ABOUT THE COURSE
DO425: Red Hat Security: Securing Containers and OpenShift
Learn to mitigate and manage threats to OpenShift container-based infrastructure
Red Hat Security: Securing Containers and OpenShift (DO425) is designed to help infrastructure administrators and security professionals learn to identity and mitigate threats to OpenShift container-based infrastructure. The curriculum also covers how to implement and manage secure architecture, policies, and procedures for modern containerized applications and software-defined networking.
|You will learn about using secure and trusted container images, registries, and source code; managing network and storage isolation; implementing application single sign-on; and configuring appropriate security constraints and service role?based access control. You will also find out how existing core Linux technologies?such as namespaces, cgroups, seccomp, capabilities, and SELinux?provide a robust and mature host environment with strongly secure containers.
Course content summary
- Learn Linux multitenancy isolation and least-privilege technologies.
- Investigate trusted repositories, as well as signing and scanning images.
- Implement security in a continuous integration and continuous development (CI/CD) pipeline.
- Integrate web application single sign-on.
- Automate policy-based deployments.
- Configure security context constraints (SCC).
- Manage API access control.
- Provide secure network I/O.
- Deliver secure storage I/O.
|Audience for this course
This course is designed for professionals responsible for designing, implementing, maintaining, and managing the security of containerized applications on Red Hat Enterprise Linux systems and in Red Hat OpenShift Container Platform installations, including these roles:
- System administrators
- IT security administrators
- IT security engineers
- DevOps engineers
- Cloud developers
- Cloud architects
|PREREQUISITES FOR THIS COURSE
Red Hat recommends these prerequisites:
- Become a Red Hat Certified Engineer (RHCEŽ), or demonstrate equivalent Red Hat Enterprise Linux knowledge and experience
- Become a Red Hat Certified Specialist in OpenShift Administration, or demonstrate equivalent Red Hat OpenShift Container Platform knowledge and experience
|Outline for this course
- Describe host security technologies
- Understand the core technologies that make Red Hat Enterprise Linux a robust and trusted container host.
- Establish trusted container images
- Describe the registries, services, and methods that comprise the Red Hat image ecosystem.
- Implement security in the build process
- Learn automated methods for integrating security checks into build and deployment pipelines.
- Manage user access control
- Apply methods for integrating and managing user authentication for operators and for web applications.
- Control the deployment environment
- Determine how a container platform secures the deployment process through policies and automation.
- Manage secure platform orchestration
- Study how a container platform secures the orchestration process through policies and infrastructure.
- Provide secure network I/O
- Discover the technologies and control features that enable multitenancy and project isolation.
- Deliver secure storage I/O
- Enable authorized, multitenant storage access through a firm understanding of related technologies and control features.
Impact of this training:-
Impact on the organization
- This course is intended to develop the skills needed to design, build, and deploy containerized applications that are highly available, resilient, and scalable, using Red Hat OpenShift Container Platform. This course demonstrates how to best use the tools provided by Red Hat OpenShift Container Platform to enable rapid application development and deployment, as well as increase portability of applications across environments.
- Red Hat has created this course in a way intended to benefit our customers, but each company and infrastructure is unique, and actual results or benefits may vary.
Impact on the individual
- As a result of attending this course, the student should be able to take advantage of the platform in a popular DevOps environment. This course is part of a series of DevOps courses centered on the use of OpenShift to enable continuous delivery?a key goal in the DevOps philosophy. Red Hat is committed in being a leader in providing prescriptive approaches to DevOps using Red Hat and other open source technologies.
Students should be able to demonstrate the following skills:
- Deploy applications in Docker using images
- Describe the architecture of Red Hat OpenShift Container Platform
- Control and maintain applications using the OpenShift command-line interface
- Define, build, and deploy an application on Red Hat OpenShift Container Platform
- Establish continuous integration of an application from source code to deployment using Jenkins
- Create deployments that utilize clustering, load balancing, and customized node scheduling
- Troubleshoot problems involving application performance or deployment with debugging tools and log files
- Create custom source-to-image (s2i) builder images and templates
- Deploy a mutli-pod application to Red Hat OpenShift Container Platform using Jenkins for continuous integration
- Install and update software packages
- Access Linux file systems
- Manage Linux networking