Security Administrator Solaris 9

 

Sun Certified Network Administrator for the Solaris 9 Operating System
   
Product Description  

Product Outline/Details

The Sun Certified Security Administrator for the Solaris 9 Operating System exam is for those candidates with six to twelve months of experience administering security in a Solaris Operating System (Solaris OS). It is recommended that candidates attend the course: SC-300: Administering Security on the Solaris OS, have six to twelve months security administration job-role experience, and have previous Solaris OS and network administration certification. The examination will include multiple choice scenario-based questions, matching, drag-drop, and free-response question types and will require in-depth knowledge on security topics including: general security concepts, detection and device management, security attacks, file and system resources protection, host and network prevention, and network connection access, authentication, and encryption.

Product ID: Price
 CX-310-301 $150.00
Details  

  • Delivered at: Authorized Prometric testing centers

  • Prerequisites: Six to twelve months administering security in a Solaris OS

  • Other exams/assignments required for this certification: None

  • Exam type: Multiple choice, drag-drop, matching

  • Number of questions: 60

  • Pass score: 60%

  • Time limit: 90 minutes

Languages  
  • English, Japanese, German
    		•
     

    Exam Objectives

     

    		  
    Section 1: General Security Concepts  
     
  • Explain fundamental concepts concerning information security and explain what good security architectures include (people, process, technology, defense in depth).
  • Identify the security life cycle (prevent, detect, react, and deter) and describe security awareness, security policies and procedures, physical security, platform security, network security, application security, and security operations and management .
  • Describe concepts of unsecure systems, user trust, threat, and risk.
  • Explain attackers, motives, and methods.
  • Describe accountability, authentication, authorizations, privacy, confidentiality, integrity, and non-repudiation.
  • Describe the benefit of evaluation standards and explain actions that can invalidate certification.
  • Describe how the attackers gain information about the targets and describe methods to reduce disclosure of revealing information.
    •  
    Section 2: Detection and Device Management  
     
  • Given a scenario, identify and monitor successful and unsuccessful logins and system log messages, and explain how to configure centralized logging and customize the system logging facility to use multiple log files.
  • Describe the benefits and potential limitations of process accounting.
  • Configure Solaris BSM auditing, including setting audit control flags and customizing audit events.
  • Given a security scenario, generate an audit trail and analyze the audit data using the auditreduce, praudit, and audit commands.
  • Explain the device management components including device_maps and device_allocate file, device-clean scripts, and authorizations using the auth_attr database, and describe how to configure these device management components.
    •  
    Section 3: Security Attacks  
     
  • Differentiate between the different types of host-based Denial of Service (DoS) attacks, establish courses of action to prevent DoS attacks, and understand how DoS attacks are executed.
  • Demonstrate privilege escalation by identifying Trojan horses and buffer overflow attacks, and explain backdoors, rootkits, and loadable kernel modules, and understand the limitations of these techniques.
  • Given a security scenario, detect Trojan horse and back door attacks using the find command, checklists, file digests, checksums, the Solaris Fingerprint Database, and explain trust with respect to the kernel and the OpenBoot PROM and understand the limitations of these techniques.
    •  
    Section 4: File and System Resources Protection  
     
  • Given a security scenario: a) manage the security of user accounts by setting account expiration, and restricting root logins, b) manage dormant accounts through protection and deletion, and c) check user security by configuring the /etc/default/su file, or classifying and restricting non-login accounts and shells.
  • Describe the implementation of defensive password policies and understand the limitations of password authentication.
  • Describe the function of a Pluggable Authentication Module (PAM), including the deployment of PAM in a production environment, and explain the features and limitations of Sun Kerberos.
  • Describe the benefits and capabilities of role-based access control (RBAC), and explain how to configure profiles and executions including creating, assigning, and testing RBAC roles.
  • Given a scenario, use Access Control Lists including setting file system permissions, implications of using Lax Permissions, manipulating the Set-User-ID and Set_Group-ID, and setting secure files using Access Control Lists.
    •  
    Section 5: Host and Network Prevention  
     
  • Explain fundamental concepts concerning network security including firewall, IPsec, network intrusion and detection, describe how to harden network services by restricting run control services, inetd services, and RPC services, and understand host hardening techniques described in Sun security blueprints.
  • Given a security scenario, describe steps to harden a system, install and configure Solaris Security Toolkit (SST), and describe how to create, run, and verify an SST configuration.
    •  
    Section 6: Network Connection Access, Authentication, and Encryption  
     
  • Explain how to configure, install, and validate TCP wrappers.
  • Explain cryptology concepts including secret-key and public-key cryptography, hash functions, encryption, and server and client authentication.
  • Given a security scenario, configure Solaris Secure Shell.