ADLER-TECH

Enterprise Ubuntu Server Administration: Infrastructure & Services

Duration: 21 Hours (3 Days) Focus: Deployment, Security, and Core Service Provisioning

Day 1: Foundations, System Maintenance, and Connectivity

Module 1: The Ubuntu Server Platform

  • Distribution Overview (Ubuntu Server Edition, LTS vs. interim releases).
  • Life Cycle & Policy (Maintenance windows, understanding the support model: standard vs. commercial).
  • Hardware and Architecture (System compatibility verification, available kernel variants, supported CPU architectures).

Module 2: Software Lifecycle Management

  • Core Package Utilities (dpkg and apt-get for fundamental operations).
  • Source Management (Repository configuration, defining available software origins).
  • Repository Extensions (Adding external or third-party repositories).
  • Alternative Ecosystems (Conceptual introduction to other packaging formats like RPM, YUM, and dependency resolution).
  • Interactive Management (aptitude and its enhanced dependency handling).
  • Update Automation (Configuring unattended upgrades and security patches).
  • Major Version Migration (Executing distribution-wide upgrades).

Module 3: Network Configuration and Time Sync

  • Core Network Setup (Configuring interfaces: static/dynamic IP, naming conventions).
  • Addressing Protocols (Implementing and managing IPv4 and IPv6).
  • Client Management (Setting up Dynamic Host Configuration Protocol (DHCP) services).
  • Precise Timekeeping (Synchronizing system time using timedatectl and chrony).
  • High-Performance I/O (Introduction to the Data Plane Development Kit (DPDK) for accelerated packet processing).

Module 4: Authentication and Remote Access

  • Secure Shell Services (Configuring the OpenSSH Server for robust remote administration).
  • Naming Services (Implementing the Domain Name Service (DNS) for local and recursive queries).
  • Directory Services (Setting up OpenLDAP Server and integrating Samba with LDAP for centralized accounts).
  • Single Sign-On (SSO) (Introduction to Kerberos authentication).
  • Identity Integration (Using SSSD for streamlined authentication across domain types).

Day 2: Security, Web Services, and Data Management

Module 5: System Security and Hardening

  • Access Management (Standard Linux user and group administration).
  • Terminal Protection (Best practices for console security and physical access).
  • Stateful Filtering (Configuring the system firewall using netfilter tools).
  • Mandatory Access Control (Managing and enforcing security profiles with AppArmor).
  • PKI Management (Generating and managing digital certificates for secure services).
  • Virtual Private Networking (VPN) (Overview of VPN deployment strategies).

Module 6: Web Service Provisioning

  • Core HTTP Server (Installation and basic configuration of Apache2 HTTPD).
  • Scripting Runtimes (Integrating PHP8 for dynamic web applications).
  • Proxy and Caching (Implementing the Squid proxy server for content acceleration).
  • Framework Deployment (Setting up the runtime environment for Ruby on Rails).
  • Advanced Applications (Overview of Apache Tomcat for Java applications and Apache Kafka for stream processing).

Module 7: Data Services and Collaboration

  • Relational Databases (Installation and initial setup of MySQL/MariaDB and PostgreSQL).
  • Knowledge Management (Deploying wiki applications like Moin Moin and MediaWiki).
  • Version Control (Conceptual overview of various systems: Bazaar, Subversion (SVN), CVS, Mercurial, and GIT).
  • Configuration Tracking (Using a Version Control System to manage the /etc configuration directory).

Day 3: File Sharing, Backup, and Modern Infrastructure

Module 8: File and Print Sharing

  • Server Messaging Block (SMB) (Implementing Samba for file and print sharing with Windows clients).
  • Samba Security (Hardening file and print services).
  • Domain Integration (Configuring Samba as a Domain Controller and integrating with Active Directory).
  • Alternative Integration (Overview of legacy integration tools like Likewise Open).
  • Distributed File System (Configuring Network File System (NFS) for Unix environments).
  • Printing Services (Setting up CUPS as a central print server).

Module 9: Email Infrastructure

  • Mail Transfer Agents (MTA) (Configuring Postfix and Exim4 for message routing).
  • Mail Retrieval Agents (Implementing Dovecot Server for IMAP/POP3 access).
  • Filtering and Spam Control (Techniques for mail filtering).
  • Mailing List Management (Setting up Mailman for large-scale group communication).

Module 10: Backup and Disaster Recovery

  • Custom Backup Solutions (Utilizing shell scripts for simple archive creation and rotation).
  • Advanced Backup Suites (Overview of Bacula and Rsnapshot for enterprise-grade solutions).
  • Data Consistency (Introduction to Block Device Replication).

Module 11: Virtualization and Cloud Concepts

  • Hypervisor Management (Using libvirt to manage virtualization technologies like QEMU and KVM).
  • Desktop Virtualization (Working with VirtualBox and VMware).
  • Cloud Templates (Introduction to Packer.io for image creation).
  • Cloud Platforms (Interfacing with EC2 (AWS) and OpenStack).
  • Containerization (Managing system containers with LXD and LXC).
  • Monitoring and Management (Using tools like Byobu, Munin, Nagios, and Puppet for system oversight).