1 / 11

Basic Issue In System Administration

Basic Issue In System Administration. Bassic Issue In System Administration. Creating and managing accounts Performing administrative task Access control Permission and ownership Group (permission) Bringing down system. Creating And Managing Accounts.

aliza
Télécharger la présentation

Basic Issue In System Administration

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Basic Issue In System Administration

  2. Bassic Issue In System Administration Creating and managing accounts Performing administrative task Access control Permission and ownership Group (permission) Bringing down system

  3. Creating And Managing Accounts Creating and managing accounts terbagimenjadi 4 bagian ; • accounts policy • Accounts structure • Creating and deleting ordinary user accounts • Handling special accounts

  4. Performing Administrative Task • Untukmelakukantugas admin dalamlinux, dapatdigunakanperintahsu Su (substitute user) • Perintahsumengijinkankitauntukmenjalankan shell dengan UIDs dan GIDs selaindarimilikkita, menyediakanasalkankitamengetahuipasswordnya. Contoh : kitabisasecarasementaramenjadi root sepertiini : Ssu • Nanti, linuxandamemberi password. Jikapasswordnyabenar. Makaandasuakanmenjadikankitamenjadi shell sebagai root

  5. Access Control Access control system adalahsistem yang memperbolehkanseorang yang berwenanguntukmengakses area dansumberdayadalamsebuahfasilitas yang berbasisinformasikomputer. Sebuah access control system, dalamkeamananfisiksecaraumumberadadiurutankeduadalamlapisanstruktur.

  6. Permission and Ownership Linux dansaudara-saudaraUnixnya yang lain menyediakankombinasi permission (ijin) dan ownership (kepemilikan) untukmengontrolakses. Keduanyaharusdigunakanbersamaan; permission tidakbisaberjalantanpa ownership danpengontrolanaksestidakakanbisadilakukantanpa permission.

  7. PermissionPadadasarnyasuatu file punyainformasi permission untuk: -siapasaja yang bolehmembacanya (read),-siapasaja yang bolehmengubahisinya (write),-siapasaja yang bolehmenjalankannya (execute).Supayalebihfleksibel, makasistem Unix padaumumnyadidisainuntukmenggunakantigatriplet read-write-execute diatas: -permission read-write-execute untuk user pemilik,-permission read-write-execute untuk group,-permission read-write-execute untuk user selainpemilikdananggota group.Permission didefinisikansebagaiperanakses yang berisi user danperan user dalamsebuahobjek, sepertimesin virtual atau ESX Server Host. Permission memperbolehkan user untukmelakukanaktivitasspesifikdanmengaturobjek yang spesifikdalam host yang spesifikatau, jika user sedangbekerjadari Virtual Center, semuaobjek Virtual Center. Contoh, untukmengatur memory darisebuah server ESX, host harusmengatur permission (ijin).

  8. Ownershipkonsep ownership inipadadasarnyacukupsederhana; setiap file yang adadisistemberbasis Unix pastimempunyaisatupemilik yang merupakan user darisistemtersebut. Padaumumnya user disistemdiidentifikasikandenganmenggunakanuid (userid) yang berupabilanganbulatpositif.

  9. Pemahaman yang mendalamdaricarakerja permission dan ownership bisasangatmembantudalampengaturankeamanansebuahsistem, khususnyadarisisipenggunaankombinasi ownership dan permission ini. Pemahamanmenyeluruhtentangkemampuanapasaja yang disediakanolehsistem, walausekecilapapun, membuatpengurussistemmenjaditahusemuapojokdanlubang yang mungkindigunakanolehpenelusupatau user darisistem yang berniatjahat. Selain ownership dan permission, beberapafilesystemmenyediakanattribute-attribute lain. Seperti bit untuksynchronous write, undeletion, dan lain-lain. Lengkapnyabisadibacadari man chattrjikasistemandamendukungattribute-attributetambahantersebut.

  10. Group ( permission ) A group is a set of users that you want to manage through a common set of rules and permissions. When you assign permissions to a group, they are inherited by all users in the group. Using groups can significantly reduce the time it takes to set up your permissions model. The group lists in VirtualCenter and an ESX Server host are drawn from the same sources as the user lists. If you are working through VirtualCenter, the group list is called from the Windows domain. If you are logged on to an ESX Server host directly, the group list is called from a table maintained by the host. The VirtualCenter Server grants access to each inventory object by assigning a rolewith defined privileges and a user or group to each object. Roles are a defined set of access privileges. Individual permissions are assigned through the VirtualCenter Server or the ESX Server host by pairing a user and a role and assigning this pair to an inventory object.

  11. Bringing Down System Denganberbagaibanyaksistemoperasi, kitatidakperlumelakukanprosedur shutting down (mematikan) spesial. Walaupunbegitu, Linux membutuhkanwaktuuntukmenutupsemuaproses yang sedangberlangsung, danmembersihkan (clean up). Prosesiniselanjutnyadisebut system shutdowns.

More Related