145 Mapping courses in London

The Art of Negotiation (In-Person) Confidence, rapport, curiosity, and patience are essential ingredients to successfully handling a difficult conversation and negotiation. In this course, you will learn to identify and manage aspects of a negotiation, distinguish needs from wants, and manage expectations. The course will cover communication best practices, strategies for handling difficult conversations, and the basics of the art of negotiation. What You Will Learn You'll learn how to: Master the different ways to say 'no' Determine negotiation strategies based on typical client strategies Develop solutions to break deadlocks Getting Started Introductions Course structure Course goals and objectives Establishing personal learning objectives Foundation Concepts Exercise: Most Challenging Scenarios and Outcomes Debrief: Impact versus intent Addressing customer expectations Needs versus wants Key skills for managing customer relationships o Elicitation (requirements gathering) o Communication and active listening o Sensitivity and empathy Handling Difficult Conversations Saying 'no' The Ladder of Inference 4-Step approach for handling difficult conversations Characteristics of a trusted advisor Communication Best Practices Attunement and active listening Exercise: Identifying Effective Techniques Communication pitfalls and best practices Building rapport and influence Words of wisdom Exercise: Reflection on Challenges Negotiation Strategies Negotiation basics Five phases of negotiation Identifying different strategies o Traditional versus Progressive o Hard - Soft - Principled o Exercise: Your Preferred Techniques Selecting appropriate strategy for project negotiations o Common pitfalls to avoid o The impact of culture on negotiation Looking at conflict through the lens of negotiation Exercise: Mapping a Resolution

Total IP multicast training course description This training course provides an advanced three day hands on study of IP multicast technology focusing on architectures, applications and protocols. All aspects of IP multicasting are covered including PC, server and switch implementations. Design, configuration, support and troubleshooting are all covered in the course. Hands on sessions are used to reinforce the theory rather than teach specific implementations. What will you learn Design multicast networks. Explain how multicast networks work. Compare and contrast the different multicast routing protocols, such as DVMRP, PIM, MBGP and SSM. Configure PCs, servers, switches and routers for multicasting. Configure multicast routing protocols including: PIM Dense Mode. PIM Sparse Mode BGP SSM Troubleshoot multicast networks. Total IP multicast training course details Who will benefit: Technical staff working with IP multicasts. Prerequisites: TCP/IP Foundation for engineers Duration 3 days Total IP multicast training course contents Introduction What is multicasting? Why multicast? Why not multicast? Multicasting vs. multiple unicasts, Multicasting vs. broadcasts, multicasting applications, the use of unicast addressing for setting up multicast applications, multicast use within standard protocols such as OSPF. hands on Example multicast applications. Addressing Layer two multicast addresses, Class D addresses, mapping layer 3 addresses onto layer 2 multicast addresses. Multicast addresses on NBMAs, scoping multicast traffic, Multicast address blocks, GLOP, IPv6 and multicasting, anycasting. hands on Multicast addressing. Multicast architectures Where the different protocols are used, PC to router, router to router, how switches can get involved. hands on Analysing multicast packets. PC to router Configuring Class D addresses, IGMP, packet formats, queries, reports, maintaining groups, enhancements to IGMP (v2 and v3), Leaving a group, querier elections, hands on Analysing IGMP packets. Switches and multicasting Controlling multicast traffic with switches, VLANS, static bridge table entries, IGMP snooping, CGMP. hands on Configuring switches for multicast environments. Router to router MOSPF, DVMRP, PIM Sparse Mode, PIM Dense Mode, MBGP. hands on Simple router configuration for multicasting. Theory behind multicast routing protocols Distribution trees, source distribution trees, shared trees, core based trees. Reverse path forwarding, Multicast routing protocol types. PIM DM: Flooding, pruning, PIM designated routers, hands on configuring PIM DM. PIM Sparse mode Rendevous points, discovering RPs, hands on Configuring PIM SM, using different protocols for different groups. PIM SM with one RP, using multiple RPs, Auto RP. MBGP Multiprotocol routing, how does MBGP work? How MBGP carries multiple protocol information, MBGP and multicasts, MBGP and IPv6. hands on Configuring MBGP for multicasts. Internet multicasting The internet, ISPs, the MBone, tunnelling, Inter domain multicasting, the role of MBGP, Inter domain problem, MSDP, MSDP operation SSM, PIM-SM and shared trees, SSM, PIM-SSM operation, SSM benefits. hands on MSDP configuration. SSM configuration.

Lean Six Sigma Green Belt Certification Program: In-House Training This learning series is designed to enable participants to fulfill the important role of a Lean Six Sigma Green Belt and to incorporate the Lean Six Sigma mindset into their leadership skills. Green Belt is not just a role, it is also a competency required for leadership positions at many top companies. This learning series is designed to enable participants to fulfill the important role of a Lean Six Sigma Green Belt and to incorporate the Lean Six Sigma mindset into their leadership skills. With a real-world project focus, the series will teach the fundamental methodology, tools, and techniques of the Define, Measure, Analyze, Improve and Control Process Improvement Methodology. This course is delivered through sixteen 3-hour online sessions. What you Will Learn At the end of this program, you will be able to: Identify strategies for effectively leading high performing process improvement teams Analyze whether projects align with business strategy Apply process improvement methodologies to DMAIC steps, based on real world scenarios Explain ways to appropriately respond to process variation Distinguish among best practice problem solving methodologies Evaluate and effectively communicate data-driven decisions, based on real world scenarios Introduction Lean Six Sigma & quality The vision The methodologies The metric Project Selection Why Projects Random idea generation Targeted idea generation CTQs (Critical to Quality) & projects Project screening criteria Quick improvements Introduction to Define Project Planning Developing the core charter Developing a project charter Facilitation Process Management Business process management Top-down process mapping Voice of the Customer Voice of Customer Stakeholder analysis Communication planning Kicking off the project Define Summary Introduction to Measure Data Collection Fact-based decision making Data sampling Operations definitions Data collection plan Measurement system analysis Graphical Statistics for Continuous Data Meet Six SigmaXL Graphical & statistical tools Data stratification Graphical Statistics for Discrete Data Pareto analysis Dot plots Plotting data over time: Looking for patterns Variation Concepts Variation is reality Special Cause and Common Cause variation Example of standard business reporting Individuals Control Chart Process Capability Genesis of process capability Calculating the metrics of Six Sigma Yield metrics: Measuring process efficiency Cost of Poor Quality The Cost of Poor Quality (COPQ) Cost of Quality categories Calculating the Cost of Poor Quality Measure Summary Introduction to Analyze Process Analysis Introduction to process analysis Value-added analysis Cycle time analysis WIP & pull systems Analyzing bottlenecks and constraints Cause & Effect Analysis Fishbone/Ishikawa diagram 5-Whys analysis Graphical & statistical tools Advanced Analysis Why use hypothesis rests? Hypothesis tests Correlation and regression analysis Analyze Summary Introduction to Improve Solutions Creativity techniques Generating alternative solutions Solution selection techniques Introduction to Design of Experiments Introduction to DOE DOE activity Error Proofing Failure mode & effect analysis Poka-Yoke Project Management Fundamentals Successful teams Project roles Conflict management Standardization Standardization The Visual Workplace 5S Piloting & Verifying Results What is a pilot? Evaluating results Improve Summary Introduction to Control Statistical Process Control Review of Special & Common Cause variation Review of Individual Control Chart P-Chart for discrete proportion data Transition Planning Control plan Project closure Control Summary Summary and Next Steps

Lean Six Sigma Green Belt Certification Program This learning series is designed to enable participants to fulfill the important role of a Lean Six Sigma Green Belt and to incorporate the Lean Six Sigma mindset into their leadership skills. Green Belt is not just a role, it is also a competency required for leadership positions at many top companies. This learning series is designed to enable participants to fulfill the important role of a Lean Six Sigma Green Belt and to incorporate the Lean Six Sigma mindset into their leadership skills. With a real-world project focus, the series will teach the fundamental methodology, tools, and techniques of the Define, Measure, Analyze, Improve and Control Process Improvement Methodology. This course is delivered through sixteen 3-hour online sessions. What you Will Learn At the end of this program, you will be able to: Identify strategies for effectively leading high performing process improvement teams Analyze whether projects align with business strategy Apply process improvement methodologies to DMAIC steps, based on real world scenarios Explain ways to appropriately respond to process variation Distinguish among best practice problem solving methodologies Evaluate and effectively communicate data-driven decisions, based on real world scenarios Introduction Lean Six Sigma & quality The vision The methodologies The metric Project Selection Why Projects Random idea generation Targeted idea generation CTQs (Critical to Quality) & projects Project screening criteria Quick improvements Introduction to Define Project Planning Developing the core charter Developing a project charter Facilitation Process Management Business process management Top-down process mapping Voice of the Customer Voice of Customer Stakeholder analysis Communication planning Kicking off the project Define Summary Introduction to Measure Data Collection Fact-based decision making Data sampling Operations definitions Data collection plan Measurement system analysis Graphical Statistics for Continuous Data Meet Six SigmaXL Graphical & statistical tools Data stratification Graphical Statistics for Discrete Data Pareto analysis Dot plots Plotting data over time: Looking for patterns Variation Concepts Variation is reality Special Cause and Common Cause variation Example of standard business reporting Individuals Control Chart Process Capability Genesis of process capability Calculating the metrics of Six Sigma Yield metrics: Measuring process efficiency Cost of Poor Quality The Cost of Poor Quality (COPQ) Cost of Quality categories Calculating the Cost of Poor Quality Measure Summary Introduction to Analyze Process Analysis Introduction to process analysis Value-added analysis Cycle time analysis WIP & pull systems Analyzing bottlenecks and constraints Cause & Effect Analysis Fishbone/Ishikawa diagram 5-Whys analysis Graphical & statistical tools Advanced Analysis Why use hypothesis rests? Hypothesis tests Correlation and regression analysis Analyze Summary Introduction to Improve Solutions Creativity techniques Generating alternative solutions Solution selection techniques Introduction to Design of Experiments Introduction to DOE DOE activity Error Proofing Failure mode & effect analysis Poka-Yoke Project Management Fundamentals Successful teams Project roles Conflict management Standardization Standardization The Visual Workplace 5S Piloting & Verifying Results What is a pilot? Evaluating results Improve Summary Introduction to Control Statistical Process Control Review of Special & Common Cause variation Review of Individual Control Chart P-Chart for discrete proportion data Transition Planning Control plan Project closure Control Summary Summary and Next Steps

About this Training Growing global competitiveness in the refining products' market requires an in-depth knowledge of fuel technology processes, global quality standards and quality monitoring procedures. As the global market turns to cleaner fuels with more stringent specifications, the market in which refiners operate in, is getting more sophisticated and challenging. Training Objectives Upon completion of this course, participants will be able to: Get a clear overview of processing background and how white products are produced and blended Understand the blending impact on product quality and how to deal with quality giveaways, stability of blends and specification margins Get a clear overview of fuel blending operations, blending principles, specifics and operations Understand the role of additives and how additives are selected and used to meet the specification for different products and different markets Realize the importance of specifications, their limitations and how to ensure that the product is fit for purpose Be able to correctly interpret the laboratory results Target Audience The course is intended for individuals who are interested in the field of refining blending. The following personnel will benefit from the knowledge shared in this course: Plant operative planning and scheduling specialists Oil products trading and blending personnel Laboratory supervisors and technical personnel Sales, marketing and product trading personnel Refinery market and research analysts Process and chemical Engineers Personnel from the oil, fuel, biofuel, additive and auto industries Regulatory and policy-makers personnel Course Level Basic or Foundation Trainer Your expert course leader is an experienced manager with more than 25 years of operational experience in the downstream Oil & Gas industry. She is a recognised expert in conventional, biofuels and alternative fuels with extensive experience in the crude selection process and formulation of finished products including product portfolio strategy, product quality road mapping and benchmarking. She is a long-time laboratory manager with comprehensive experience in laboratory processes, including financing, benchmarking, efficiency improvement and total quality management processes. POST TRAINING COACHING SUPPORT (OPTIONAL) To further optimise your learning experience from our courses, we also offer individualized 'One to One' coaching support for 2 hours post training. We can help improve your competence in your chosen area of interest, based on your learning needs and available hours. This is a great opportunity to improve your capability and confidence in a particular area of expertise. It will be delivered over a secure video conference call by one of our senior trainers. They will work with you to create a tailor-made coaching program that will help you achieve your goals faster. Request for further information post training support and fees applicable Accreditions And Affliations

Securing UNIX systems training course description This course teaches you everything you need to know to build a safe Linux environment. The first section handles cryptography and authentication with certificates, openssl, mod_ssl, DNSSEC and filesystem encryption. Then Host security and hardening is covered with intrusion detection, and also user management and authentication. Filesystem Access control is then covered. Finally network security is covered with network hardening, packet filtering and VPNs. What will you learn Secure UNIX accounts. Secure UNIX file systems. Secure UNIX access through the network. Securing UNIX systems course details Who will benefit: Linux technical staff needing to secure their systems. Prerequisites: Linux system administration (LPIC-1) Duration 5 days Securing UNIX systems course contents Cryptography Certificates and Public Key Infrastructures X.509 certificates, lifecycle, fields and certificate extensions. Trust chains and PKI. openssl. Public and private keys. Certification authority. Manage server and client certificates. Revoke certificates and CAs. Encryption, signing and authentication SSL, TLS, protocol versions. Transport layer security threats, e.g. MITM. Apache HTTPD with mod_ssl for HTTPS service, including SNI and HSTS. HTTPD with mod_ssl to authenticate users using certificates. HTTPD with mod_ssl to provide OCSP stapling. Use OpenSSL for SSL/TLS client and server tests. Encrypted File Systems Block device and file system encryption. dm-crypt with LUKS to encrypt block devices. eCryptfs to encrypt file systems, including home directories and, PAM integration, plain dm-crypt and EncFS. DNS and cryptography DNSSEC and DANE. BIND as an authoritative name server serving DNSSEC secured zones. BIND as an recursive name server that performs DNSSEC validation, KSK, ZSK, Key Tag, Key generation, key storage, key management and key rollover, Maintenance and resigning of zones, Use DANE. TSIG. Host Security Host Hardening BIOS and boot loader (GRUB 2) security. Disable useless software and services, sysctl for security related kernel configuration, particularly ASLR, Exec-Shield and IP / ICMP configuration, Exec-Shield and IP / ICMP configuration, Limit resource usage. Work with chroot environments, Security advantages of virtualization. Host Intrusion Detection The Linux Audit system, chkrootkit, rkhunter, including updates, Linux Malware Detect, Automate host scans using cron, AIDE, including rule management, OpenSCAP. User Management and Authentication NSS and PAM, Enforce password policies. Lock accounts automatically after failed login attempts, SSSD, Configure NSS and PAM for use with SSSD, SSSD authentication against Active Directory, IPA, LDAP, Kerberos and local domains, Kerberos and local domains, Kerberos tickets. FreeIPA Installation and Samba Integration FreeIPA, architecture and components. Install and manage a FreeIPA server and domain, Active Directory replication and Kerberos cross-realm trusts, sudo, autofs, SSH and SELinux integration in FreeIPA. Access Control Discretionary Access Control File ownership and permissions, SUID, SGID. Access control lists, extended attributes and attribute classes. Mandatory Access Control TE, RBAC, MAC, DAC. SELinux, AppArmor and Smack. etwork File Systems NFSv4 security issues and improvements, NFSv4 server and clients, NFSv4 authentication mechanisms (LIPKEY, SPKM, Kerberos), NFSv4 pseudo file system, NFSv4 ACLs. CIFS clients, CIFS Unix Extensions, CIFS security modes (NTLM, Kerberos), mapping and handling of CIFS ACLs and SIDs in a Linux system. Network Security Network Hardening FreeRADIUS, nmap, scan methods. Wireshark, filters and statistics. Rogue router advertisements and DHCP messages. Network Intrusion Detection ntop, Cacti, bandwidth usage monitoring, Snort, rule management, OpenVAS, NASL. Packet Filtering Firewall architectures, DMZ, netfilter, iptables and ip6tables, standard modules, tests and targets. IPv4 and IPv6 packet filtering. Connection tracking, NAT. IP sets and netfilter rules, nftables and nft. ebtables. conntrackd Virtual Private Networks OpenVPN server and clients for both bridged and routed VPN networks. IPsec server and clients for routed VPN networks using IPsec-Tools / racoon. L2TP.

ITIL® 4 Specialist: Drive Stakeholder Value: In-House Training The ITIL® 4 Specialist: Drive Stakeholder Value module is part of the Managing Professional stream for ITIL 4. Candidates need to pass the related certification exam for working towards the Managing Professional (MP) designation. This course is based on the ITIL® 4 Specialist: Drive Stakeholder Value exam specifications from AXELOS. With the help of ITIL® 4 concepts and terminology, exercises, and examples included in the course, candidates acquire the relevant knowledge required to pass the certification exam. What You Will Learn The learning objectives of the course are based on the following learning outcomes of the ITIL® 4 Specialist: Drive Stakeholder Value exam specification: Understand how customer journeys are designed Know how to target markets and stakeholders Know how to foster stakeholder relationships Know how to shape demand and define service offerings Know how to align expectations and agree on details of services Know how to onboard and offboard customers and users Know how to act together to ensure continual value co-creation (service consumption / provisioning) Know how to realize and validate service value Customer Journey Purpose of the Module Purpose of Mastering the Customer Journey Touchpoints and Service Interactions Module Topics Mapping the Customer Journey Designing the Customer Journey Measuring and Improving the Customer Journey Customer Journey Step 1: Explore Purpose of the Module Purpose of the Explore Step Module Topics Understanding Service Consumers Understanding Service Providers Understanding and Targeting Markets Customer Journey Step 2: Engage Purpose of the Module Purpose of the Engage Step Aspects of Service Value Module Topics Service Relationship Types Building Service Relationships Building and Sustaining Trust and Relationships Analyzing Customer Needs Managing Suppliers and Partners Customer Journey Step 3: Offer Purpose of the Module Purpose of Shaping Demand and Service Offerings Module Topics Managing Demand and Opportunities Specifying and Managing Customer Requirements Designing Service Offerings and User Experience Selling and Obtaining Service Offerings Customer Journey Step 4: Agree Purpose of the Module Purpose of Aligning Expectations and Agreeing on Services Module Topics Agreeing on and Planning Value Co-Creation Negotiating and Agreeing on a Service Customer Journey Step 5: Onboard Purpose of the Module Purpose of Onboarding and Offboarding ITIL® Management Practices Module Topics Planning Onboarding Fostering Relationships with Users Providing User Engagement and Delivery Channels Enabling Users for Service Elevating Mutual Capabilities Offboarding Customer Journey Step 6: Co-create Purpose of the Module Purpose of Service Provision and Consumption Module Topics Service Mindset Ongoing Service Interactions Nurturing User Communities Customer Journey Step 7: Realize Purpose of the Module Measuring Service Value Purpose of Value Capturing and Customer Journey Improvement Realizing Service Value in Different Settings Module Topics Tracking Value Realization Assessing and Reporting Value Realization Evaluating Value Realization and Improving Customer Journeys Realizing Value for the Service Provider

ITIL® 4 Specialist: Drive Stakeholder Value The ITIL® 4 Specialist: Drive Stakeholder Value module is part of the Managing Professional stream for ITIL 4. Candidates need to pass the related certification exam for working towards the Managing Professional (MP) designation. This course is based on the ITIL® 4 Specialist: Drive Stakeholder Value exam specifications from AXELOS. With the help of ITIL® 4 concepts and terminology, exercises, and examples included in the course, candidates acquire the relevant knowledge required to pass the certification exam. What You Will Learn The learning objectives of the course are based on the following learning outcomes of the ITIL® 4 Specialist: Drive Stakeholder Value exam specification: Understand how customer journeys are designed Know how to target markets and stakeholders Know how to foster stakeholder relationships Know how to shape demand and define service offerings Know how to align expectations and agree on details of services Know how to onboard and offboard customers and users Know how to act together to ensure continual value co-creation (service consumption / provisioning) Know how to realize and validate service value Customer Journey Purpose of the Module Purpose of Mastering the Customer Journey Touchpoints and Service Interactions Module Topics Mapping the Customer Journey Designing the Customer Journey Measuring and Improving the Customer Journey Customer Journey Step 1: Explore Purpose of the Module Purpose of the Explore Step Module Topics Understanding Service Consumers Understanding Service Providers Understanding and Targeting Markets Customer Journey Step 2: Engage Purpose of the Module Purpose of the Engage Step Aspects of Service Value Module Topics Service Relationship Types Building Service Relationships Building and Sustaining Trust and Relationships Analyzing Customer Needs Managing Suppliers and Partners Customer Journey Step 3: Offer Purpose of the Module Purpose of Shaping Demand and Service Offerings Module Topics Managing Demand and Opportunities Specifying and Managing Customer Requirements Designing Service Offerings and User Experience Selling and Obtaining Service Offerings Customer Journey Step 4: Agree Purpose of the Module Purpose of Aligning Expectations and Agreeing on Services Module Topics Agreeing on and Planning Value Co-Creation Negotiating and Agreeing on a Service Customer Journey Step 5: Onboard Purpose of the Module Purpose of Onboarding and Offboarding ITIL® Management Practices Module Topics Planning Onboarding Fostering Relationships with Users Providing User Engagement and Delivery Channels Enabling Users for Service Elevating Mutual Capabilities Offboarding Customer Journey Step 6: Co-create Purpose of the Module Purpose of Service Provision and Consumption Module Topics Service Mindset Ongoing Service Interactions Nurturing User Communities Customer Journey Step 7: Realize Purpose of the Module Measuring Service Value Purpose of Value Capturing and Customer Journey Improvement Realizing Service Value in Different Settings Module Topics Tracking Value Realization Assessing and Reporting Value Realization Evaluating Value Realization and Improving Customer Journeys Realizing Value for the Service Provider

About this Training Course This 5 full-day course has been designed to develop skills in understanding the geometry and petrophysical characteristics of carbonate reservoirs. Depositional fabric, grain type and size and subsequent diagenetic modifications are the major controls on carbonate reservoir behaviour. The complex inter-relationship of the depositional and burial history can be unravelled to allow prediction of reservoir facies and reconstruction of three-dimensional reservoir models. This course will demonstrate the value of the reservoir model in volumetric assessment and development of carbonate reservoirs. *Previous knowledge of carbonate sedimentology is not required. Course Content in Summary: Carbonate reservoirs: Basic principles; depositional concepts; grain types; textures and fabrics; environmental reconstruction. The reservoir model - depositional and diagenetic characteristics: Sabkha/tidal flat; lagoon; shelf; reef (rudist and coral/algal); barrier/shoal; slope and redeposited; aeolian and lacustrine; karst plays. Carbonate diagenesis: Primary and secondary porosity; compaction; pressure solution; cementation; dolomitisation; porosity generation and destruction; fractures. Carbonate sequence stratigraphy Log response in carbonate rocks: Gamma; sonic; neutron; density; FMS. Reservoir assessment: Fracture reservoirs; reservoir modelling; volumetric assessment in correlation and mapping; effects of capillary pressure; interface with engineering. Training Objectives By attending this course, participants will be able to: Understand carbonate depositional systems and controls. Recognise and model controls on reservoir quality and pore systems, including diagenesis and fracturing. Understand and apply carbonate seismic stratigraphy and sequence stratigraphy. Interpret log responses. Target Audience This course is intended for petroleum geologists, explorationists, petrophysicists, geophysicists and engineers involved with exploration of carbonate plays and development of carbonate reservoirs. Trainer Your expert course leader is a Director and Senior Consultant Geologist who has worked on various carbonate consultancy projects, conducted detailed sedimentological, sequence stratigraphic and diagenetic technical studies and delivered training programmes. He was formerly Managing Director of Robertson UK Limited and was responsible for the integration between different disciplines, recognition, and encouragement of technical innovation and research and development programmes across all oil and gas divisions in the company. He was also responsible for all aspects of the performance of the main Geological, Geophysical and Reservoir Engineering Services in the company. POST TRAINING COACHING SUPPORT (OPTIONAL) To further optimise your learning experience from our courses, we also offer individualized 'One to One' coaching support for 2 hours post training. We can help improve your competence in your chosen area of interest, based on your learning needs and available hours. This is a great opportunity to improve your capability and confidence in a particular area of expertise. It will be delivered over a secure video conference call by one of our senior trainers. They will work with you to create a tailor-made coaching program that will help you achieve your goals faster. Request for further information post training support and fees applicable Accreditions And Affliations

Securing Linux systems training course description This course teaches you everything you need to know to build a safe Linux environment. The first section handles cryptography and authentication with certificates, openssl, mod_ssl, DNSSEC and filesystem encryption. Then Host security and hardening is covered with intrusion detection, and also user management and authentication. Filesystem Access control is then covered. Finally network security is covered with network hardening, packet filtering and VPNs. What will you learn Secure Linux accounts. Secure Linux file systems. Secure Linux access through the network. Securing Linux systems training course details Who will benefit: Linux technical staff needing to secure their systems. Prerequisites: Linux system administration (LPIC-1) Duration 5 days Securing Linux systems training course contents Cryptography Certificates and Public Key Infrastructures X.509 certificates, lifecycle, fields and certificate extensions. Trust chains and PKI. openssl. Public and private keys. Certification authority. Manage server and client certificates. Revoke certificates and CAs. Encryption, signing and authentication SSL, TLS, protocol versions. Transport layer security threats, e.g. MITM. Apache HTTPD with mod_ssl for HTTPS service, including SNI and HSTS. HTTPD with mod_ssl to authenticate users using certificates. HTTPD with mod_ssl to provide OCSP stapling. Use OpenSSL for SSL/TLS client and server tests. Encrypted File Systems Block device and file system encryption. dm-crypt with LUKS to encrypt block devices. eCryptfs to encrypt file systems, including home directories and, PAM integration, plain dm-crypt and EncFS. DNS and cryptography DNSSEC and DANE. BIND as an authoritative name server serving DNSSEC secured zones. BIND as an recursive name server that performs DNSSEC validation, KSK, ZSK, Key Tag, Key generation, key storage, key management and key rollover, Maintenance and resigning of zones, Use DANE. TSIG. Host Security Host Hardening BIOS and boot loader (GRUB 2) security. Disable useless software and services, sysctl for security related kernel configuration, particularly ASLR, Exec-Shield and IP / ICMP configuration, Exec-Shield and IP / ICMP configuration, Limit resource usage. Work with chroot environments, Security advantages of virtualization. Host Intrusion Detection The Linux Audit system, chkrootkit, rkhunter, including updates, Linux Malware Detect, Automate host scans using cron, AIDE, including rule management, OpenSCAP. User Management and Authentication NSS and PAM, Enforce password policies. Lock accounts automatically after failed login attempts, SSSD, Configure NSS and PAM for use with SSSD, SSSD authentication against Active Directory, IPA, LDAP, Kerberos and local domains, Kerberos and local domains, Kerberos tickets. FreeIPA Installation and Samba Integration FreeIPA, architecture and components. Install and manage a FreeIPA server and domain, Active Directory replication and Kerberos cross-realm trusts, sudo, autofs, SSH and SELinux integration in FreeIPA. Access Control Discretionary Access Control File ownership and permissions, SUID, SGID. Access control lists, extended attributes and attribute classes. Mandatory Access Control TE, RBAC, MAC, DAC. SELinux, AppArmor and Smack. etwork File Systems NFSv4 security issues and improvements, NFSv4 server and clients, NFSv4 authentication mechanisms (LIPKEY, SPKM, Kerberos), NFSv4 pseudo file system, NFSv4 ACLs. CIFS clients, CIFS Unix Extensions, CIFS security modes (NTLM, Kerberos), mapping and handling of CIFS ACLs and SIDs in a Linux system. Network Security Network Hardening FreeRADIUS, nmap, scan methods. Wireshark, filters and statistics. Rogue router advertisements and DHCP messages. Network Intrusion Detection ntop, Cacti, bandwidth usage monitoring, Snort, rule management, OpenVAS, NASL. Packet Filtering Firewall architectures, DMZ, netfilter, iptables and ip6tables, standard modules, tests and targets. IPv4 and IPv6 packet filtering. Connection tracking, NAT. IP sets and netfilter rules, nftables and nft. ebtables. conntrackd Virtual Private Networks OpenVPN server and clients for both bridged and routed VPN networks. IPsec server and clients for routed VPN networks using IPsec-Tools / racoon. L2TP.