Comptia Linux xk0 005 Exam Objectives (1 0)

Download as pdf or txt
Download as pdf or txt
You are on page 1of 15
At a glance
Powered by AI
The document outlines the objectives and content covered in the CompTIA Linux+ certification exam, including system management, security, scripting/automation, and troubleshooting of Linux systems.

The exam covers four main domains: system management, security, scripting/automation, and troubleshooting. It aims to validate the skills of a junior Linux support engineer through hands-on Linux administration experience.

The exam expects candidates to be able to troubleshoot issues related to user access and permissions, services, networking, mounting, systemd, as well as common system problems regarding name resolution, applications, time configuration and more.

CompTIA Linux+

Certification Exam
Objectives
EXAM NUMBER: XK0-005
About the Exam
Candidates are encouraged to use this document help prepare for the CompTIA
Linux+ XK0-005 certification exam. The CompTIA Linux+ certification exam will verify
the successful candidate has the knowledge and skills required configure, manage,
operate, and troubleshoot Linux on-premises and cloud-based server environments,
while using security best practices, scripting, containerization, and automation.

This is equivalent to at least 12 months of hands-on experience working with Linux servers
in a junior Linux support engineer or junior cloud/DevOps support engineer job role.

These content examples are meant to clarify the test objectives and should not be
construed as a comprehensive listing of all the content of this examination.

EXAM ACCREDITATION
The CompTIA Linux+ exam is accredited by ANSI to show compliance with the ISO 17024
standard and, as such, undergoes regular reviews and updates to the exam objectives.

EXAM DEVELOPMENT
CompTIA exams result from subject-matter expert workshops and industry-wide survey
results regarding the skills and knowledge required of an entry-level IT professional.

CompTIA AUTHORIZED MATERIALS USE POLICY


CompTIA Certifications, LLC is not affiliated with and does not authorize, endorse, or
condone utilizing any content provided by unauthorized third-party training sites (aka
“brain dumps”). Individuals who utilize such materials in preparation for any CompTIA
examination will have their certifications revoked and be suspended from future testing
in accordance with the CompTIA Candidate Agreement. In an effort tomore clearly
communicate CompTIA’s exam policies on use of unauthorized study materials, CompTIA
directs all certification candidates to the CompTIA Certification Exam Policies. Please
review all CompTIA policies before beginning the study process for any CompTIA exam.
Candidates will be required to abide by the CompTIA Candidate Agreement. If a candidate
has a question as towhether study materials are considered unauthorized (aka “brain
dumps”), he/she should contact CompTIA at [email protected] to confirm.

PLEASE NOTE
The lists of examples provided in bulleted format are not exhaustive lists. Other
examples of technologies, processes, or tasks pertaining to each objective may
also be included on the exam although not listed or covered in this objectives
document. CompTIA is constantly reviewing the content of our exams and updating
test questions to be sure our exams are current, and the security of the questions is
protected. When necessary, we will publish updated exams based on existing exam
objectives. Please know that all related exam preparation materials will still be valid.

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


TEST DETAILS
Required exam XK0-005
Number of questions Maximum of 90
Types of questions Multiple-choice and performance-based
Length of test 90 minutes
Recommended experience 1 2 months of hands-on experience working with
Linux servers, as well as A+, Network+, and Server+
or similar certifications and/or knowledge
Passing score 720 (on a scale of 100 to 900)

EXAM OBJECTIVES (DOMAINS)


The table below lists the domains measured by this examination
and the extent to which they are represented.

DOMAIN PERCENTAGE OF EXAMINATION

1.0 System Management 32%


2.0 Security 21%
3.0 Scripting, Containers, and Automation 19%
4.0 Troubleshooting 28%
Total 100%

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


1.0 System Management
1.1 Summarize Linux fundamentals.
• F
 ilesystem Hierarchy • Basic boot process • B
 asic package compilation
Standard (FHS) - Basic input/output system (BIOS) from source
- /boot - Unified Extensible Firmware - ./configure
- /proc Interface (UEFI) - make
- /sys - Commands - make install
- /var • mkinitrd • Storage concepts
- /usr • grub2-install - File storage
- /lib • grub2-mkconfig - Block storage
- /dev • grub2-update - Object storage
- /etc • dracut - Partition typo
- /opt - initrd.img • Master boot record (MBR)
- /bin - vmlinuz • GUID [globally unique identifier]
- /sbin - Grand Unified Bootloader Partition Table (GPT)
- /home version 2 (GRUB2) - Filesystem in Userspace (FUSE)
- /media - Boot sources - Redundant Array of
- /mnt • Preboot eXecution Independent (or Inexpensive)
- /root Environment (PXE) Disks (RAID) levels
- /tmp • Booting from Universal • Striping
Serial Bus (USB) • Mirroring
• Booting from ISO • Parity
• Kernel panic • Listing hardware information
• Device types in /dev - lspci
- Block devices - lsusb
- Character devices - dmidecode
- Special character devices
• /dev/null
• /dev/zero
• /dev/urandom

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


1.0 | System Management

1.2 Given a scenario, manage files and directories.


• File editing • File metadata • File and directory operations
- sed - stat - mv
- awk - file - cp
- printf • Soft and hard links - mkdir
- nano • Copying files between systems - rmdir
- vi(m) - rsync - ls
• File compression, - scp - pwd
archiving, and backup - nc - rm
- gzip - cd
- bzip2 -.
- zip - ..
- tar -~
- xz - tree
- cpio - cat
- dd - touch

1.3 Given a scenario, configure and manage


storage using the appropriate tools.
• D isk partitioning • M onitoring storage space • Inspecting RAID implementations
- Commands and disk usage - mdadm
• fdisk - df - /proc/mdstat
• parted - du • Storage area network (SAN)/
• partprobe • Creating and modifying network-attached storage (NAS)
• Mounting local and remote devices volumes using Logical - multipathd
- systemd.mount Volume Manager (LVM) - Network filesystems
- /etc/fstab - Commands • Network File System (NFS)
- mount • pvs • Server Message Block
- Linux Unified Key Setup (LUKS) • vgs (SMB)/Common Internet
- External devices • lvs File System (CIFS)
• Filesystem management • lvchange • Storage hardware
- XFS tools • lvcreate - lsscsi
- Ext4 tools • vgcreate - lsblk
- Btrfs tools • lvresize - blkid
• pvcreate - fcstat
• vgextend

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


1.0 | System Management

1.4 Given a scenario, configure and use the


appropriate processes and services.
• S ystem services • P
 rocess management - Process states
- systemctl - Kill signals • Zombie
• stop • SIGTERM • Sleeping
• start • SIGKILL • Running
• restart • SIGHUP • Stopped
• status - Listing processes and open files - Job control
• enable • top • bg
• disable • ps • fg
• mask • lsof • jobs
• Scheduling services • htop • Ctrl+Z
- cron - Setting priorities • Ctrl+C
- crontab • nice • Ctrl+D
- at • renice - pgrep
- pkill
- pidof

1.5 Given a scenario, use the appropriate


networking tools or configuration files.
• Interface management • N
 ame resolution • N etwork monitoring
- iproute2 tools - nsswitch - tcpdump
• ip - /etc/resolv.conf - wireshark/tshark
• ss - systemd - netstat
- NetworkManager • hostnamectl - traceroute
• nmcli • resolvectl - ping
- net-tools - Bind-utils - mtr
• ifconfig • dig • Remote networking tools
• ifcfg • nslookup - Secure Shell (SSH)
• hostname • host - cURL
• arp - WHOIS - wget
• route - nc
- /etc/sysconfig/network-scripts/ - rsync
- Secure Copy Protocol (SCP)
- SSH File Transfer Protocol (SFTP)

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


1.0 | System Management

1.6 Given a scenario, build and install software.


• P
 ackage management • S
 andboxed applications • System updates
- DNF - snapd - Kernel updates
- YUM - Flatpak - Package updates
- APT - AppImage
- RPM
- dpkg
- ZYpp

1.7 Given a scenario, manage software configurations.


• U
 pdating configuration files • C
 onfigure kernel options • C onfigure common system services
- Procedures - Parameters - SSH
• Restart service • sysctl - Network Time Protocol (NTP)
• Reload service • /etc/sysctl.conf - Syslog
- .rpmnew - Modules - chrony
- .rpmsave • lsmod • Localization
Repository configuration files • imsmod - timedatectl
• /etc/apt.conf • rmmod - localectl
• /etc/yum.conf • insmod
• /etc/dnf/dnf.conf • modprobe
• /etc/yum.repo.d • modinfo
• /etc/apt/sources.list.d

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


2.0 Security
2.1 Summarize the purpose and use of security
best practices in a Linux environment.
• M
 anaging public key • C ertificate use cases • L
 inux hardening
infrastructure (PKI) certificates -S  ecure Sockets Layer (SSL)/ - Security scanning
- Public key Transport Layer Security (TLS) - Secure boot
- Private key - Certificate authentication • UEFI
- Self-signed certificate - Encryption - System logging configurations
- Digital signature • Authentication - Setting default umask
- Wildcard certificate - Tokens - Disabling/removing
- Hashing - Multifactor authentication (MFA) insecure services
- Certificate authorities -P  luggable authentication - Enforcing password strength
modules (PAM) - Removing unused packages
-S  ystem Security Services - Tuning kernel parameters
Daemon (SSSD) - Securing service accounts
-L  ightweight Directory - Configuring the host firewall
Access Protocol (LDAP)
- Single sign-on (SSO)

2.2 Given a scenario, implement identity management.


• A
 ccount creation and deletion • A
 ccount management
- Utilities - passwd
• useradd - chage
• groupadd - pam_tally2
• userdel - faillock
• groupdel - /etc/login.defs
• usermod
• groupmod
• id
• who
•w
- Default shell
- Configuration files
• /etc/passwd
• /etc/group
• /etc/shadow
• /etc/profile
• /etc/skel
• .bash_profile
• .bashrc

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


2.0 | Security

2.3 Given a scenario, implement and configure firewalls.


• F
 irewall use cases • C
 ommon firewall technologies Key firewall features
- Open and close ports - firewalld - Zones
- Check current configuration - iptables - Services
- Enable/disable Internet - nftables - Stateful
protocol (IP) forwarding - Uncomplicated firewall (UFW) - Stateless

2.4 Given a scenario, configure and execute remote


connectivity for system management.
• SSH • E
 xecuting commands
- Configuration files as another user
• /etc/ssh/sshd_config - /etc/sudoers
• /etc/ssh/ssh_config - PolicyKit rules
• ~/.ssh/known_hosts - Commands
• ~/.ssh/authorized_keys • sudo
• /etc/ssh/sshd_config • visudo
• /etc/ssh/ssh_config • su –
• ~/.ssh/config • pkexec
- Commands
• ssh-keygen
• ssh-copy-id
• ssh-add
- Tunneling
• X11 forwarding
• Port forwarding
• Dynamic forwarding

2.5 Given a scenario, apply the appropriate access controls.


• File permissions • A ppArmor
- Access control list (ACL) - Application permissions
- Set user ID (SUID) • Command-line utilities
- Set group ID (SGID) - chown
- Sticky bit - umask
• Security-enhanced Linux (SELinux) - chmod
- Context permissions - getfacl
- Labels - setfacl
• Autorelabel - ls
- System booleans - setenforce
- States - getenforce
• Enforcing - chattr
• Permissive - lsattr
• Disabled - chgrp
- Policy types - setsebool
• Targeted - getsebool
• Minimum - chcon
- restorecon
- semanage
- audit2allow
CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)
3.0 Scripting, Containers,
and Automation
3.1 Given a scenario, create simple shell scripts
to automate common tasks.
• S
 hell script elements • C ommon script utilities
- Loops - Standard stream redirection • awk
• while •| • sed
• for • || • find
• until •> • xargs
- Conditionals • >> • grep
• if •< • egrep
• switch/case • << • tee
- Shell parameter expansion •& • wc
• Globbing • && • cut
• Brace expansions • Redirecting • tr
- Comparisons • stderr - head
• Arithmetic • stdout - tail
• String - Here documents • Environment variables
• Boolean - Exit codes - $PATH
- Variables - Shell built-in commands - $SHELL
- Search and replace • read - $?
- Regular expressions • echo • Relative and absolute paths
• source

3.2 Given a scenario, perform basic container operations.


• C ontainer management
- Starting/stopping
- Inspecting
- Listing
- Deploying existing images
- Connecting to containers
- Logging
- Exposing ports
• Container image operations
- build
- push
- pull
- list
- rmi

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


3.0 | Scripting, Containers, and Automation

3.3 Given a scenario, perform basic version control using Git.


•  lone
c
• push
• pull
• commit
• add
• checkout
• branch
• tag
• gitignore

3.4 Summarize common infrastructure as code technologies.


• F ile formats • C ontinuous integration/
- YAML Ain’t Markup continuous deployment (CI/CD)
Language (YAML) - Use cases
- JavaScript Object • Advanced Git topics
Notation (JSON) - merge
• Utilities - rebase
- Ansible - Pull requests
- Puppet
- Chef
- SaltStack
- Terraform

3.5 Summarize container, cloud, and orchestration concepts.


• K ubernetes benefits and • C ontainer networks
application use cases - Overlay networks
- Pods - Bridging
- Sidecars - Network address translation (NAT)
- Ambassador containers - Host
• Single-node, multicontainer • Service mesh
use cases • Bootstrapping
- Compose - Cloud-init
• Container persistent storage • Container registries

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


4.0 Troubleshooting
4.1 Given a scenario, analyze and troubleshoot storage issues.
• H igh latency • C apacity issues • D evice issues
- Input/output (I/O) wait - Low disk space - Non-volatile memory
• Low throughput - Inode exhaustion express (NVMe)
• Input/output operations per • Filesystem issues - Solid-state drive (SSD)
second (IOPS) scenarios - Corruption - SSD trim
- Low IOPS - Mismatch - RAID
• I/O scheduler - LVM
- I/O errors
• Mount option problems

4.2 Given a scenario, analyze and troubleshoot


network resource issues.
• N etwork configuration issues • B andwidth limitations
- Subnet - High latency
- Routing • Name resolution issues
• Firewall issues - Domain Name System (DNS)
• Interface errors • Testing remote systems
- Dropped packets - Nmap
- Collisions - openssl s_client
- Link status

4.3 Given a scenario, analyze and troubleshoot central


processing unit (CPU) and memory issues.
•  unaway processes
R • C PU process priorities • H
 ardware
• Zombie processes - nice - lscpu
• High CPU utilization - renice - lsmem
• High load average • Memory exhaustion - /proc/cpuinfo
• High run queues - Free memory vs. file cache - /proc/meminfo
• CPU times • Out of memory (OOM)
- steal - Memory leaks
- user - Process killer
- system • Swapping
- idle
- iowait

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


4.0 | Troubleshooting

4.4 Given a scenario, analyze and troubleshoot


user access and file permissions.
• U ser login issues • Password issues
• User file access issues • Privilege elevation
- Group • Quota issues
- Context
- Permission
- ACL
- Attribute
- Policy/non-policy

4.5 Given a scenario, use systemd to diagnose and


resolve common problems with a Linux system.
• Unit files • Common problems
- Service - Name resolution failure
• Networking services - Application crash
• ExecStart/ExecStop - Time-zone configuration
• Before/after - Boot issues
• Type - Journal issues
• User - Services not starting on time
• Requires/wants
- Timer
• OnCalendar
• OnBootSec
• Unit
• Time expressions
- Mount
• Naming conventions
• What
• Where
• Type
• Options
- Target
• Default
• Multiuser
• Network-online
• Graphical

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


Linux+ Acronym List
The following is a list of acronyms that appear on the CompTIA
Linux+ XK0-005 exam. Candidates are encouraged to review
the complete list and attain a working knowledge of all listed
acronyms as part of a comprehensive exam preparation program.

ACRONYM SPELLED OUT ACRONYM SPELLED OUT


ACL Access Control List NVMe Non-volatile Memory Express
BIOS Basic Input/Output System OOM Out of Memory
CI/CD Continuous Integration/ PAM Pluggable Authentication Module
Continuous Deployment PKI Public Key Infrastructure
CIFS Common Internet File System PXE Preboot Execution Environment
CPU Central Processing Unit RAID Redundant Array of Independent
DNS Domain Name System (or Inexpensive) Disks
FHS Filesystem Hierarchy Standard SAN Storage Area Network
FUSE Filesystem in Userspace SCP Secure Copy Protocol
GPT GUID (Globally Unique SELinux Security Enhanced Linux
Identifier) Partition Table SFTP Secure File Transfer Protocol
GRUB Grand Unified Bootloader SGID Set Group ID
GUID Globally Unique Identifier SMB Server Message Block
I/O Input/Output SSD Solid-state Drive
IOPS Input/Ouput Operations Per Second SSH Secure Shell
IP Internet Protocol SSL Secure Sockets Layer
ISO International Organization SSO Single Sign-On
for Standardization SSSD System Security Services Daemon
JSON JavaScript Object Notation SUID Set User ID
LDAP Lightweight Directory Access Protocol TLS Transport Layer Security
LUKS Linux Unified Key Setup UEFI Unified Extensible Firmware Interface
LVM Logical Volume Manager UFW Uncomplicated Firewall
MFA Multifactor Authentication USB Universal Serial Bus
MBR Master Boot Record YAML YAML Ain’t Markup Language
NAS Network-attached Storage
NAT Network Address Translation
NFS Network File System
NTP Network Time Protocol

CompTIA Linux+ Certification Exam Objectives 1.0 (Exam Number: XK0-005)


Linux+ Proposed Hardware and Software List
CompTIA has included this sample list of hardware and software to
assist candidates as they prepare for the Linux+ XK0-005 exam.
This list may also be helpful for training companies that wish to
create a lab component for their training offerings. The bulleted
lists below each topic are sample lists and are not exhaustive.

EQUIPMENT SOFTWARE
• Laptop or desktop that supports virtualization • Repository access
or access to a cloud service provider • PuTTY or SSH client
• Network • Automation tools (e.g., Ansible, Puppet, etc.)
- Router • Git
- Switch • Virtualization software
- Wireless access point • Docker or Podman
• Internet access
RECOMMENDED DISTRIBUTIONS
SPARE PARTS/HARDWARE • Ubuntu
• Hard disk drive • Fedora Linux
• USB or DVD media • Debian
• openSUSE
• Red Hat Enterprise Linux

© 2021 CompTIA, Inc., used under license by CompTIA, Inc. All rights reserved. All certification programs and education related to such
programs are operated exclusively by CompTIA, Inc. CompTIA is a registered trademark of CompTIA, Inc. in the U.S. and internationally.
Other brands and company names mentioned herein may be trademarks or service marks of CompTIA, Inc. or of their respective owners.
Reproduction or dissemination prohibited without the written consent of CompTIA, Inc. Printed in the U.S. 08301-May21

You might also like