Configuring ACL Permissions on Files
Learn On Demand Pro Series

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Time
1 hour
Difficulty
Beginner

During this IT Pro Challenge provided by Learn on Demand Systems you will use Access Control Lists to assign different levels of access to resources for different users and groups.NOTE: Before you begin, please ensure ...

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Overview

Lab Name: Configuring ACL Permissions on Files Vendor: Learn on Demand Systems Time: 60 minutes Level: Advanced Career Path: Linux: Command-Line and File System-Challenge Series Audience Level: Intermediate Work Roles: System Administrator Number of Courses in Learning Path: 10 Course Tags: Advanced, IT Pro Challenges, Linux, Linux: Command-Line and File System-Challenge Series, Now

Objectives:

  1. To create the necessary resources.
  2. To create the ACL entries that grant two groups - two different levels of access to two different directories.
  3. To create ACL entries that grant two users - two different levels of access to two different directories.
  4. To delete ACL entries for a directory.

Tasks:

  1. Create users, groups, directories, and files
  2. Set ownership, group associations, and standard permissions on directories
  3. Configure ACL entries for directories to allow multiple users to access the resources
  4. Configure ACL entries that allow multiple groups different levels of access to directories
  5. Remove an ACL entry

Skills: Learn to use Command Line Interface System Management Commands such as useradd and groupadd, the chown User Command and Access Control List commands such as getfacl and setfacl. Set and test standard permissions, ownerships, group associations, and ACL entries on files and directories assigned to the user accounts and groups at different levels of access.

Introduction: The Learn on Demand Systems' Configuring ACL Permissions on Files is a premium Cybrary lab that trains students to learn the System Management utilities such as useradd and groupadd in the Command Line Interface as well as utilities defined for ACLs such as getfacl and setfacl too. The Configuring ACL Permissions on Files lab is intended for Intermediate level students and learners.

The Learn on Demand Systems' Configuring ACL Permissions on Files Lab is aimed towards the System Administrator work profile. Upon successful completion of Learn on Demand Systems' Configuring ACL Permissions on Files Lab, the student will be able to create users, groups, directories, and files using the useradd, groupadd, mkdir and touch utilities as well as set the standard permissions and ownerships for the users and groups created. Learn on Demand Systems' Configuring ACL Permissions on Files Lab takes 45-60 minutes to complete for most students.

Skills/Activity Breakdown: The Configuring ACL Permissions on Files Lab aims at teaching students to create users using useradd System Management utility in Linux. Also, it includes a tutorial to create user groups and directories to the user accounts created and using groupadd System Management utility, while also setting up read-write-execute-access permissions for these user accounts and groups. A student learns good usage of useradd and groupadd utilities of system managing operations.

The Lab also aims at teaching students to assign/set ownership, group associations, and standard permissions on files and directories using chown user command utility in Linux. Also, it includes a tutorial to assign and configure permissions for user accounts, user groups of the files and directories using chmod user command, while also setting-up read-write-execute access permissions for the contents. A student learns good usage of setting-up, assigning and modifying permissions. Working with the chown command-line utility allows administrators to manage the ownership and set access privileges as well as configure permissions of the various resources in the Linux system.

The Lab teaches students to configure Access Control Lists(ACL) entries for directories to allow multiple users to access the resources and test the assigned permissions to the user accounts and groups. Displaying the access permissions' checking for correct access to be set-up using the ls -raluhs and ls -ld commands, checking and updating the ownership permissions on files and directories are some of the tasks a student learns in the lab. Students will receive a hands-on the following variety of system, user and file management tool commands as mentioned here: ls, useradd, groupadd, chown, mkdir, cd, touch, getfacl, setfacl.

The Lab teaches students to remove the Access Control Lists(ACL) entries for directories to disallow multiple users accessing the resources as well as disallow multiple user groups accessing those resources and test the assigned permissions to the user accounts and groups using the setfacl and getfacl Access Control List commands.

Completion of Learn on Demand Systems' Configuring ACL Permissions on Files Lab means that the student has demonstrated the ability to use Linux Command Line System Management, User, File management and Access Control List command utilities to create user accounts, groups and assign ownership and access permissions as well as test the access privileges of files, directories, user accounts and user groups in Linux environment.

Scenario: You are a system administrator for a company that uses Linux file servers. You need to manage permissions to resources by using Access Control Lists (ACLs). First, you will create the required resources. Next, you will configure standard Linux permissions, and then you will create ACL entries. Finally, you will remove ACL entries from the resources. You need to create user accounts and add them to user groups as well as assign ownership and permissions to the files, directories with accurate access privileges that will possibly prevent Privilege Escalation. You will be using System and File Management command utilities as well as User command utilities too.

Environment: You will use a default installation of CentOS 7 Linux with the Server with the GUI package installed. Non-privileged accounts have been created for you. You will be guided through the process of adding software if necessary.

NOTE: An Advanced Challenge is similar to a traditional lab, but replaces the step-by-step instructions with goals and objectives along with detailed hints, which allow students to check their work as they progress. Before you begin, please ensure you have set aside enough time to complete this challenge as you will not be able to pause, save, or return to your progress.

Learn on Demand Systems' Configuring ACL Permissions on Files Lab is a part of the Linux: Command-Line and File System-Challenge Series Learning path presented by Cybrary and the lab is created by Learn on Demand Systems.

Click on the Launch the Lab button to assess your knowledge about the Linux Command Line Access Control Lists(ACLs) to assign different levels of access to resources for different users and groups.