Step In and get all the latest information on all IT certification exams!!!

Oracle has specified more than nineteen objectives for the Sun test CX-310-303 (Sun Certified Security Administrator for Solaris 10 OS (CX-310-303). These objectives are grouped under six topics. Before taking the test, an individual should have a good command over the following areas:

• Describing basic security principles, including the need for a security policy, process, education and the need to audit, patch and securely configure systems
• Describing the purpose, features, and functions of the Solaris 10 security features as they relate to: Device Policy, Kerberos enabled applications, LDAP and Inter-operability enhancements, Process Rights Management, Solaris Containers, User Rights Management
• Describing the purpose, features, and functions of the Solaris 10 security features as they relate to: Password Strength, Syntax Checking, History and Aging Improvements, Basic Audit and Report Tool for File Integrity, IPfilter Stateful Packet Filtering Firewall, Solaris Secure Shell, IPsec/IKE Performance Enhancements.
• Describing the purpose, features, and functions of the Solaris 10 security features as they relate to: Solaris Auditing, Trusted Extensions, PAM Improvements , Encryption and Message Digest Functions Built into the Solaris OS.
• Describing minimization including minimal installation, software installation clusters, loose versus strict minimization, and providing consistent, known configuration for installations.
• Managing patches and include describing the Update Manager, describing signed patches, verifying signatures, and specifying a Web Proxy.
• Performing hardening including implementing the Solaris Security Toolkit (SST).
• Implementing Process Rights Management including describing PRM, process privileges, determining rights required by a process, profiling privileges used by processes, and assigning minimum rights to a process.
• Implementing User Rights Management including using Access Control, using RBAC, and implementing password strength, syntax checking, and history and aging improvements.
• Utilizing the Solaris Cryptographic framework including describing the Solaris Cryptographic Framework, using the basic administration tools for Solaris , using the SCF User-Level Commands, describing Framework Management, and using Solaris Cryptographic Framework with a Web server, with a Java-based application and with a Sun Crypto Accelerator.
• Managing file system security, including using signed ELF objects, implementing BART for file integrity, and using the Solaris Fingerprint Database.
• Using the Service Management Facility (SMF) including describing using the SMF, describing the concept of Least Privilege and SMF, describing Authorizations, describing Limit Service Privileges, determining a current service’s privileges and configuring a service to reduce privileges.
• Securing networks including using Access Control, using TCP Wrappers, implementing the IPfitler Stateful Packet Filtering Firewall, describing Kerberos, implementing Solaris Secure Shell (SSH), and describing NFSv4.
• Implementing IPsec including describing IPsec, configuration IPsec, configuring IKE, and troubleshooting IPsec configurations.
• Describing, implementing, configuring and troubleshooting Kerberos configurations, including Kerberos clients, KDCs, and Kerberized services such as Secure Shell and NFSv4.
• Performing auditing and logging including describing Solaris Audit, configuring audit policy, implementing Solaris audit, configuring for Zones, reviewing audit logs, learning from audit trails, and using tamper proof logging.
• Implementing security in Solaris Zones including describing security characteristics, identifying differences from previous subjects, describing the Global Zones, identifying when and how to use Zones, describing resource management, identifying Zones and network security, and using patching Zones.
• Describing how Security Components work together, how technologies interact, and identify infrastructure requirements.
• Managing resources including describing resource controls and resource exhaustion attack prevention.