ICT has purchased a site license for Red Hat Enterprise Linux. The site license includes:
- unlimited subscriptions for campus servers
- unlimited subscriptions for staff and students
- One subscription to the RHN Satellite server
A subscription provides you with access to the Red Hat Network to download updates. The ICT site license does not include a support contract for Red Hat Enterprise Linux.
In order to download and install Red Hat Linux Enterprise, you will need to provide your NSID username and password.
The download and installation of Red Hat Enterprise Linux is a multi-part process.
Part 1. Download and install Red Hat Enterprise Linux
Part 2. Register with Red Hat Network (RHN) for updates
Part 3. Set up yum on RHEL 4 (Optional)
Part 1. Download and install Red Hat Enterprise Linux
- Quick Install Instructions
- Detailed Install Instructions
Quick Install Instructions
1. Download and burn the RHEL ISO images from http://rhn.usask.ca/pub/ISO/
- ISO images are available for Red Hat Enterprise Linux 3WS, 3AS, 4WS, and 4AS for i368, x86_64 and Power PC.
- If you are doing an on-campus NFS install you will only need to download and burn the first CD (NFS install is only available for the latest version of RHEL WS and AS).
- Continue to Part 2 when the installation is complete.
Detailed Install Instructions
- Download the ISO files required from http://rhn.usask.ca/pub/ISO/ and burn them to CD.
- Boot the system from first CD.
- At the first screen press <enter> for the graphical install.
- For AMD64 systems you may need to boot with "linux acpi=off" if you have problems with the installation.
- Press OK to test the media or SKIP to proceed.
- Begin the installation by clicking Next.
- Choose your language and click Next.
- Choose your keyboard layout and click Next.
- Choose a disk partitioning method and click Next.
- Use the automatic partitioning and the default layout unless there are partitions on the system that you want to save.
- Choose how you want automatic partitioning to use the space on the hard drive.
- WARNING: choosing the option "Remove all partitions on this system" will destroy any data on the system.
- Confirm the disk set up is correct and click Next.
- The disk size information shown here may be different from what is displayed for your system.
- Select a boot loader. Change any options necessary and click Next.
- Configure your network device(s) and click Next.
- For systems on campus use the default options.
- Enable and configure the firewall and SELinux and click Next.
- Use the default options unless necessary to allow access to the system.
- Select any additional languages and click Next.
- Select your time zone (America/Regina) and click Next.
- Set the root password and click Next.
- It is recommended to use a strong root password. Select a password that contains both letters and numbers, and that cannot be easily guessed.
- Choose "Install the default packages," or if you know which packages you want to install "Customize software packages" and click Next.
- Click next to Install. Confirm that you have all of your CDs and click Continue.
- After the installation is finished reboot the system and the Setup Agent will continue when you click Next.
- Read the license agreement and select "Yes, I agree to the License Agreement" and click Next.
- Verify that the date and time are correct.
- You may also at this time configure NTP to use the time servers on campus. Click the tab labelled Network Time Protocol and check the Enable Time Protocol box.
- Configure your display properties.
- At the Red Hat Login screen choose "Tell me why I need to register and provide a Red Hat Login" and click Next.
- Select "I can not complete the registration at this time. Remind me later." and click Next. (This will be completed in Part 2.)
- Enter your username and a password and click Next. You are creating a non-administrator account for daily use.
- At this time you can also configure your system to allow you to logon with your NSID and password.
- Select Use Network Login.
- Select Enable Kerberos Support and Configure Kerberos.
- Enter USASK.CA for the realm and kerberos.usask.ca:88 for the KDCs and click OK.
- Test your sound card and click Next.
Your sound card information may different than displayed here.
- Install any additional software from CD or click Next.
- Finish setup by clicking Next to reboot the system.
- Log on to the system to complete the registration. If you setup Kerberos you will need to logon as root.
- If this is the first time this computer has been on the University network you will have to register it with DHCP by opening a web browser and going to www.usask.ca
Applications --> Internet --> Firefox
You will need to logout and log back in again after the network registration process is complete.
- Open a terminal window
Applications --> System Tools --> Terminal
- In the Terminal, switch to root
$ su -
Password:
- If you did not setup Kerberos Authentication in step 25 and want to do so now, use the authconfig command and the information from Step 25 (Kerberos will not work from off-campus).
# authconfig
# useradd abc123
Otherwise, you can add more users at this time.
Applications --> System Settings --> Users and Groups
- It is recommended that you implement the following security measures:
edit host.allow/host.deny to enable TCP Wrappers to control access to your system
# echo ALL:ALL >> /etc/hosts.deny
to allow sshd access to your system for computers on campus only, edit /etc/hosts.allow and edit the iptables
# echo sshd:128.233. >> /etc/hosts.allow
# iptables -I RH-Firewall-1-INPUT -s 128.233.0.0/16 -p tcp --dport 22 -j ACCEPT (please note this is a single command)
# service iptables save
turn off any unnecessary services
# chkconfig sendmail off
# chkconfig portmap off
More ICT Announcements »
