SUSE Certified Engineer - Managing Encryption

30 minutes
  • 4 Learning Objectives

About this Hands-on Lab

In this hands-on lab, you’ll be getting more familiar and experienced in using OpenSSL to create your own Certificate Authority (CA), so that you can sign your own certificate requests. You’ll set up the Root Certificate Authority, generate a Certificate Signing Request (CSR), and then use that request to generate the end result — a server certificate. You’ll then use the `gpg` command to generate and query your own GPG public and secret keys, and use that information to encrypt a data file and then decrypt it, comparing the file contents before and after.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Set Up a Certificate Authority
  • Install the tree command
  • Set up a Certificate Authority (CA) directory structure
  • Create a Root Certificate
  • Verify the certificate details
Create a Certificate Signing Request
  • Generate a Certificate Signing Request (CSR)
  • Supply the necessary details
  • Verify the certificate details
  • Note file locations and contents
Generate a Server Certificate
  • Set up the certificate database
  • Generate a server certificate
  • Verify the certificate details
  • Inspect the contents of the database
GPG Encrypt and Decrypt a Data File
  • Configure a test directory
  • Generate a GPG public/secret key pair
  • Confirm the GPG keys were generated
  • Locate the GPG files
  • Encrypt and decrypt a data file
  • Verify that the operation worked properly

Additional Resources

Lab Scenario

In this lab scenario, you're a mid-level Systems Operator who has been tasked with figuring out how to avoid paying huge fees to a public Certificate Authority (CA) for certificates that will only be used within your internal functions. You'll be setting up a CA on your own server, creating internal Certificate Signing Requests (CSRs), and from those CSRs, generating server certificates that will be used on other servers for securing communications. You'll also be investigating how to generate and list your own GPG public and secret keys and how to encrypt and decrypt simple data files using the gpg command.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?