Welcome to Enabling RHEL Security: SELinux, Fapolicyd and Auditd

Are You Ready to Elevate Your Red Hat Enterprise Linux Security Skills?

In an era where cyber threats are increasingly sophisticated, securing Red Hat Enterprise Linux (RHEL) systems has never been more critical. In this lab, we’ll explore three RHEL native tools that can transform your approach to security and safeguard your digital assets:

1. SELinux (Security-Enhanced Linux) implements Mandatory Access Control (MAC)

2. Fapolicyd serves as a user-space daemon that enhances file access control

3. Auditd is responsible for logging and monitoring system calls and user activities

By utilizing these three tools together, you can create a comprehensive security strategy that protects your RHEL systems from emerging threats. SELinux provides a strong foundation for security, fapolicyd enhances file access control, and Auditd helps monitor system activity for potential threats. Together, they can help ensure the security of your digital assets and protect your infrastructure from cyber attacks.

You will learn how to:

Users will leave with practical knowledge on how to install, configure, and manage these security tools, enabling them to apply what they have learned in real-world scenarios.

Getting Started

• Follow the Documentation to do this on your own linux machine inside of a VM.

How to Follow along with the lab.

• Lab 0: Landing Intro Page

• Lab 1: SELinux

• Lab 2: FAPolicyd

• Lab 3: Auditd

Speaker Information:

• Joshua Loscar

  • Senior Technical Account Manager, Red Hat

• Brian Hoppus

  • Senior Technical Account Manager, Red Hat

• Nate Lager

  • Sr. Technical Marketing Manager, Red Hat

Presentation Slides:

• Enabling RHEL Security_ SELinux, Fapolicyd and Auditd _ Red Hat Summit 2025.pdf