Professional Documents
Culture Documents
Administration
Workbook
A U T H O R I Z E D C O U R S E WA R E
Part # 100-005293-001-REV A
Version 1
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Legal Notices Novell, Inc., has intellectual property rights relating to technology embodied in
the product that is described in this document. In particular, and without
Novell, Inc., makes no representations or warranties with respect to the contents limitation, these intellectual property rights may include one or more of the U.S.
or use of this documentation, and specifically disclaims any express or implied patents listed on the Novell Legal Patents Web page (http://www.novell.com/
warranties of merchantability or fitness for any particular purpose. Further, company/legal/patents/) and one or more additional patents or pending patent
Novell, Inc., reserves the right to revise this publication and to make changes to applications in the U.S. and in other countries.
its content, at any time, without obligation to notify any person or entity of such
revisions or changes. Novell, Inc.
1800 South Novell Place
Further, Novell, Inc., makes no representations or warranties with respect to any
software, and specifically disclaims any express or implied warranties of Provo, UT 84606
merchantability or fitness for any particular purpose. Further, Novell, Inc., U.S.A.
reserves the right to make changes to any and all parts of Novell software, at any www.novell.com
time, without any obligation to notify any person or entity of such changes.
Online Documentation: To access the latest online documentation for this and
Any products or technical information provided under this Agreement may be other Novell products, see the Novell Documentation Web page (http://
subject to U.S. export controls and the trade laws of other countries. You agree to www.novell.com/documentation).
comply with all export control regulations and to obtain any required licenses or
classification to export, re-export or import deliverables. You agree not to export
or re-export to entities on the current U.S. export exclusion lists or to any Novell Trademarks
embargoed or terrorist countries as specified in the U.S. export laws. You agree
For Novell trademarks, see the Novell Trademark and Service Mark list (http://
to not use deliverables for prohibited nuclear, missile, or chemical biological
www.novell.com/company/legal/trademarks/tmlist.html).
weaponry end uses. See the Novell International Trade Services Web page (http:/
/www.novell.com/info/exports/) for more information on exporting Novell
software. Novell assumes no responsibility for your failure to obtain any Third-Party Materials
necessary export approvals.
All third-party trademarks are the property of their respective owners.
Copyright © 2008 Novell, Inc. All rights reserved. No part of this publication
may be reproduced, photocopied, stored on a retrieval system, or transmitted
without the express written consent of the publisher.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Contents
Introduction 7
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 3
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
4 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SECTION 11 Administer User Access and Security 97
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 5
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
6 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Introduction
Introduction
This workbook is designed to help you practice the skills associated with SUSE Linux
Enterprise Server 11 Administration (Course 3116) objectives.
These skills, along with those taught in SUSE Linux Enterprise Server 11
Fundamentals (Course 3115), prepare you to take the Novell Certified Linux
Administrator 11 (Novell CLA 11) certification test.
Before starting the exercises in this workbook, you need do the following:
“Check the Media in Your Student Kit” on page 7
“Check Hardware and Software Requirements” on page 8
“Course Scenario” on page 8
“Set Up Your Practice Environment” on page 9
“Review the Exercise Conventions” on page 16
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 7
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
Course Scenario
The exercises in this course center around the fictional Digital Airlines Company that
has offices at various airports around the globe.
The Digital Airlines management has made the decision to migrate several back-end
services to Linux servers running SUSE Linux Enterprise Server 11 SP2.
Your task is to set up a lab environment with SUSE Linux Enterprise Server 11 SP2
and to familiarize yourself with it.
8 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Introduction
You need to learn how to do the following to be able to adminster SLES 11 SP2 in
Digital Airlines IT environment:
Install SUSE Linux Enterprise Server 11 SP2
Manage system initialization
Administer Linux processes and services
Administer storage
Configure the network
Manage hardware
Configure remote access
Monitor a SUSE Linux Enterprise Server 11 SP2 system
Automate tasks
Manage backup and recovery
Administer user access and security
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 9
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
Set Up da-host
da-host is the machine where you work most of the time during the exercises. This
machine will host the da1 VMware virtual machine that you install in Section 1 of the
course.
To install da-host, you can use one of the following methods:
“Install da-host Using AutoYaST” on page 10
“Install da-host Manually” on page 11
After that, you have to do the following task:
“Install VMware Player” on page 14
On the course CD in the setup directory, you can find an AutoYaST XML file for
the installation of da-host, called 3116-da-host.xml. Depending on your host’s
hardware, copy the file to another storage device:
NFS and DHCP server in your network Copy into the exported directory on your NFS
server
10 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Introduction
6. In the Boot Options field, type the following (depending on the media containing
the 3116-da-host.xml file):
3116-da-host.xml on the course DVD:
autoyast=dvd:///setup/3116-da-host.xml instmode=cd
3116-da-host.xml on a floppy disk:
autoyast=floppy:///3116-da-host.xml instmode=cd
3116-da-host.xml on a USB device:
autoyast=usb:///3116-da-host.xml instmode=cd
3116-da-host.xml on an NFS server:
autoyast=nfs://IP-address/path_to_file/3116-da-
host.xml netsetup=dhcp
Then press Enter.
The kernel loads and the SUSE Linux Enterprise Server 11 SP2 installation
begins.
YaST accesses the file 3116-da-host.xml and installs SLES 11 SP2
according to the configuration contained in that file.
7. (Conditional) If the installation stops at some early point, reset the computer,
restart the installation and try one of the other installation options, like
Installation—ACPI Disabled.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 11
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
12 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Introduction
10. In the Password for the System Administrator “root” dialog, as password type
novell, then click Next. Confirm the warning by clicking Yes.
11. In the Hostname and Domain Name dialog type the following information:
Hostname: da-host
Domain Name: digitalairlines.com
Change Hostname via DHCP: Deselect
Assign Hostname to Loopback IP: Deselect
Click Next to continue.
12. In the Network Configuration dialog, configure your network settings by doing
the following:
a. From the Network Configuration dialog, beneath the Firewall entry, click on
disable next to Firewall is enabled.
The line will change to Firewall is disabled.
b. From the Network Configuration dialog, select Network Interfaces >
Hostname/DNS tab.
In the Name Server 1 field, enter 172.17.8.1 and make sure that
digitalairlines.com appears in the Domain Search field, then click OK.
Click Next to continue.
13. From the Test Internet Connection dialog, select No, Skip This Test, then click
Next.
14. In the Installation Overview dialog, make sure that Use Following Configuration
is selected.
Under CA Management, make sure that the Server Name is da-
host.digitalairlines.com and the E-Mail is postmaster@digitalairlines.com. If
not, select CA Management > Edit Default Settings and correct the Server Name
to da-host.digitalairlines.com and E-Mail to postmaster@digitalairlines.com.
Click Next to return to the Installation Overview dialog.
Click Next to continue.
15. In the User Authentication dialog, make sure Local (/etc/passwd) is selected,
then click Next.
16. In the New Local User dialog, enter the following, then click Next
User’s Full Name: Geeko Novell
Username: geeko
Password: novell
Confirm Password: novell
Confirm the warning by clicking Yes.
17. In the Release Notes dialog, click Next.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 13
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
18. In the Hardware Configuration dialog, make sure that the values for Resolution
and Monitor are correct for your hardware, then click Next.
19. In the Installation Completed dialog, click Finish.
The installation is completed and the SLES 11 login screen appears.
20. Remove the SUSE Linux Enterprise Server 11 SP2 DVD from your DVD drive.
14 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Introduction
Set Up da1
da1 is a SUSE Linux Enterprise Server 11 SP2. This virtual machine is installed in
Exercise 1 of Section 1 and then used in some of the subsequent exercises.
As the machine will be installed as par of an exercise, there is no setup required at
this point beyond the copying of the files described under “Install VMware Player”
on page 14.
Set Up da2
da2 is a SUSE Linux Enterprise Server 11 SP2 with BtrFS used as the / (root) file
system. This virtual machine is used in Section 10 (but you could also use it as a
replacement for da1 in other Sections if you, for some reason, did not install da1 in
Section 1).
To set up the machine, do the following:
1. As user Geeko, open the main menu, click More Applications and select System
> VMware Player.
2. In the End User License Agreement dialog, click Accept.
3. (Optional) If you are prompted to download available updates, click Cancel.
4. Click Open an existing Virtual Machine.
5. Navigate to the /vmware/3116-da2 directory and select 3116-da2.vmx,
then click Open.
6. Select da2 in the left pane and click Play virtual machine.
When prompted whether you moved or copied the VM, click I copied it.
The virtual machine starts.
7. To change the keyboard layout within the virtual machine from US English to
another one, do the following:
a. Log in as user geeko (password novell).
b. Start YaST (root password: novell) and select System > Language.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 15
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
c. Set Primary Language to your language and select Adapt Keyboard Layout
to your language and click OK.
d. Close the YaST Control Center
8. Open a terminal window and ping da-host with the following command:
ping da-host.digitalairlines.com
You should see echo replies.
9. Shut down da2 until you need it.
16 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Install SUSE Linux Enterprise Server 11 SP2
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 17
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
18 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Install SUSE Linux Enterprise Server 11 SP2
9. In the Welcome dialog, select your language and your keyboard layout from the
Language and Keyboard Layour drop-down menus
NOTE: Although you can select any available language, the exercises in this manual are
written for English US.
10. In the same dialog, select I Agree to the License Terms, then click Next.
11. In the Media Check screen, click Next.
Wait while the system hardware is probed.
12. In the Installation Mode dialog, select New Installation, then click Next.
13. In the Clock and Time Zone dialog, select your time zone and deselect Hardware
Clock Set To UTC.
Click Next to continue.
14. In the Server Base Scenario screen, select Physical Machine, then click Next.
The Installation Settings proposal dialog appears.
15. Change the partitioning settings by selecting Partitioning.
16. In the Prepare Hard Disk dialog, select Custom Partitioning (for experts), then
click Next.
17. Create a swap partition by doing the following:
a. Under System View, select Hard Disks > sda.
b. Select Add.
c. Select Primary Partition, then click Next.
d. Select Custom Size, then enter a size of 1 GB.
e. Click Next.
f. From the File System drop-down list, select Swap.
g. Add the swap partition by clicking Finish.
18. Create the root partition by doing the following:
a. Select Add.
b. Select Primary Partition, then click Next.
c. Select Custom Size; then enter a size of 6 GB.
d. Click Next.
e. Configure the following options:
Select Ext3 from the File System drop-down list.
Select / from the Mount Point drop-down list.
f. Add the root partition by clicking Finish.
In the Expert Partitioner, you should now see two partitions, one for swap
with 1 GB and one for / with 6 GB.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 19
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
19. Confirm the partitioning setup and return to the Installation Settings by clicking
Accept.
20. In the Installation Settings Overview, select Software.
21. Under Patterns, scroll down as needed and select C/C++ Compiler and Tools.
Click OK to return to the Installation Settings dialog.
If prompted to accept license agreements for packages to be installed, select
Accept.
22. In the Installation Settings dialog, click Install.
23. In the confirmation dialog, click Install.
Wait while the disk is partitioned and the packages are installed. This may take
up to 30 minutes to complete, depending on the hardware.
The system will reboot after the software installation.
24. In the Password for the System Administrator “root” screen, enter novell in the
password fields.
Click Next to continue.
Confirm the password warning by clicking Yes.
25. In the Hostname and Domain Name dialog, enter da1 in the Hostname field and
digitalairlines.com in the Domain Name field.
Deselect Change Hostname via DHCP.
Deselect Assign Hostname to Loopback IP.
Click Next to continue.
26. In the Network Configuration screen under Firewall, click disable next to
Firewall is enabled.
The entry will change to Firewall is disabled.
27. Select Network Interfaces.
28. In the Network Settings dialog, select the first detected network card, then click
Edit.
29. In the Network Card Setup dialog, do the following:
Select Statically Assigned IP Address.
In the IP Address field, enter 172.17.8.101.
In the Subnet Mask field, enter 255.255.0.0.
In the Hostname field, enter da1.digitalairlines.com.
Click Next to return to the Network Settings dialog.
30. Select the Hostname/DNS tab.
Your hostname and domain name should already be filled. If not, enter a
Hostname of da1 and the Domain Name digitalairlines.com.
20 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Install SUSE Linux Enterprise Server 11 SP2
NOTE: Because this virtual machine runs in host-only mode, it is isolated from the rest of your
network. In a production environment, you would configure a gateway router address.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 21
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
In the File Roller window that opens up, select Extract and then select a
directory for the vmware-tools-distrib directory, such as geeko’s
home directory.
The files will be extracted to the location you specify.
e. Open a terminal window by right-clicking on the desktop and selecting Open
in Terminal.
In that terminal, change to the root account by entering su - and the
password novell when prompted.
f. Change into the vmware-tools-contrib directory by entering
cd /home/geeko/vmware-tools-distrib
g. At the shell prompt, enter ./vmware-install.pl.
h. Accept the suggested default values by pressing Enter.
Several modules will be compiled.
i. When prompted to configure your screen resolution, enter the appropriate
menu option for 1024x768.
j. In your VMware window, select Virtual Machine > Removable Devices >
CD/DVD > Connect to /dev/sr0.
k. When prompted for the root user’s password, enter novell and click
Authenticate.
l. Close the File Browser window.
m. Reboot the system by entering init 6 at the shell prompt.
(End of Exercise)
22 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage System Initialization
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 23
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NOTE: This exercise will not work with SUSE Linux Enterprise Server 11 SP2 running on physical
hardware with a USB keyboard. USB drivers are usually loaded late in the init process. If your
machine is equipped with a USB keyboard, you have to add the modules to the initial RAM disk for
this exercise to work.
24 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage System Initialization
13. To avoid having the password displayed in clear-text in the configuration file,
create an MD5-Hash encrypted password by doing the following within vi:
a. Add a new, blank line after the “gfxmenu” line you just commented out.
b. Press Esc.
c. Enter :r! echo -e “secret\nsecret” | grub-md5-
crypt.
This runs an external command from within the vi editor. The echo
command sends the secret and secret text strings to the standard input
of the grub-md5-crypt command.
The grub-md5-crypt command uses these strings as input for its
Password: and Retype Password: prompts. It then encrypts the password.
The output from grub-md5-crypt command is inserted into the file,
including the encrypted password:
# Modified by YaST2. Last modification on Wed Sep 26
10:10:28 CEST 2012
default 0
timeout 8
##YaST - generic_mbr
#gfxmenu (hd0,1)/boot/message
##YaST - activate
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 25
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
26 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage System Initialization
Previous Current
Notice that the previous runlevel is listed as N, which means that there was no
previous runlevel set.
4. Change to runlevel 3 by entering init 3 in the terminal window.
The graphical environment is terminated and you are left at a terminal login
prompt.
5. Log in as root with a password of novell.
6. Check the previous and current runlevel by entering runlevel.
List the runlevels in the table below:
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 27
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
Previous Current
NOTE: If pressing Ctrl+Alt+F1 changes da-host to the first virtual terminal, change back to the
graphical interface by pressing Ctrl+Alt+F7. Then activate the VMware window, press
Ctrl+Alt+Space and, while keeping Ctrl+Alt pressed, release Space and press F1.
28 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage System Initialization
12. You should be still be logged in as root. Verify this by entering whoami at the
shell prompt.
13. Switch to runlevel 1 by entering init 1 at the shell prompt.
14. When prompted, enter a root password of novell.
15. Determine if the atd service is running by entering rcatd status at the
shell prompt.
The service is listed as unused because it is not configured to start at runlevel 1.
16. Switch back to your previous runlevel (5) by entering init 5 at the shell
prompt.
The GUI login screen appears.
17. Log in as geeko with a password of novell.
18. Open a terminal session and enter su - to switch to root using a password of
novell.
19. Determine if the atd service is running by entering rcatd status at the
shell prompt.
The service is listed as running because it is configured to start at runlevel 5.
20. From the command line, remove the atd service from system startup runlevels
by entering chkconfig atd off.
21. View the current runlevel configuration for at by entering chkconfig atd -
l at the shell prompt.
Notice that the service is off for all runlevels.
22. Determine if the atd service is running by entering rcatd status at the
shell prompt.
The service is listed as running because changing the runlevel configuration with
chkconfig does not affect the status of the respective service. You would need
to stop it manually or reboot the system to stop the atd service.
23. Re-enable the service to start at the default runlevels by entering chkconfig
atd on at the shell prompt.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 29
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NOTE: If pressing Ctrl+Alt+F1 changes da-host to the first virtual terminal, change back to the
graphical interface by pressing Ctrl+Alt+F7. Then activate the VMware window, press
Ctrl+Alt+Space and, while keeping Ctrl+Alt pressed, release Space and press F1.
30 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer Linux Processes and Services
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 31
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
32 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer Linux Processes and Services
NOTE: The nohup command runs a command such that it ignores any hangup kill signals
sent to it.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 33
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
25. Switch to your root user account using the su - command and a password of
novell.
26. Stop the calculator program and check the status by entering the following
commands:
kill PID_of_gcalctool_process
ps aux | grep gcalctool
27. Start the xeyes program in the background by entering
xeyes&
28. Kill the xeyes program by entering
killall xeyes
34 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer Linux Processes and Services
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 35
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
36 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 37
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
38 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 39
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
40 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 41
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
7. To access the new partitions, you must update the kernel’s partition table stored
in memory. Do one of the following:
Have the kernel update its partition table by entering partprobe.
Reboot the system by entering reboot.
8. View the partition table again by entering
cat /proc/partitions
NOTE: Make sure you specify the correct device in the above command! If you specify
the wrong device, no warning message will be displayed and the file system on the device
will be overwritten.
42 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
These new entries ensure the sda7 and sda8 partitions are mounted when
starting or rebooting the system.
d. Save the changes to /etc/fstab by pressing Esc and then entering :wq.
5. In the terminal window, reread the /etc/fstab file and mount all of the new
file systems by entering
mount -a
6. View the information on the mounted file systems by entering the following two
commands:
mount
cat /proc/mounts
You should see entries for the two new partitions you just created.
(End of Exercise)
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 43
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
44 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
NOTE: It is common practice to use this naming convention. Naming a file system after
its mount point can be useful in system rescue situations when the /etc/fstab file is
not available.
c. Verify that the file system now has a volume name by entering
dumpe2fs /dev/sda8 | less
You should see that the Filesystem volume name has been set to the
partition’s mount point, /export/data2.
d. Add a journal to the file system (making it an ext3 file system) by entering
tune2fs -j /dev/sda8
e. Verify that the file system now contains a journal by entering
dumpe2fs /dev/sda8 | less
The Filesystem features line should now contain an entry “has_journal”.
f. Mount /dev/sda8 again by entering
mount /dev/sda8
g. View information on the mounted file systems by entering
mount
Notice that the file system is still mounted as an ext2 file system.
h. Unmount the partition /dev/sda8 again by entering
umount /dev/sda8
i. Verify that the file system state is clean by entering
dumpe2fs /dev/sda8 | less
j. Edit the /etc/fstab file to change the file system type from ext2 to ext3
by entering vi /etc/fstab at the shell prompt.
k. Press Ins.
l. Locate the entry for /dev/sda8 and change the file system type from ext2
to ext3, as in the following:
/dev/sda8 /export/data2 ext3 defaults 1 2
m. Press Esc, then enter :exit to save the changes to the file and exit the vi
editor.
n. At the command line, reread /etc/fstab and mount the partition as an
ext3 file system by entering
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 45
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
mount -a
o. Verify the change by entering
mount
You should see that /dev/sda8 has been mounted as an ext3 file system.
p. Unmount the partition /dev/sda8 again by entering
umount /export/data2
q. Mount the partition as an ext2 file system manually by entering
mount -t ext2 /dev/sda8 /export/data2
r. Verify that the file system is mounted without a journal (as an ext2 file
system) by entering
mount
As you can see, ext3 is backward compatible with ext2.
s. Remount /dev/sda8 as an ext3 file system and verify the change by
entering the following commands:
umount /export/data2
mount -a
mount
2. Create a snapshot for the /srv/www/ subvolume by doing the following:
a. Create a before_snapshot.html file in /srv/www/htdocs by
entering
touch /srv/www/htdocs/before_snapshot.html
b. Create a read-only snapshot for the /srv/www subvolume by entering
cd /srv
btrfs subvolume snapshot -r www www-snapshot
c. List the existing snapshots by entering
btrfs subvolume list
d. Try to create a file in the /srv/www-snapshot/htdocs/ directory by
entering
touch /srv/www-snapshot/htdocs/file
You should see a message that touch cannot create the file on a read-only
file system.
e. Create a after_snapshot.html file in /srv/www/htdocs by
entering
touch /srv/www/htdocs/after_snapshot.html
f. View the content of the /srv/www-snapshot/htdocs directory by entering
ls /srv/www-snapshot/htdocs
46 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 47
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
48 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 49
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
50 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer the Linux File System
NOTE: If you receive the error message “/export/data2 mounted already, or bad option”, check
the contents of the /etc/fstab file. You might have misspelled the usrquota or
grpquota option.
NOTE: You will receive several status messages about old quota files. These indicate that this
is a new quota database with no previous quota database files on the system.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 51
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
10. Verify that the aquota.user and aquota.groups files exist in the /
export/data2 directory by entering
ls -l /export/data2
11. Turn quotas on for all file systems that are mounted with these options by
entering
quotaon -av
12. Make the quota system persistent after reboot by entering
insserv boot.quota
13. Set a quota for geeko with a soft block limit of about 20 MB and a hard block
limit of about 30 MB on /dev/sda8 by entering
edquota -u geeko
The quota editor appears in the vi editor.
14. Press Ins.
15. Under soft, remove the 0 and enter 20000.
16. Under hard, remove the 0 and enter 30000.
17. When you’re finished, press Esc, then enter :wq.
18. View the quota information about all configured users by entering
repquota -av
You should see the following the values for geeko that you just entered.
19. (Optional) If you finish early, set a quota for the users group of 100 MB for the
soft limit and 150 MB for the hard limit.
20. Test if the quotas by doing the following:
a. As root, create a directory named /export/data2/geeko and change
the owner to geeko by doing the following:
mkdir /export/data2/geeko
chown geeko.users /export/data2/geeko
b. Change to the user account geeko and create a file by entering
su - geeko
dd if=/dev/zero of=/export/data2/geeko/bigfile
After a short time, you should see a message indicating the quota was
exceeded.
21. Close all open windows.
(End of Exercise)
52 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure the Network Manually
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 53
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
54 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure the Network Manually
4. Close YaST.
5. Verify that the network connection is not working any more by pinging your host
system’s vmnet1 virtual network interface. Enter the following at the shell
prompt:
ping 172.17.8.1
You should see a message indicating that the network is unreachable.
6. Enter ip address show at the shell prompt.
Note that the state of your eth0 device is DOWN.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 55
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NETMASK=’255.255.0.0’
BROADCAST=’172.17.255.255’
Change BRIDGE=’yes’ to BRIDGE=’no’
6. Press Esc, then save the file and exit vi by entering :wq.
7. Create a new file with vi called routes by entering vi routes at the shell
prompt.
8. Press Ins, then add the following line to the file:
default 172.17.8.1 - -
9. Press Esc; then save the file and exit vi by entering :wq.
10. Reboot your system by entering init 6 at the shell prompt.
Wait while the system reboots.
11. After rebooting, log in as geeko with a password of novell.
12. Open a terminal window.
13. Change to root using the su - command and a password of novell.
14. Verify that the network configuration loaded correctly by entering the following
commands:
ip address show eth0
ip route show
15. Verify that the network connection is working properly by entering
ping 172.17.8.1
16. Close all open windows.
NOTE: If the network configuration doesn’t work properly, use the YaST Network Settings module
to reconfigure the network card with the proper settings.
(End of Exercise)
56 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Hardware
In this section of the workbook, you can find the following exercises:
“Manage Linux Kernel Modules” on page 58
In this exercise, you load and unload kernel modules.
“Obtain Hardware Configuration Information in YaST” on page 59
In this exercise, you learn how to obtain hardware configuration information on
your computer.
“Modify udev Rules” on page 60
In this exercise, you will modify a udev rule to rename your Ethernet interface.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 57
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NOTE: If the joydev module is not listed, skip to step Step 7 on page 58.
58 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Hardware
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 59
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
60 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Hardware
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 61
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
62 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure Remote Access
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 63
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
64 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure Remote Access
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 65
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
66 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure Remote Access
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 67
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
68 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure Remote Access
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 69
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
70 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Configure Remote Access
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 71
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
e. Select Add > DVD > Next; when prompted to insert the Add-on Products
DVD select Continue.
f. Accept the License Agreement and click Next.
g. Click OK to close the Software Repositories module
h. In YaST, select Software > Software Management.
i. In the search field, enter rdesktop and click Search.
j. Within the search results, select the rdesktop and tsclient packages and click
Accept. In the Automatic Changes dialog, select Continue.
k. Close the YaST Control Center.
10. Configure a remote desktop connection on your host workstation by doing the
following:
a. At the shell prompt on your host workstation da-host, enter tsclient.
b. In the Termina Server Client window, dlick New Connection > Windows
Terminal Service.
An Windows Terminal Service connection dialog appears.
c. In the Host field, type da1.digitalairlines.com.
d. In the Username field, type geeko.
e. In the Password field, type novell.
f. Expand Advanced Options.
g. In the Connection Type drop-down list, select LAN.
h. Select (check) the Save this connection entry.
i. In the Name field, enter da1 Desktop.
j. Click Save.
The da1 Desktop remote desktop connection is added to the Terminal Server
Client window.
11. Open the remote connection by double-clicking da1 Desktop.
The da1 desktop is displayed in an rdesktop /TightVNC window.
12. (Conditional) If time permits, experiment with the remote desktop. Try opening
and using the various applications remotely.
13. When complete, click Computer > Logout > Log Out within the remote desktop
session.
14. In the Terminal Server Client window, click the Exit icon.
15. At the shell prompt, enter exit.
(End of Exercise)
72 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Monitor SUSE Linux Enterprise Server 11
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 73
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
OS
Hardware Architecture
Processor Type
Hostname
Kernel Release
System Up Time
Load Averages
SLES 11 Version
Free Memory
Patch Level
74 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Monitor SUSE Linux Enterprise Server 11
uname -a
7. View the system uptime and the load averages by entering
uptime
8. View the version of the SUSE Linux Enterprise Server distribution by entering
cat /etc/SuSE-release
9. View the system date and time by entering
date
10. View information on the processor by entering
cat /proc/cpuinfo
11. View the current memory statistics by entering
cat /proc/meminfo
(End of Exercise)
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 75
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NOTE: The above values (one day, five logs, 20 bytes) are used for demonstration purposes only. In
a production environment, these values should be much higher.
76 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Monitor SUSE Linux Enterprise Server 11
NOTE: Check your syntax carefully. If you make a mistake in this file, syslog won’t start.
7. Save the changes and close the editor by pressing Esc and then entering :exit.
8. Restart the syslog daemon by entering rcsyslog restart at the shell
prompt.
9. Open a new terminal window and enter su - followed by a password of novell.
10. Check the configuration by logging an entry to the info level in the local4 facility
by doing the following:
a. Enter the following in one of your terminal sessions to monitor the activity
of the log file:
tail -F /var/log/local4.info
NOTE: The -F option keeps trying to open a file even if it is inaccessible when tail
starts.
You will see warnings regarding the fact that the file does not yet exist. You can disregard
this error as the file will be created when you complete the next step.
b. In the other terminal window, log an entry to the info level in the local4
facility by entering
logger -p local4.info "Info message 1"
c. Check the results in the second terminal window. The message should be
logged in the /var/log/local4.info file.
The message should also be logged in the /var/log/local4 file and,
because of other entries in /etc/syslog-ng/syslog-ng.conf, in /
var/log/localmessages.
NOTE: If no messages appear, there might be something wrong with your syslog
configuration, for instance a typo or a missing “;”. To diagnose what is wrong, enter
rcsyslog restart at the shell prompt and see if syslog starts properly. If there is an
issue with the configuration, an error message will say so. Look for the line number
shown in the output for the error, correct it, and restart syslog.
d. In the terminal window where the log activity is being monitored with
tail, stop the monitoring by pressing Ctrl+c.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 77
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
11. Repeat this process for the debug log level. Use the following command in the
first terminal window:
tail -F /var/log/local4.debug
Use the following command in the second terminal window:
logger -p local4.debug “Info message 2”
NOTE: Only those level4 log files with entries will be compressed during log rotation in Part
II of this exercise.
12. In the terminal window where the log activity is being monitored with tail,
stop the monitoring by pressing Ctrl+c.
NOTE: Make sure the directories in the first line are separated with spaces.
4. Press Esc, then save the changes and close the editor by entering :exit.
5. Switch to virtual terminal 1 by pressing Ctrl+Alt+F1.
6. Log in as root with a password of novell.
7. Rotate the logs manually by entering
logrotate /etc/logrotate.conf
8. Check the directory /var/log/ for the zipped local4 log files by entering
ls -l /var/log | less
You see the following files:
local4.debug-current_date.bz2
local4.info-current_date.bz2
78 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Monitor SUSE Linux Enterprise Server 11
For example, if the current date is July 15, 2012, then the zipped file for
local4.info will be local4.info-20120715.bz2.
The .bz2 extension is used because the command to compress files is set to
bzip2 in /etc/logrotate.conf.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 79
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
80 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer Linux Processes and Services
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 81
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
NOTE: Make sure you enter two > characters in the above command. If you have only one >
character, all existing entries in /var/log/messages will be overwritten.
82 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer Linux Processes and Services
NOTE: The -F option keeps trying to open a file even if it is inaccessible when tail
starts.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 83
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
84 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 85
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
86 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
NOTE: In this exercise, you copy backup files to the directory /tmp. This is done for
demonstration purposes only. You should not store an actual backup in the /tmp directory.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 87
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
88 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 89
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
19. Display the difference for the two snapshots for the /etc/passwd entry with the
following command:
snapper diff prenr..postnr /etc/passwd
There should be a line that starts with -tux ...
20. Check if there is a /home/tux directory by entering ls /home.
21. Check the status of the snapshots by entering
snapper status prenr..postnr
22. Roll back the change made by the YaST Snapper module by entering
snapper -v undochange prenr..postnr
As no file name is specified, all files are restored.
This is not always advisable, as other files might have been changed by other
processes while the snapper module was running that you don’t want to change
back to their previous state. Therefore always check the status as in Step 21 to
avoid any inadvertant effects from the restore.
23. Check if the /home/tux directory was restored and the /etc/passwd file
has again an entry for tux.
(End of Exercise)
90 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
7. Copy an image of the CD to the hard disk by entering the following at the shell
prompt:
dd if=/dev/device_name of=/tmp/course_cd.iso
When done, you should see a “... records in ... records out” message.
8. When the copy process is complete, mount the image file by entering
mount -o loop /tmp/course_cd.iso /mnt/
9. Change to the /mnt/ directory by entering cd /mnt at the shell prompt.
10. Display the content of the image file by entering ls at the shell prompt.
You should see the files from the CD.
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 91
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
92 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 93
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
94 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Manage Backup and Recovery
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 95
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
96 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 97
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
98 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
You are able to log in because PAM no longer checks for the /etc/
nologin file.
c. Log out as geeko by entering exit.
11. Edit the file /etc/pam.d/login to uncomment the pam_nologin.so line:
a. Switch to virtual console 3 by pressing Alt+F3.
b. In the vi editor, press Ins.
c. Uncomment the pam_nologin.so line (by removing the # sign you
entered before) so it looks like the following:
auth requisite pam_nologin.so
d. Press Esc, then save the file and exit vi by entering :wq.
12. On virtual console 4, try logging in again as geeko.
Again, you receive a “Login incorrect” message.
13. Press Alt+F3.
14. Delete the file /etc/nologin by entering rm /etc/nologin at the shell
prompt.
15. Press Alt+F4.
16. Try again to log in as geeko with a password of novell.
Because the /etc/nologin file no longer exists, user login is enabled again.
17. Log out as geeko by entering exit.
18. Press Alt+F3.
19. Log out as root by entering exit.
20. Return to the server desktop by pressing Alt+F7.
(End of Exercise)
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 99
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
100 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
(End of Exercise)
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 101
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
4. Start YaST by selecting Computer > YaST and entering a password of novell.
5. Select Security and Users > Security Center and Hardening.
The Security Overview dialog appears.
6. On the left, select Predefined Security Configurations.
7. Make sure Custom Settings is selected.
8. On the left, select Password Settings.
9. From the Password Encryption Method drop-down list, select MD5.
10. On the left, select Boot Settings.
11. From the Interpretation of Ctrl + Alt + Del drop-down list, select Halt.
12. Apply the new security settings by clicking OK.
13. Close YaST.
14. To test the change, you must first activate the new configuration.
This can be done either by rebooting the system or by entering (as root) init q,
which reloads the /etc/inittab file. You will do the latter:
a. In the terminal window, su - to root using a password of novell.
b. Reload the /etc/inittab file by entering init q.
15. Verify that the Ctrl+Alt+Del setting has changed by entering
grep ctrlaltdel /etc/inittab
Notice that the setting is now shutdown -h instead of what you noted in Step
3 on page 102.
102 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
16. Test this setting by pressing Ctrl+Alt+F1 to switch to a virtual terminal. Then
select from the VMware Menu Virtual Machine > Send Ctrl+Alt+Del.
The system shuts down instead of restarting.
17. Power the da1 virtual machine back on and log in as geeko with a password of
novell.
18. (Optional) Use the YaST Security Settings module to change the default for
Ctrl+Alt+Del back to Restart.
(End of Exercise)
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 103
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
104 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 105
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
106 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
Administer User Access and Security
Version 1 Copying all or part of this manual, or distributing such copies, is strictly prohibited. 107
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.
SUSE Linux Enterprise Server 11 SP2 Administration / Workbook
e. Click Next.
f. Review the settings on the Summary screen, then click Finish.
g. Close YaST.
5. Test the firewall configuration from your da-host workstation by doing the
following:
a. Start Firefox on da-host.
b. In the Address field, enter http://da1.digitalairlines.com.
The server should fail to respond because the firewall on da1 is blocking all
network traffic.
6. Configure the firewall on DA1 to allow Web server traffic by doing the
following:
a. Switch to your DA1 virtual server.
b. Start YaST and select Security and Users > Firewall.
c. Select Allowed Services.
d. From the Service to Allow drop-down list, select HTTP Server; then click
Add.
e. From the Service to Allow drop-down list, select HTTPS Server; then click
Add.
f. Click Next.
g. Click Finish.
h. Close YaST.
7. Test the new firewall configuration by doing the following:
a. Switch to your da-host workstation.
b. In the Firefox window, click the Reload icon.
The server should now respond because the firewall on da1 is configured to
allow HTTP and HTTPS traffic.
8. Close all open windows on both systems.
(End of Exercise)
108 Copying all or part of this manual, or distributing such copies, is strictly prohibited. Version 1
To report suspected copying, please call 1-800-PIRATES.
Novell, Inc. Copyright 2013-EMPOYEE USE ONLY-NO COPYING, PRINTING, OR DISTRIBUTION ALLOWED.