RHEL9: Difference between revisions

From Dave-Wiki
 
(16 intermediate revisions by the same user not shown)
Line 1: Line 1:
=Summary=
Red Hat Enterprise Linux is a commercial Linux distribution developed by Red Hat, Inc. It is designed for businesses, offering a reliable, secure, and scalable operating system for servers, workstations, and cloud environments.
While it's a bummer that Red Hat stopped letting you freely download its product, you can still legally get a [https://developers.redhat.com/ Red Hat Developer Subscriptions for Individuals], which allows you to install and use RHEL on up to 16 physical or virtual hosts for no cost.
=New Deployment=
=New Deployment=


Line 5: Line 11:
==Software To Install==
==Software To Install==


<code>subscription-manager repos --enable codeready-builder-for-rhel-9-$(arch)-rpms</code>
subscription-manager repos --enable codeready-builder-for-rhel-9-$(arch)-rpms
 
dnf install <nowiki>https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm</nowiki> -y


<code>dnf install <nowiki>https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm</nowiki></code>
dnf install vim wget tmux htop iftop net-tools bind-utils traceroute tcpdump nmap mtr net-snmp net-snmp-utils rsync git lsof usbutils yum-utils unzip python3 open-vm-tools nfs-utils cifs-utils keyutils samba-client -y


<code>dnf install vim wget tmux htop iftop net-tools bind-utils traceroute tcpdump nmap mtr net-snmp-utils rsync git lsof usbutils yum-utils unzip python3 open-vm-tools nfs-utils -y</code>
dnf group install "Development Tools"


<code>dnf group install "Development Tools"</code>
==Install Custom CA Certificates==
 
# Copy custom CA cert(s) to <code>/etc/pki/ca-trust/source/anchors/</code>
# <code>sudo update-ca-trust extract</code>


=Networking=
=Networking=


==Bonding==
See [[NetworkManager]].
 
=Disk/Filesystem=
 
See [[Linux Partitioning]].
 
=Users & Passwords=
 
===Show Password Expiration, etc.===
 
chage -l bob
 
passwd --status bob
 
===Remove Password Expiration===


A network bond is a method to combine or aggregate physical and virtual network interfaces to provide a logical interface with higher throughput or redundancy. In a bond, the kernel handles all operations exclusively. You can create bonds on different types of devices, such as Ethernet devices or VLANs.
chage -E -1 bob


===Example===
===Expire A Password Immediately===


In this example, I was able to successfully bond two links to a Juniper EX3300 using LACP (802.3ad):
chage -E 0 bob


<code>nmcli connection add type bond con-name bond0 ifname bond0 bond.options "mode=802.3ad,lacp_rate=fast"</code>
===Remove Password Validation Checking===


<code>nmcli connection modify bond0 connection.autoconnect-slaves 1</code>
chage -m 0 -M -1 bob


<code>nmcli connection add type ethernet slave-type bond con-name bond0-port0 ifname enp129s0f0 master bond0</code>
===Disable a User's Shell===


<code>nmcli connection add type ethernet slave-type bond con-name bond0-port1 ifname enp129s0f1 master bond0</code>
This prevents a user from logging in.


<code>nmcli connection modify bond0 ipv4.addresses '10.144.30.20/24' ipv4.gateway '10.144.30.1' ipv4.dns '10.144.30.4,10.150.30.2' ipv4.dns-search 'lambnet.us' ipv4.method manual</code>
usrmod -s /sbin/nologin bob


===Sources===
===List Sudo Privileges===
[https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/configuring_and_managing_networking/configuring-network-bonding_configuring-and-managing-networking https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/configuring_and_managing_networking/configuring-network-bonding_configuring-and-managing-networking]


[https://www.kernel.org/doc/Documentation/networking/bonding.txt https://www.kernel.org/doc/Documentation/networking/bonding.txt]
sudo -l

Latest revision as of 14:56, 19 March 2025

Summary

Red Hat Enterprise Linux is a commercial Linux distribution developed by Red Hat, Inc. It is designed for businesses, offering a reliable, secure, and scalable operating system for servers, workstations, and cloud environments.

While it's a bummer that Red Hat stopped letting you freely download its product, you can still legally get a Red Hat Developer Subscriptions for Individuals, which allows you to install and use RHEL on up to 16 physical or virtual hosts for no cost.

New Deployment

A collection of common things to do on almost any new RHEL deployment.

Software To Install

subscription-manager repos --enable codeready-builder-for-rhel-9-$(arch)-rpms

dnf install https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm -y

dnf install vim wget tmux htop iftop net-tools bind-utils traceroute tcpdump nmap mtr net-snmp net-snmp-utils rsync git lsof usbutils yum-utils unzip python3 open-vm-tools nfs-utils cifs-utils keyutils samba-client -y

dnf group install "Development Tools"

Install Custom CA Certificates

  1. Copy custom CA cert(s) to /etc/pki/ca-trust/source/anchors/
  2. sudo update-ca-trust extract

Networking

See NetworkManager.

Disk/Filesystem

See Linux Partitioning.

Users & Passwords

Show Password Expiration, etc.

chage -l bob

passwd --status bob

Remove Password Expiration

chage -E -1 bob

Expire A Password Immediately

chage -E 0 bob

Remove Password Validation Checking

chage -m 0 -M -1 bob

Disable a User's Shell

This prevents a user from logging in. 

usrmod -s /sbin/nologin bob

List Sudo Privileges

sudo -l
Retrieved from "https://davehome.net/wiki/index.php?title=RHEL9&oldid=659"