cancel
Showing results for 
Search instead for 
Did you mean: 
Yamato
Flight Engineer
Flight Engineer
  • 8,756 Views

DO280 do you need to memorize openssl commands or yaml configurations ?

Jump to solution

Would OpenSSL commands be provided on the exam just like in the training or do we have to memorize them ? 

 

EDIT: 

I want to broaden the question. 

Do you need to memoraze yaml configuration files as well ? 

Labels (2)
17 Replies
Chetan_Tiwary_
Community Manager
Community Manager
  • 4,290 Views

Hi Fernando,

What about the sysadmins who have skills for other linux flavours like IBM iKeyman Tool or others ? Can we include some sort of openssl basics to the course lectures if we are using it in the DO280 course ?

flozano
Moderator
Moderator
  • 4,256 Views

Hi Chetan,

Though openssl and general TLS certificate management are not instructional goals of DO280, that knowledge is necessary to pass the exam, and for any real-world sysadmin job that includes managing web servers, REST services, and other applications that use TLS security.

We are exploring alternatives to teach these topics in more depth such as tech overviews, expert extras, or even appendixes to add to course books such as the one from DO280.

Chetan_Tiwary_
Community Manager
Community Manager
  • 4,252 Views

Thanks for your reply ! I am sure that would be a great help for many learners ( especially the appendixes ) . 

 

Thanks again for your time !

 

Regards.

0 Kudos
ekc
Mission Specialist
Mission Specialist
  • 4,483 Views

Hello Yamato-san,

    Please check the test objectives. In my opinion, it (the networking section) is quite obvious. There isn't much room for your own interpretation even if I am a non-native English speaker.

https://www.redhat.com/en/services/training/ex280-red-hat-certified-specialist-in-openshift-administ...

Configure networking components

  • Troubleshoot software-defined networking
  • Create and edit external routes
  • Control cluster network ingress
  • Create a self signed certificate
  • Secure routes using TLS certificates

Good luck. :-)

rmokkink
Flight Engineer
Flight Engineer
  • 4,451 Views

There is oc explain and there are man pages. All the documentation is on the system.
The problem i see with a lot of openshift courses, they teach openshift, and not k8s.

flozano
Moderator
Moderator
  • 4,355 Views

Hi rmokkink,

What you think we miss about teaching Kubernetes vs teaching OpenShift? We are open to improving our courseware.

After all OpenShift is Kubernetes, and any real production Kubernetes has to add *lots* of stuff over the "vanilla" upstream Kubernetes. Anything that works in vanilla Kubernetes should work, unchanged, with OpenShift, except things that are very infrastructure-dependent such as ingress and storage controllers, but them it would be true for any Kubernetes distribution in the market and also for all cloud-managed offerings.

The hard truth is that there's no "standard" Kubernetes for real-world, production scenarios. Don't be fooled by what you can "easily" do with minikube and kino. You'll have to make decisions and add stuff that will make your environment different than everyone's else.

For example, a friend said that his company spent six months, with two full-time engineers + one full time architect, to create a useable production Kubernetes cluster, and that was just adding things you get pre-installed with OpenShift, such as metrics and authentication. They were using a big cloud xKS service. Red Hat have a number of customers that followed that route and later switched to OpenShift because it was just better ROI.

ericbos
Flight Engineer
Flight Engineer
  • 4,376 Views

While preparing for EX280, for the OpenSSL commands I generally use

man x509

and find my way from there

I also practice using docs.openshift.com so I know where to find certain topics.

tat
Flight Engineer Flight Engineer
Flight Engineer
  • 4,191 Views
I think the main problem is, that the openssl command examples have been stripped from the 4.5 documentation.

man req (EXAMPLES)
and
openssl rsa -in encrypted.key -out plaintext.key
are something I always keep in mind regarding self signed certificates
best regards,
Alexander
Join the discussion
You must log in to join this conversation.