client usage

Description: Candidates should be able to perform queries and updates to an LDAP server. Also included is importing and adding items, as well as adding and managing users.

Key Knowledge Areas:

• LDAP utilities for data management and queries
• Change user passwords
• Querying the LDAP directory

210.4 Configuring an OpenLDAP server

Description: Candidates should be able to configure a basic OpenLDAP server including knowledge of LDIF format and essential access controls.

Key Knowledge Areas:

• OpenLDAP
• Directory based configuration
• Access Control
• Distinguished Names
• Changetype Operations
• Schemas and Whitepages
• Directories
• Object IDs, Attributes and Classes

Terms and Utilities:

• slapd
• slapd-config
• LDIF
• slapadd
• slapcat
• slapindex
• /var/lib/ldap/
• loglevel

Topic 211: E-Mail Services 211.1 Using e-mail servers

Description: Candidates should be able to manage an e-mail server, including the configuration of e-mail aliases, e-mail quotas and virtual e-mail domains. This objective includes configuring internal e-mail relays and monitoring e-mail servers.

Key Knowledge Areas:

• Configuration files for postfix
• Basic TLS configuration for postfix
• Basic knowledge of the SMTP protocol
• Awareness of sendmail and exim

211.2 Managing E-Mail Delivery

Weight: 2

Description: Candidates should be able to implement client e-mail management software to filter, sort and monitor incoming user e-mail.

Key Knowledge Areas:

• Understanding of Sieve functionality, syntax and operators
• Use Sieve to filter and sort mail with respect to sender, recipient(s), headers and size
• Awareness of procmail

Terms and Utilities:

• Conditions and comparison operators
• keep, fileinto, redirect, reject, discard, stop
• Dovecot vacation extension

 211.3 Managing Remote E-Mail Delivery

Description: Candidates should be able to install and configure POP and IMAP daemons.

Key Knowledge Areas:

• Dovecot IMAP and POP3 configuration and administration
• Basic TLS configuration for Dovecot
• Awareness of Courier

Terms and Utilities:

• /etc/dovecot/
• dovecot.conf
• doveconf
• doveadm

Topic 212: System Security

212.1 Configuring a router

Description: Candidates should be able to configure a system to forward IP packet and perform network address translation (NAT, IP masquerading) and state its significance in protecting a network. This objective includes configuring port redirection, managing filter rules and averting attacks.

Key Knowledge Areas:

• iptables and ip6tables configuration files, tools and utilities
• Tools, commands and utilities to manage routing tables.
• Private address ranges (IPv4) and Unique Local Addresses as well as Link Local Addresses (IPv6)
• Port redirection and IP forwarding
• List and write filtering and rules that accept or block IP packets based on source or destination protocol, port and address
• Save and reload filtering configurations

Terms and Utilities:

• /proc/sys/net/ipv4/
• /proc/sys/net/ipv6/
• /etc/services
• iptables
• ip6tables

 212.2 Securing FTP servers

Description: Candidates should be able to configure an FTP server for anonymous downloads and uploads. This objective includes precautions to be taken if anonymous uploads are permitted and configuring user access.

Key Knowledge Areas:

• Configuration files, tools and utilities for Pure-FTPd and vsftpd
• Awareness of ProFTPd
• Understanding of passive vs. active FTP connections

212.3 Secure shell (SSH)

Description: Candidates should be able to configure and secure an SSH daemon. This objective includes managing keys and configuring SSH for users. Candidates should also be able to forward an application protocol over SSH and manage the SSH login.

Key Knowledge Areas:

• OpenSSH configuration files, tools and utilities
• Login restrictions for the superuser and the normal users
• Managing and using server and client keys to login with and without password
• Usage of multiple connections from multiple hosts to guard against loss of connection to remote host following configuration changes

212.4 Security tasks

Description: Candidates should be able to receive security alerts from various sources, install, configure and run intrusion detection systems and apply security patches and bugfixes.

Key Knowledge Areas:

• Tools and utilities to scan and test ports on a server
• Locations and organizations that report security alerts as Bugtraq, CERT or other sources
• Tools and utilities to implement an intrusion detection system (IDS)
• Awareness of OpenVAS and Snort

212.5 OpenVPN

Description: Candidates should be able to configure a VPN (Virtual Private Network) and create secure point-to-point or site-to-site connections.

Key Knowledge Areas:

• OpenVPN

Course Overview

LPIC-2 is the second certification in the multi-level professional certification program of the Linux Professional Institute (LPI). The LPIC-2 will validate the candidate’s ability to administer small to medium–sized mixed networks. 

LPIC-2 exam 201 topicsCapacity PlanningLinux KernelSystem StartupFilesystem and DevicesAdvanced Storage Device AdministrationNetworking ConfigurationSystem Maintenance

Course Objectives

To become LPIC-2 certified the candidate must be able to:

• perform advanced system administration, including common tasks regarding the Linux kernel, system startup and maintenance;
• perform advanced Management of block storage and file systems as well as advanced networking and authentication and system security, including firewall and VPN;
• install and configure fundamental network services, including DHCP, DNS,  SSH, Web servers, file servers using FTP, NFS and Samba, email delivery; and
• supervise assistants and advise management on automation and purchases.

Course Content

Topic 200: Capacity Planning 200.1 Measure and Troubleshoot Resource Usage

Description: Candidates should be able to measure hardware resource and network bandwidth, identify and troubleshoot resource problems.

Key Knowledge Areas:

• Measure CPU usage
• Measure memory usage
• Measure disk I/O
• Measure network I/O
• Measure firewalling and routing throughput
• Map client bandwidth usage
• Match / correlate system symptoms with likely problems
• Estimate throughput and identify bottlenecks in a system including networking

200.2 Predict Future Resource Needs

Description: Candidates should be able to monitor resource usage to predict future resource needs.

Key Knowledge Areas:

• Use monitoring and measurement tools to monitor IT infrastructure usage.
• Predict capacity break point of a configuration
• Observe growth rate of capacity usage
• Graph the trend of capacity usage
• Awareness of monitoring solutions such as Icinga2, Nagios, collectd, MRTG and Cacti

Topic 201: Linux Kernel 201.1 Kernel Components

Description: Candidates should be able to utilize kernel components that are necessary to specific hardware, hardware drivers, system resources and requirements. This objective includes implementing different types of kernel images, identifying stable and development kernels and patches, as well as using kernel modules.

Key Knowledge Areas:

• Kernel 2.6.x, 3.x and 4.x documentation

201.2 Compiling a kernel

Description: Candidates should be able to properly configure a kernel to include or disable specific features of the Linux kernel as necessary. This objective includes compiling and recompiling the Linux kernel as needed, updating and noting changes in a new kernel, creating an initrd image and installing new kernels.

Key Knowledge Areas:

• /usr/src/linux/
• Kernel Makefiles
• Kernel 2.6.x/3.x make targets
• Customize the current kernel configuration.
• Build a new kernel and appropriate kernel modules.
• Install a new kernel and any modules.
• Ensure that the boot manager can locate the new kernel and associated files.
• Module configuration files
• Use DKMS to compile kernel modules.
• Awareness of dracut

201.3 Kernel runtime management and troubleshooting

Description: Candidates should be able to manage and/or query a 2.6.x, 3.x or 4.x kernel and its loadable modules. Candidates should be able to identify and correct common boot and run time issues. Candidates should understand device detection and management using udev. This objective includes troubleshooting udev rules.

Key Knowledge Areas:

• Use command-line utilities to get information about the currently running kernel and kernel modules
• Manually load and unload kernel modules
• Determine when modules can be unloaded
• Determine what parameters a module accepts
• Configure the system to load modules by names other than their file name.
• /proc filesystem
• Content of /, /boot/ , and /lib/modules/
• Tools and utilities to analyze information about the available hardware
• udev rules

Topic 202: System Startup 202.1 Customizing SysV-init system startup

Description: Candidates should be able to query and modify the behaviour of system services at various targets / run levels. A thorough understanding of the systemd, SysV Init and the Linux boot process is required. This objective includes interacting with systemd targets and SysV init run levels.

Key Knowledge Areas:

• Systemd
• SysV init
• Linux Standard Base Specification (LSB)

202.2 System Recovery

Description: Candidates should be able to properly manipulate a Linux system during both the boot process and during recovery mode. This objective includes using both the init utility and init-related kernel options. Candidates should be able to determine the cause of errors in loading and usage of bootloaders. GRUB version 2 and GRUB Legacy are the bootloaders of interest. Both BIOS and UEFI systems are covered.

Key Knowledge Areas:

• BIOS and UEFI
• NVMe booting
• GRUB version 2 and Legacy
• grub shell
• boot loader start and hand off to kernel
• kernel loading
• hardware initialisation and setup
• daemon/service initialisation and setup
• Know the different boot loader install locations on a hard disk or removable device.
• Overwrite standard boot loader options and using boot loader shells.
• Use systemd rescue and emergency modes.

202.3 Alternate Bootloaders

Description: Candidates should be aware of other bootloaders and their major features.

Key Knowledge Areas:

• SYSLINUX, ISOLINUX, PXELINUX
• Understanding of PXE for both BIOS and UEFI
• Awareness of systemd-boot and U-Boot

Topic 203: Filesystem and Devices

203.1 Operating the Linux filesystem

Description: Candidates should be able to properly configure and navigate the standard Linux filesystem. This objective includes configuring and mounting various filesystem types.

Key Knowledge Areas:

• The concept of the fstab configuration
• Tools and utilities for handling swap partitions and files
• Use of UUIDs for identifying and mounting file systems
• Understanding of systemd mount units

203.2 Maintaining a Linux filesystem​

Description: Candidates should be able to properly maintain a Linux filesystem using system utilities. This objective includes manipulating standard filesystems and monitoring SMART devices.

Key Knowledge Areas:

• Tools and utilities to manipulate and ext2, ext3 and ext4
• Tools and utilities to perform basic Btrfs operations, including subvolumes and snapshots
• Tools and utilities to manipulate XFS
• Awareness of ZFS

203.3 Creating and configuring filesystem options

Description: Candidates should be able to configure automount filesystems using AutoFS. This objective includes configuring automount for network and device filesystems. Also included is creating filesystems for devices such as CD-ROMs and a basic feature knowledge of encrypted filesystems.

Key Knowledge Areas:

• autofs configuration files
• Understanding of automount units
• UDF and ISO9660 tools and utilities
• Awareness of other CD-ROM filesystems (HFS)
• Awareness of CD-ROM filesystem extensions (Joliet, Rock Ridge, El Torito)
• Basic feature knowledge of data encryption (dm-crypt / LUKS)

Topic 204: Advanced Storage Device Administration 204.1 Configuring RAID

Description: Candidates should be able to configure and implement software RAID. This objective includes using and configuring RAID 0, 1 and 5.

Key Knowledge Areas:

• Software raid configuration files and utilities

204.2 Adjusting Storage Device Access

Description: Candidates should be able to configure kernel options to support various drives. This objective includes software tools to view & modify hard disk settings including iSCSI devices.

Key Knowledge Areas:

• Tools and utilities to configure DMA for IDE devices including ATAPI and SATA
• Tools and utilities to configure Solid State Drives including AHCI and NVMe
• Tools and utilities to manipulate or analyse system resources (e.g. interrupts)
• Awareness of sdparm command and its uses
• Tools and utilities for iSCSI
• Awareness of SAN, including relevant protocols (AoE, FCoE)

204.3 Logical Volume Manager

Description: Candidates should be able to create and remove logical volumes, volume groups, and physical volumes. This objective includes snapshots and resizing logical volumes.

Key Knowledge Areas:

• Tools in the LVM suite
• Resizing, renaming, creating, and removing logical volumes, volume groups, and physical volumes
• Creating and maintaining snapshots
• Activating volume groups

Topic 205: Network Configuration 205.1 Basic networking configuration

Description: Candidates should be able to configure a network device to be able to connect to a local, wired or wireless, and a wide-area network. This objective includes being able to communicate between various subnets within a single network including both IPv4 and IPv6 networks.

Key Knowledge Areas:

• Utilities to configure and manipulate ethernet network interfaces
• Configuring basic access to wireless networks

205.2 Advanced Network Configuration and Troubleshooting

Description: Candidates should be able to configure a network device to implement various network authentication schemes. This objective includes configuring a multi-homed network device and resolving communication problems.

Key Knowledge Areas:

• Utilities to manipulate routing tables
• Utilities to configure and manipulate ethernet network interfaces
• Utilities to analyze the status of the network devices
• Utilities to monitor and analyze the TCP/IP traffic

205.3 Troubleshooting Network Issues

Description: Candidates should be able to identify and correct common network setup issues, to include knowledge of locations for basic configuration files and commands.

Key Knowledge Areas:

• Location and content of access restriction files
• Utilities to configure and manipulate ethernet network interfaces
• Utilities to manage routing tables
• Utilities to list network states.
• Utilities to gain information about the network configuration
• Methods of information about the recognized and used hardware devices
• System initialization files and their contents (SysV init process)
• Awareness of NetworkManager and its impact on network configuration

Topic 206: System Maintenance 206.1 Make and install programs from source

Description: Candidates should be able to build and install an executable program from source. This objective includes being able to unpack a file of sources.

Key Knowledge Areas:

• Unpack source code using common compression and archive utilities
• Understand basics of invoking make to compile programs
• Apply parameters to a configure script
• Know where sources are stored by default

206.2 Backup operations

Description: Candidates should be able to use system tools to back up important system data.

Key Knowledge Areas:

• Knowledge about directories that have to be include in backups
• Awareness of network backup solutions such as Amanda, Bacula, Bareos and BackupPC
• Knowledge of the benefits and drawbacks of tapes, CDR, disk or other backup media
• Perform partial and manual backups.
• Verify the integrity of backup files.
• Partially or fully restore backups.

206.3 Notify users on system-related issues

Description: Candidates should be able to notify the users about current issues related to the system.

Key Knowledge Areas:

• ​Automate communication with users through logon messages
• Inform active users of system maintenance

Course Overview

The Linux Professional Institute (LPI) has established itself as the standard for distribution independent Linux certification. LPI offers three levels of certification: LPI 1, LPI 2 and LPI 3. LPI 1 is the base level certification that is looked for by professionals that want to validate their skills on Linux but not to one specific Linux distribution. This course will help candidates preparing for the LPIC 102 exam, which is the second out of 2 LPI exams candidates have to take to obtain the certificate.

Topics:Shells and Shell ScriptingInterfaces and DesktopsAdministrative TasksEssential System ServicesNetworking FundamentalsSecurity

Course Objectives

• Shells and Shell Scripting
• Interfaces and Desktops
• Administrative Tasks
• Essential System Services
• Networking Fundamentals
• Security

To become LPIC-1 certified the candidate must be able to:

• understand the architecture of a Linux system;
• install and maintain a Linux workstation, including X11 and setup it up as a network client;
• work at the Linux command line, including common GNU and Unix commands;
• handle files and access permissions as well as system security; and
• perform easy maintenance tasks: help users, add users to a larger system, backup and restore, shutdown and reboot.

Course Content

Topic 105: Shells and Shell Scripting 105.1 Customize and use the shell environment

Description: Candidates should be able to customize shell environments to meet users’ needs. Candidates should be able to modify global and user profiles.

Key Knowledge Areas:

• Set environment variables (e.g. PATH) at login or when spawning a new shell.
• Write Bash functions for frequently used sequences of commands.
• Maintain skeleton directories for new user accounts.
• Set command search path with the proper directory.

105.2 Customize or write simple scripts

Description: Candidates should be able to customize existing scripts, or write simple new Bash scripts.

Key Knowledge Areas:

• Use standard sh syntax (loops, tests).
• Use command substitution.
• Test return values for success or failure or other information provided by a command.
• Execute chained commands.
• Perform conditional mailing to the superuser.
• Correctly select the script interpreter through the shebang (#!) line.
• Manage the location, ownership, execution and suid-rights of scripts.

Topic 106: User Interfaces and Desktops 106.1 Install and configure X11

Description: Candidates should be able to install and configure X11.

Key Knowledge Areas:

• Understanding of the X11 architecture.
• Basic understanding and knowledge of the X Window configuration file.
• Overwrite specific aspects of Xorg configuration, such as keyboard layout.
• Understand the components of desktop environments, such as display managers and window managers.
• Manage access to the X server and display applications on remote X servers.
• Awareness of Wayland.

106.2 Graphical Desktops

Description: Candidates should be aware of major Linux desktops. Furthermore, candidates should be aware of protocols used to access remote desktop sessions.

Key Knowledge Areas:

• Awareness of major desktop environments
• Awareness of protocols to access remote desktop sessions

106.3 Accessibility

Description: Demonstrate knowledge and awareness of accessibility technologies.

Key Knowledge Areas:

• Basic knowledge of visual settings and themes.
• Basic knowledge of assistive technology.

The following is a partial list of the used files, terms and utilities:

• High Contrast/Large Print Desktop Themes.
• Screen Reader.
• Braille Display.
• Screen Magnifier.
• On-Screen Keyboard.
• Sticky/Repeat keys.
• Slow/Bounce/Toggle keys.
• Mouse keys.
• Gestures.
• Voice recognition.

Topic 107: Administrative Tasks 107.1 Manage user and group accounts and related system files

Description: Candidates should be able to add, remove, suspend and change user accounts.

Key Knowledge Areas:

• Add, modify and remove users and groups.
• Manage user/group info in password/group databases.
• Create and manage special purpose and limited accounts.

107.2 Automate system administration tasks by scheduling jobs

Description: Candidates should be able to use cron and systemd timers to run jobs at regular intervals and to use at to run jobs at a specific time.

Key Knowledge Areas:

• Manage cron and at jobs.
• Configure user access to cron and at services.
• Understand systemd timer units.

107.3 Localisation and internationalisation

Description: Candidates should be able to localize a system in a different language than English. As well, an understanding of why LANG=C is useful when scripting.

Key Knowledge Areas:

• Configure locale settings and environment variables.
• Configure timezone settings and environment variables.

Topic 108: Essential System Services 108.1 Maintain system time

Description: Candidates should be able to properly maintain the system time and synchronize the clock via NTP.

Key Knowledge Areas:

• Set the system date and time.
• Set the hardware clock to the correct time in UTC.
• Configure the correct timezone.
• Basic NTP configuration using ntpd and chrony.
• Knowledge of using the pool.ntp.org service.
• Awareness of the ntpq command.

108.2 System logging

Description: Candidates should be able to configure rsyslog. This objective also includes configuring the logging daemon to send log output to a central log server or accept log output as a central log server. Use of the systemd journal subsystem is covered. Also, awareness of syslog and syslog-ng as alternative logging systems is included.

Key Knowledge Areas:

• Basic configuration of rsyslog.
• Understanding of standard facilities, priorities and actions.
• Query the systemd journal.
• Filter systemd journal data by criteria such as date, service or priority.
• Configure persistent systemd journal storage and journal size.
• Delete old systemd journal data.
• Retrieve systemd journal data from a rescue system or file system copy.
• Understand interaction of rsyslog with systemd-journald.
• Configuration of logrotate.
• Awareness of syslog and syslog-ng.

108.3 Mail Transfer Agent (MTA) basics

Description: Candidates should be aware of the commonly available MTA programs and be able to perform basic forward and alias configuration on a client host. Other configuration files are not covered.

Key Knowledge Areas:

• Create e-mail aliases.
  Configure e-mail forwarding.
  Knowledge of commonly available MTA programs (postfix, sendmail, exim) (no configuration).

108.4 Manage printers and printing

Description: Candidates should be able to manage print queues and user print jobs using CUPS and the LPD compatibility interface.

Key Knowledge Areas:

• Basic CUPS configuration (for local and remote printers).
• Manage user print queues.
• Troubleshoot general printing problems.
• Add and remove jobs from configured printer queues.

Topic 109: Networking Fundamentals 109.1 Fundamentals of internet protocols

Description: Candidates should demonstrate a proper understanding of TCP/IP network fundamentals.

Key Knowledge Areas:

• Demonstrate an understanding of network masks and CIDR notation.
• Knowledge of the differences between private and public “dotted quad” IP addresses.
• Knowledge about common TCP and UDP ports and services (20, 21, 22, 23, 25, 53, 80, 110, 123, 139, 143, 161, 162, 389, 443, 465, 514, 636, 993, 995).
• Knowledge about the differences and major features of UDP, TCP and ICMP.
• Knowledge of the major differences between IPv4 and IPv6.
• Knowledge of the basic features of IPv6.

109.2 Persistent network configuration

Description: Candidates should be able to manage the persistent network configuration of a Linux host.

Key Knowledge Areas:

• Understand basic TCP/IP host configuration.
• Configure ethernet and wi-fi network using NetworkManager.
• Awareness of systemd-networkd.

109.3 Basic network troubleshooting

Description: Candidates should be able to troubleshoot networking issues on client hosts.

Key Knowledge Areas:

• Manually configure network interfaces, including viewing and changing the configuration of network interfaces using iproute2.
• Manually configure routing, including viewing and changing routing tables and setting the default route using iproute2.
• Debug problems associated with the network configuration.
• Awareness of legacy net-tools commands. 

109.4 Configure client side DNS

Description: Candidates should be able to configure DNS on a client host.

Key Knowledge Areas:

• Query remote DNS servers.
• Configure local name resolution and use remote DNS servers.
• Modify the order in which name resolution is done.
• Debug errors related to name resolution.
• Awareness of systemd-resolved.

Topic 110: Security 110.1 Perform security administration tasks

Description: Candidates should know how to review system configuration to ensure host security in accordance with local security policies.

Key Knowledge Areas:

• Audit a system to find files with the suid/sgid bit set.
• Set or change user passwords and password aging information.
• Being able to use nmap and netstat to discover open ports on a system.
• Set up limits on user logins, processes and memory usage.
• Determine which users have logged in to the system or are currently logged in.
• Basic sudo configuration and usage.

110.2 Setup host security

Description: Candidates should know how to set up a basic level of host security.

Key Knowledge Areas:

• Awareness of shadow passwords and how they work.
• Turn off network services not in use.
• Understand the role of TCP wrappers.

110.3 Securing data with encryption

Description: The candidate should be able to use public key techniques to secure data and communication.

Key Knowledge Areas:

• Perform basic OpenSSH 2 client configuration and usage.
• Understand the role of OpenSSH 2 server host keys.
• Perform basic GnuPG configuration, usage and revocation.
• Use GPG to encrypt, decrypt, sign and verify files.
• Understand SSH port tunnels (including X11 tunnels).