Final Practice Exam

Get the VM's name from virsh list --all, and start it using virsh start <VMNAME>.

We need to create three users that must belong to the instructors group. Their names are Derek, Tom, and Kenny. We want to make sure that Tom can't get to a shell, and we want his account to expire ten days from now.

You can create the users using the useradd command. Group and shell modifications are done with usermod, and you can set an expiration date using the chage command.

Install Apache using yum install httpd. Then edit /etc/httpd/conf/httpd.conf to change the DocumentRoot as required.

The default umask for all users is set in the /etc/profile and /etc/bashrc files.

The find command has numerous flags that can help with this.

-maxdepth 1 will search only /etc and not any subdirectories.

-mtime +720 will match on files that were modified more than 720 days ago.

A complete command is:

find /etc/ -maxdepth 1 -mtime +720 > /root/oldfiles

To find matching lines in a file you should use grep.

grep ACPI /var/log/messages > /root/logs

Then you need to compress /var/log.

tar -czf /tmp/log_archive.tgz /var/log/

Edit /etc/default/grub and change the timeout to 1.

Then run grub2-mkconfig -o /boot/grub2/grub.cfg to rebuild the GRUB configuration and make the change take effect.

To edit a user's crontab you can run:

crontab -e -u derek

And then the format of the line for this task would be this:

27 16 * * * cat /etc/redhat-release > /home/derek/release

The NTP client in RHEL and CentOS is chrony. The configuration file for chrony is /etc/chrony.conf.

Edit that file, remove the default lines that begin with server, and write a new one like this:

server time.nist.gov

First we need to create a new partition:

Run fdisk /dev/vdb.

• Press n to create a new partition.
• Accept the default for the partition number.
• Accept the default for the starting sector.
• Use +800M for the ending sector.
• Press t to set the partition type (use 82 to set it to Linux Swap).
• Press w to write the changes.

Run partprobe to make sure the kernel knows about the changes.

Run mkswap /dev/vdbX, where X is the partition number.

Run blkid to get the UUID of the partition.

Add the following to /etc/fstab:

UUID="LONG-UUID-STRING-COPIED-FROM-blkid" swap swap defaults 0 0

Save and exit, then run swapon -a.

Run free to verify that everything is correct.

First we need to create a physical volume. Let's assume your disk is /dev/vdc:

pvcreate /dev/vdc

Then we need to create the Volume Group named VG-A with a 32M physical extent size:

vgcreate VG-A /dev/vdc -s 32m

Finally, we create the Logical Volume named LV-A with 30 extents:

lvcreate -n LV-A -l 30 VG-A

Now we can format the volume:

mkfs.xfs /dev/VG-A/LV-A

And finally, we can edit /etc/fstab to add the following line:

/dev/mapper/VG--A-LV--A /mnt xfs defaults 0 0

The server is ldap.linuxacademy.com. The Kerberos certificate is located at http://ldap.linuxacademy.com/pub/cert.pem.

First, we need to install the required packages.

• yum install -y authconfig-gtk nss-pam-ldapd pam_krb5 autofs nfs-utils openldap-clients

Now we can run authconfig-gtk.

• Set the Search Base DN to "dc=linuxacademy,dc=com".
• Set the LDAP Server to ldap.linuxacademy.com.
• Select Use TLS, and enter http://ldap.linuxacademy.com/pub/cert.pem to download the cert.
• Switch to the Advanced tab and select Create Home directories on the first login.
• Select Apply.

Edit /etc/auto.master.d/ldap.autofs, and add the following line:

• /home/guests /etc/auto.ldap

Edit /etc/auto.ldap, and add the following line:

• * -rw ldap.linuxacademy.com:/home/guests/&

Edit /etc/pam.d/sshd, and add the following to the first section:

• auth sufficient pam_ldap.so

Restart sshd with systemctl restart sshd.

Now you should be able to verify by running su - ldapuser3.

For this task you can use hostnamectl.

hostnamectl set-hostname rhcsa