Download RedHat EX200 Exam Dumps to Pass Exam Easily in 2024
Get 100% Real Free RHCSA EX200 Sample Questions
NEW QUESTION # 43
Open kmcrl value of 5 , and can verify in /proc/ cmdline
Answer:
Explanation:
# vim /boot/grub/grub.conf
kernel/vmlinuz-2.6.32-71.el6.x86_64 ro root=/dev/mapper/GLSvg-GLSrootrd_LVM_LV=GLSvg/GLSroot rd_LVM_LV=GLSvg/GLSswaprd_NO_LUKSrd_NO_MDrd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYBOARDTYPE=pc KEYTABLE=us crashkernel=auto rhgb quiet kmcrl=5 Restart to take effect and verification:
# cat /proc/cmdline
ro root=/dev/mapper/GLSvg-GLSroot rd_LVM_LV=GLSvg/GLSroot rd_LVM_LV=GLSvg/GLSswap rd_NO_LUKS rd_NO_MD rd_NO_DM LANG=en_US.UTF-8 SYSFONT=latarcyrheb-sun16 KEYBOARDTYPE=pc KEYTABLE=us rhgb quiet kmcrl=5
NEW QUESTION # 44
Install a FTP server, and request to anonymous download from /var/ftp/pub catalog. (it needs you to configure yum direct to the already existing file server.)
Answer:
Explanation:
# cd /etc/yum.repos.d
# vim local.repo
[local]
name=local.repo
baseurl=file:///mnt
enabled=1
gpgcheck=0
# yum makecache
# yum install -y vsftpd
# service vsftpd restart
# chkconfig vsftpd on
# chkconfig --list vsftpd
# vim /etc/vsftpd/vsftpd.conf
anonymous_enable=YES
NEW QUESTION # 45
SIMULATION
Binding to an external validation server.
System server.domain11.example.com provides a LDAP validation service, your system should bind to this service as required:
Base DN of validation service is dc=example,dc=com
LDAP is used for providing account information and validation information Connecting and using the certification of http://server.domain11.example.com/pub/EXAMPLE-CA-CERT to encrypt After the correct configuration, ldapuser1 can log into your system, it does not have HOME directory until you finish autofs questions, ldapuser1 password is password.
Answer:
Explanation:
See explanation below.
Explanation/Reference:
Explanation: yum -y install sssd authconfig-gtk krb5-workstation authconfig-gtk // open the graphical interface Modify user account database to ldap, fill up DN and LDAP SERVER as questions required, use TLS to encrypt connections making tick, write http://server.domain11.example.com/pub/EXAMPLE-CA-CERT to download ca, authentication method choose ldap password.
You can test if the ldapuser is added by the following command:
Id ldapuser1
Note: user password doesn't not need to set
NEW QUESTION # 46
A recently installed application writes log data to /opt/app/log/info.log. If Filebeat is already installed and
set up for communication with a remote Logstash, what has to be done in order to submit the log data of the
new application to Logstash?
- A. Replace /opt/app/log/info.logby a symbolic link to /dev/filebeatand restart the new application.
- B. Configure logrotate to execute filebeat -I /opt/app/log/info.log 0after each rotation of /opt/
app/log/info.log. - C. Add an additional input channel with the option source => "/opt/app/log/info.log"to the
Logstash configuration. - D. Add a new cron job that invokes filebeat -i /opt/app/log/info.logperiodically.
- E. Add the log file to the pathoption within the logprospector in the Filebeat configuration and restart
Filebeat.
Answer: A
NEW QUESTION # 47
Please open the ip_forward, and take effect permanently.
Answer:
Explanation:
see explanation below.
Explanation
* vim /etc/sysctl.conf net.ipv4.ip_forward = 1
* sysctl -w (takes effect immediately)
If no "sysctl.conf" option, use these commands:
* sysctl -a |grep net.ipv4
* sysctl -P net.ipv4.ip_forward = 1
* sysctl -w
NEW QUESTION # 48
Part 1 (on Node1 Server)
Task 5 [Controlling Access to Files with ACLs]
Copy the file /etc/fstab to /var/tmp. Configure the following permissions on /var/tmp/fstab.
The file /var/tmp/fstab is owned by root user
The file /var/tmp/fstab is belongs to the root group
The file /var/tmp/fstab should be executable by anyone
The user harry is able to read and write on /var/tmp/fstab
The user natasha can neither read or write on /var/tmp/fstab
All other users (Current or future) have the ability to read /var/tmp/fstab
Answer:
Explanation:
* [root@node1 ~]# cp -p /etc/fstab /var/tmp/
[root@node1 ~]# ls -lrt /etc/fstab
[root@node1 ~]# ls -lrt /var/tmp/fstab
[root@node1 ~]# chmod a+x /var/tmp/fstab
[root@node1 ~]# getfacl /var/tmp/fstab
[root@node1 ~]# setfacl -m u:harry:rw- /var/tmp/fstab
[root@node1 ~]# setfacl -m u:natasha:--- /var/tmp/fstab
[root@node1 ~]# getfacl /var/tmp/fstab
getfacl: Removing leading '/' from absolute path names
# file: var/tmp/fstab
# owner: root
# group: root
user::rwx
user:harry:rw-
user:natasha:---
group::r-x
mask::rwx
other::r-x
* [root@node1 ~]# su - natasha
[natasha@node1 ~]$ cat /var/tmp/fstab
cat: /var/tmp/fstab: Permission denied
NEW QUESTION # 49
Part 1 (on Node1 Server)
Task 14 [Managing SELinux Security]
You will configure a web server running on your system serving content using a non-standard port (82)
Answer:
Explanation:
* [root@node1 ~]# curl http://node1.domain15.example.com
curl: (7) Failed to connect to node1.domain15.example.com port 80: Connection refused
[root@node1 ~]# yum install httpd
[root@node1 ~]# systemctl enable --now httpd
Created symlink /etc/systemd/system/multi-user.target.wants/httpd.service → /usr/lib/systemd/system/httpd.service.
[root@node1 ~]# systemctl start httpd
[root@node1 ~]# systemctl status httpd
Status: "Running, listening on: port 80"
* [root@node1 ~]# wget http://node1.domain15.example.com
2021-03-23 13:27:28 ERROR 403: Forbidden.
[root@node1 ~]# semanage port -l | grep http
http_port_t tcp 80, 81, 443, 488, 8008, 8009, 8443, 9000
[root@node1 ~]# semanage port -a -t http_port_t -p tcp 82
[root@node1 ~]# semanage port -l | grep http
http_port_t tcp 82, 80, 81, 443, 488, 8008, 8009, 8443, 9000
[root@node1 ~]# firewall-cmd --zone=public --list-all
[root@node1 ~]# firewall-cmd --permanent --zone=public --add-port=82/tcp
[root@node1 ~]# firewall-cmd --reload
[root@node1 ~]# curl http://node1.domain15.example.com
OK
* root@node1 ~]# wget http://node1.domain15.example.com:82
Connection refused.
[root@node1 ~]# vim /etc/httpd/conf/httpd.conf
Listen 82
[root@node1 ~]# systemctl restart httpd
[root@node1 ~]# wget http://node1.domain15.example.com:82
2021-03-23 13:31:41 ERROR 403: Forbidden.
[root@node1 ~]# curl http://node1.domain15.example.com:82
OK
NEW QUESTION # 50
Download ftp://192.168.0.254/pub/boot.iso to /root, and mounted automatically under /media/cdrom and which take effect automatically at boot-start.
Answer:
Explanation:
# cd /root; wget ftp://192.168.0.254/pub/boot.iso
# mkdir -p /media/cdrom
# vim /etc/fstab
/root/boot.iso /media/cdrom iso9660 defaults,loop 0 0
# mount -a
mount [-t vfstype] [-o options] device dir
NEW QUESTION # 51
Create a 2G swap partition which take effect automatically at boot-start, and it should not affect the original swap partition.
Answer:
Explanation:
see explanation below.
Explanation
# fdisk /dev/sda
p
(check Partition table)
n
(create new partition: press e to create extended partition, press p to create the main partition, and the extended partition is further divided into logical partitions) Enter
+2G t
8 I
82
W
partx -a /dev/sda
partprobe
mkswap /dev/sda8
Copy UUID
swapon -a
vim /etc/fstab
UUID=XXXXX swap swap defaults 0 0
(swapon -s)
NEW QUESTION # 52
Configure the system synchronous as 172.24.40.10.
Answer:
Explanation:
see explanation below.
Explanation
Graphical Interfaces:
System-->Administration-->Date & Time
OR
# system-config-date
NEW QUESTION # 53
Create a collaborative directory/home/admins with the following characteristics:
Group ownership of /home/admins is adminuser
The directory should be readable, writable, and accessible to members of adminuser, but not to any other user.
(It is understood that root has access to all files and directories on the system.) Files created in /home/admins automatically have group ownership set to the adminuser group
Answer:
Explanation:
see explanation below.
Explanation
mkdir /home/admins
chgrp -R adminuser /home/admins
chmodg+w /home/admins
chmodg+s /home/admins
NEW QUESTION # 54
SELinux must be running in the Enforcing mode.
Answer:
Explanation:
getenforce // Check the current mode of SELinux // SELinux runs in enforcing mode // Check getenforce 1 getenforce vim /etc/selinux/config selinux=enforcing // To temporarily enable SELinux wg sestatus
NEW QUESTION # 55
Create a backup file named /root/backup.tar.bz2, which contains the contents of /usr/local, bar must use the bzip2 compression.
Answer:
Explanation:
cd /usr/local
tar -jcvf /root/backup.tar.bz2*
mkdir /test
tar -jxvf /root/backup.tar.bz2 -C /test/
NEW QUESTION # 56
Configure your Host Name, IP Address, Gateway and DNS.
Host name: station.domain40.example.com
/etc/sysconfig/network
hostname=abc.com
hostname abc.com
IP Address:172.24.40.40/24
Gateway172.24.40.1
DNS:172.24.40.1
Answer:
Explanation:
see explanation below.
Explanation
# cd /etc/syscofig/network-scripts/
# ls
# vim ifcfg-eth0 (Configure IP Address, Gateway and DNS) IPADDR=172.24.40.40 GATEWAY=172.24.40.1 DNS1=172.24.40.1
# vim /etc/sysconfig/network
(Configure Host Name)
HOSTNAME= station.domain40.example.com
OR
Graphical Interfaces:
System->Preference->Network Connections (Configure IP Address, Gateway and DNS) Vim
/etc/sysconfig/network
(Configure Host Name)
NEW QUESTION # 57
Which of the following functions are provided by the Ansible aptmodule? (Choose two correct answers.)
- A. Install a dpkg based Linux distribution on an empty target system.
- B. Update the list of available packages from configured repositories.
- C. Re-compile an installed package from the source code.
- D. Update an installed package to the latest version.
- E. Add the URL of a new repository to the package manager configuration.
Answer: A,B
Explanation:
Explanation/Reference:
Reference https://docs.ansible.com/ansible/latest/modules/apt_module.html
NEW QUESTION # 58
Add 3 users: harry, natasha, tom.
The requirements: The Additional group of the two users: harry, Natasha is the admin group. The user: tom's login shell should be non-interactive.
Answer:
Explanation:
# useradd -G admin harry
# useradd -G admin natasha
# useradd -s /sbin/nologin tom
# id harry;id Natasha (Show additional group)
# cat /etc/passwd
(Show the login shell)
OR
# system-config-users
NEW QUESTION # 59
Configure your Host Name, IP Address, Gateway and DNS.
Host name: dtop5.dn.ws.com
IP Address: 172.28.10.5/4
Gateway: 172.28.10.1
DNS: 172.28.10.1
Answer:
Explanation:
see explanation below.
Explanation
* Configure Host Name
* vim /etc/sysconfig/network NETWORKING=yes HOSTNAME=dtop5.dn.ws.com
GATEWAY=172.28.10.1
2. Configure IP Address, Gateway and DNS
Configure the network by Network Manager:
Note: Please remember to choose two options:
* Connect automatically
* Available to all users
Click "Apply", save and exit, and restart your network services:
# Service network restart
3. Validate these profiles:
a) Check gateway: # vim / etc / sysconfig / network
NETWORKING=yes
HOSTNAME=dtop5.dn.ws.com
GATEWAY=172.28.10.1
b) Check Host Name: # vim /etc/hosts
c) Check DNS: # vim /etc/resolv.conf
# Generated by NetworkManager
Search dn.ws.com
Nameserver 172.28.10.1
d) Check Gateway: # vim /etc/sysconfig/network-scripts/ifcfg-eth0
NEW QUESTION # 60
Find the rows that contain abcde from file /etc/testfile, and write it to the file/tmp/testfile, and the sequence is requested as the same as /etc/testfile.
Answer:
Explanation:
see explanation below.
Explanation
# cat /etc/testfile | while read line;
do
echo $line | grep abcde | tee -a /tmp/testfile
done
OR
grep `abcde' /etc/testfile > /tmp/testfile
NEW QUESTION # 61
Configure the verification mode of your host account and the password as LDAP. And it can ldapuser40.
The password is set as "password". And the certificate login successfully through can be downloaded from http://ip/dir/ldap.crt. After the user logs on , the user has no host directory unless you configure the autofs in the following questions.
Answer:
Explanation:
Answer see in the explanation.
Explanation/Reference:
system-config-authentication
LDAP Server: ldap//instructor.example.com (In domain form, not write IP) OR
# yum groupinstall directory-client (1.krb5-workstation 2.pam-krb5 3.sssd)
# system-config-authentication
1.User Account Database: LDAP
2.LDAP Search Base DN: dc=example,dc=com
3.LDAP Server: ldap://instructor.example.com (In domain form, not write IP) 4.Download CA Certificate
5.Authentication Method: LDAP password
6.Apply
getent passwd ldapuser40
NEW QUESTION # 62
Copy /etc/fstab to /var/tmp name admin, the user1 could read, write and modify it, while user2 without any permission.
Answer:
Explanation:
# cp /etc/fstab /var/tmp/
# chgrp admin /var/tmp/fstab
# setfacl -m u:user1:rwx /var/tmp/fstab
# setfacl -m u:user2:--- /var/tmp/fstab
# ls -l
-rw-rw-r--+ 1 root admin 685 Nov 10 15:29 /var/tmp/fstab
NEW QUESTION # 63
SIMULATION
Download the document from ftp://instructor.example.com/pub/testfile, find all lines containing [abcde] and redirect to /MNT/answer document, then rearrange the order according the original content.
Answer:
Explanation:
See explanation below.
Explanation/Reference:
Explanation: Download the file to /tmp first
grep [abcde] /tmp/testfile > /mnt/answer
NEW QUESTION # 64
Find the files owned by harry, and copy it to catalog: /opt/dir
Answer:
Explanation:
# cd /opt/
# mkdir dir
# find / -user harry -exec cp -rfp {} /opt/dir/ \;
NEW QUESTION # 65
Successfully resolve to server1.example.com where your DNS server is 172.24.254.254.
Answer:
Explanation:
vi /etc/resolv.conf
nameserver 172.24.254.254
host server1.example.com
On every clients, DNS server is specified in /etc/resolv.conf. When you request by name it tries to resolv from DNS server.
NEW QUESTION # 66
Notes:
NFS NFS instructor.example.com:/var/ftp/pub/rhel6/dvd
YUM
http://instructor.example.com/pub/rhel6/dvd
Answer:
Explanation:
ldap http//instructor.example.com/pub/EXAMPLE-CA-CERT
Install dialog package.
yum install dialog
NEW QUESTION # 67
......
Features of our Red Hat EX200 exam preparation material
Questions are developed by the Red Hat Certified Engineer Professional examiners. They are designed to test your knowledge before you take the exam. There are many different areas in which you will be tested on the Red Hat Certified Engineer Professional certification exam. It takes a lot of effort and time for the Red Hat Certified Engineer Professional examiners to develop the questions. The certification exam is also based on how well you have prepared for the exam. Interview skills can be mastered by practicing with these questions and answers. This will give you a chance to prepare for the Red Hat Certified Engineer Professional exam interview. Questions are designed, so you can learn from your mistakes. Contact with the real Red Hat Certified Engineer Professional exam questions. When you take the Red Hat EX200 Tests, you will be able to practice what it is like to take the actual exam. Helpful hints are prepared for you which are all included in Red Hat EX200 Dumps. It is convenient to have the answers to the questions immediately after you take the certification exam, so that you can improve your score on the next exam.
Printable PDF format for the exam It is possible to take the Red Hat Certified Engineer Professional certification exam from a computer. This can be done through PDF files, and there are great advantages of using these files. Anytime, anywhere. You can take the exam at any time, and anywhere you want, and you need not waste your money on traveling to take the certification exam. Preparing yourself for the Red Hat Certified Engineer Professional certification exam through ExamcollectionPass website. Future is going to be a better place, and with the help of ExamcollectionPass you can prepare yourself for the future.
EX200 Study Guide Realistic Verified Dumps: https://www.examcollectionpass.com/RedHat/EX200-practice-exam-dumps.html
Accurate EX200 Questions with Free and Fast Updates: https://drive.google.com/open?id=1BUy5F-UYWUcllCuIB8IShccN5VzvqcN_