757-216-3656 | Monday–Friday 8:30 AM – 4:30 PM | info@itdojo.com
|
www.itdojo.com
757-216-3656
info@itdojo.com
RHEL SELinux Policy Administration (GL429)
Duration: 4 Days  |  Instructor-Led · Live Remote Online or On-Site
Linux Training

RHEL SELinux Policy Administration (GL429)

Course Duration

4 Days

Audience

Employees of federal, state and local governments; and businesses working with the government.

Prerequisites

Linux Fundamentals (GL120) and Enterprise Linux Systems Administration (GL250), or equivalent experience with Linux command-line administration, file permissions, and service management.

Course Description

Gain the skills needed to manage and customize SELinux policies on Red Hat Enterprise Linux 9. Students move beyond simply toggling enforcing mode to gain a thorough understanding of the Mandatory Access Control architecture underlying SELinux, including type enforcement, role-based access control, and the policy framework that governs process and file interactions across the system. The course covers security contexts and labels, booleans, network port labeling, policy internals with seinfo and sesearch, user and role mappings, sVirt for virtual machines and containers, and writing custom policy modules with audit2allow and type enforcement files. Like all Guru Labs courses, the material is designed to provide extensive hands-on experience.

Learning Objectives

  • Evaluate when Mandatory Access Control provides security advantages over traditional Unix Discretionary Access Control
  • Configure SELinux modes and manage enforcement using getenforce, setenforce, and configuration files
  • Manage file security contexts using chcon, restorecon, and semanage fcontext
  • Administer SELinux booleans to toggle policy rules with getsebool and setsebool
  • Configure SELinux network port labels to secure services on standard and non-standard ports
  • Examine and query loaded SELinux policy using seinfo and sesearch
  • Map Linux users to SELinux users and roles to implement role-based access control
  • Troubleshoot SELinux access denials by analyzing AVC audit log messages
  • Generate custom policy modules from AVC denial logs using audit2allow
  • Write SELinux policy modules using type enforcement, file context, and interface source files
  • Manage SELinux policy modules with semodule and configure permissive domains for targeted troubleshooting
  • Apply SELinux protections to virtualized and containerized environments using sVirt labeling

Course Outline

  • Computing Security & SELinux Overview
  • Working with SELinux
  • Policies
  • Users & Roles
  • Troubleshooting SELinux
  • Writing Policy Modules
  • Bonus Labs

Frequently Asked Questions

What does the RHEL SELinux Policy Administration (GL429) course cover?

The course covers SELinux policy administration on RHEL 9, including the Mandatory Access Control architecture, security contexts and labels, booleans, network port labeling, policy internals with seinfo and sesearch, user and role mappings, sVirt, AVC denial troubleshooting, and writing custom policy modules from scratch with audit2allow and type enforcement files. IT Dojo delivers it as live instructor-led training with hands-on labs.

How long is IT Dojo's RHEL SELinux Policy Administration (GL429) training?

The course is 4 Days. It is available as live remote online instruction or on-site at your facility. All sessions are instructor-led with small class sizes to ensure individual attention.

Is this course available as live remote online training?

Yes. IT Dojo offers RHEL SELinux Policy Administration (GL429) as live remote online training. A certified instructor leads the session in real time and students work hands-on in live lab environments. On-site delivery at your government facility or contractor location is also available.

What prerequisites are recommended before this course?

Linux Fundamentals (GL120) and Enterprise Linux Systems Administration (GL250), or equivalent experience with Linux command-line administration, file permissions, and service management.

Does IT Dojo offer this training on-site at government or DoD facilities?

Yes. IT Dojo delivers RHEL SELinux Policy Administration (GL429) on-site at government agencies, DoD commands, military installations, and contractor facilities. On-site training is ideal for teams of four or more and can be customized to your organization's specific environment and mission requirements. Contact IT Dojo to schedule.

How do I register for this course?

IT Dojo training is employer sponsored. Your organization registers and pays for seats. To schedule RHEL SELinux Policy Administration (GL429) for your team, contact IT Dojo via the Request Training form or call 757-216-3656. IT Dojo will work with your contracting officer, training coordinator, or program office to set up the course.

Request Info & Pricing

Get details on scheduling, pricing, and delivery options for this course.

757-216-3656

Why no pricing?

Course pricing varies based on timing, availability, and class size. When you request a quote, we give you a current, accurate number rather than a posted rate that may be months out of date.

Upcoming Course Dates

Classes are forming now, contact us about upcoming dates and scheduling!

Can't find what you're looking for?

Let us know! Chances are we have access to the training that you need.

Have questions or need more information?

Contact us today at:

757-216-3656 info@itdojo.com
About Our Instructors

All IT Dojo courses are taught by certified, active industry practitioners.

Meet Our Instructors

For scheduling, pricing, and enrollment information, please contact IT Dojo:

Phone: 757-216-3656    Email: info@itdojo.com    Web: www.itdojo.com

IT Dojo, Inc. • 4176 South Plaza Trail, Suite 207 • Virginia Beach, VA 23452

Employer-sponsored training only. Serving Federal Government, DoD, and Corporate clients since 2003.

You May Also Be Interested In

Get More Information

We work with Government Agencies, Military, government contractors, and corporate clients. As much as we would love to, our business model does not include working with the general public.