LPIC 7
701 Software Engineering
701.1 Modern Software Development (weight: 6)
Knowledge Areas
Understand and design service based applications β
Understand common API concepts and standards β
Understand aspects of data storage, service status and session handling β
Design software to be run in containers β
Design software to be deployed to cloud services β
Awareness of risks in the migration and integration of monolithic legacy software β
Understand common application security risks and ways to mitigate them
Understand the concept of agile software development β
Understand the concept of DevOps and its implications to software developers and operators β
Terms and Utilities
REST, JSON
Service Orientated Architectures (SOA)
Microservices
Immutable servers
Loose coupling
Cross site scripting, SQL injections, verbose error reports, API authentication, consistent enforcement of transport encryption
CORS headers and CSRF tokens
ACID properties and CAP theorem
Knowledge Areas
Features and concepts of object storage β
Features and concepts of relational and NoSQL databases β
Features and concepts of message brokers and message queues β
Features and concepts of big data services β
Features and concepts of application runtimes / PaaS β
Features and concepts of content delivery networks β
Terms and Utilities
OpenStack Swift
OpenStack Trove
OpenStack Zaqar
CloudFoundry
OpenShift
701.3 Source Code Management (weight: 5)
Knowledge Areas
Understand Git concepts and repository structure β
Manage files within a Git repository β
Manage branches and tags β
Work with remote repositories and branches as well as submodules β
Merge files and branches β
Awareness of SVN and CVS, including concepts of centralized and distributed SCM solutions β
Terms and Utilities
701.4 Continuous Integration and Continuous Delivery (weight: 5)
Knowledge Areas
Understand the concepts of Continuous Integration and Continuous Delivery β
Understand the components of a CI/CD pipeline, including builds, unit, integration and acceptance tests, artifact management, delivery and deployment β
Understand deployment best practices β
Understand the architecture and features of Jenkins, including Jenkins Plugins, Jenkins API, notifications and distributed builds β
Define and run jobs in Jenkins, including parameter handling β
Fingerprinting, artifacts and artifact repositories β
Understand how Jenkins models continuous delivery pipelines and implement a declarative continuous delivery pipeline in Jenkins β
Awareness of possible authentication and authorization models β
Understanding of the Pipeline Plugin β
Understand the features of important Jenkins modules such as Copy Artifact Plugin, Fingerprint Plugin, Docker Pipeline, Docker Build and Publish plugin, Git Plugin, Credentials Plugin β
Awareness of Artifactory and Nexus β
Terms and Utilities
Step, Node, Stage
Jenkins DSL
Jenkinsfile
Declarative Pipeline
Blue-green and canary deployment
702 Container Management
702.1 Container Usage (weight: 7)
Knowledge Areas
Understand the Docker architecture β
Use existing Docker images from a Docker registry β
Create Dockerfiles and build images from Dockerfiles β
Upload images to a Docker registry β
Operate and access Docker containers β
Connect container to Docker networks β
Use Docker volumes for shared and persistent container storage β
Terms and Utilities
docker
Dockerfile
.dockerignore
702.2 Container Deployment and Orchestration (weight: 5)
Knowledge Areas
Understand the application model of Docker Compose β
Create and run Docker Compose Files (version 3 or later) β
Understand the architecture and functionality of Docker Swarm mode β
Run containers in a Docker Swarm, including the definition of services, stacks and the usage of secrets β
Understand the architecture and application model Kubernetes β
Define and manage a container-based application for Kubernetes, including the definition of Deployments, Services, ReplicaSets and Pods β
Terms and Utilities
docker-compose
docker
kubectl
702.3 Container Infrastructure (weight: 4)
Knowledge Areas
Use Docker Machine to setup a Docker host β
Understand Docker networking concepts, including overlay networks β
Create and manage Docker networks β
Understand Docker storage concepts β
Create and manage Docker volumes β
Awareness of Flocker and flannel β
Understand the concepts of service discovery β
Basic feature knowledge of CoreOS Container Linux, rkt or lxd β
Understand security risks of container virtualization and container images and how to mitigate them β
β
Terms and Utilities
703 Machine Deployment
703.1 Virtual Machine Deployment (weight: 4)
Knowledge Areas
Understand Vagrant architecture and concepts, including storage and networking β
Retrieve and use boxes from Atlas β
Create and run Vagrantfiles β
Access Vagrant virtual machines β
Share and synchronize folder between a Vagrant virtual machine and the host system β
Understand Vagrant provisioning, including File, Shell, Ansible and Docker β
Understand multi-machine setup β
Terms and Utilities
703.3 System Image Creation (weight: 2)
Knowledge Areas
Understand the functionality and features of Packer β
Create and maintain template files β
Build images from template files using different builders β
Terms and Utilities
704 Configuration Management
704.1 Ansible (weight: 8)
Knowledge Areas
Understand the principles of automated system configuration and software installation β
Create and maintain inventory files β
Understand how Ansible interacts with remote systems β
Manage SSH login credentials for Ansible, including using unprivileged login accounts β
Create, maintain and run Ansible playbooks, including tasks, handlers, conditionals, loops and registers β
Set and use variables β
Maintain secrets using Ansible vaults β
Write Jinja2 templates, including using common filters, loops and conditionals β
Understand and use Ansible roles and install Ansible roles from Ansible Galaxy β
Understand and use important Ansible tasks, including file, copy, template, ini_file, lineinfile, patch, replace, user, group, command, shell, service, systemd, cron, apt, debconf, yum, git, and debug β
Awareness of dynamic inventory β
Awareness of Ansibles features for non-Linux systems β
Awareness of Ansible containers β
Terms and Utilities
ansible.cfg
ansible-playbook
ansible-vault
ansible-galaxy
ansible-doc
Knowledge Areas
Basic feature and architecture knowledge of Puppet β
Basic feature and architecture knowledge of Chef β
Terms and Utilities
Manifest, Class, Recipe, Cookbook
puppet
chef
chef-solo
chef-client
chef-server-ctl
knife
705 Service Operations
705.1 IT Operations and Monitoring (weight: 4)
Knowledge Areas
Understand goals of IT operations and service provisioning, including nonfunctional properties such as availability, latency, responsiveness β
Understand and identify metrics and indicators to monitor and measure the technical
Understand and identify metrics and indicators to monitor and measure the logical
Understand the architecture of Prometheus, including Exporters, Pushgateway, Alertmanager and Grafana β
Monitor containers and microservices using Prometheus β
Understand the principles of IT attacks against IT infrastructure β
β
Understand the principles of the most important ways to protect IT infrastructure β
β
Understand core IT infrastructure components and their role in deployment β
β
Terms and Utilities
Prometheus, Node exporter, Pushgateway, Alertmanager, Grafana
Service exploits, brute force attacks, and denial of service attacks
Security updates, packet filtering and application gateways
Virtualization hosts, DNS and load balancers
705.2 Log Management and Analysis (weight: 4)
Knowledge Areas
Understand how application and system logging works β
Understand the architecture and functionality of Logstash, including the lifecycle of a log message and Logstash plugins β
Understand the architecture and functionality of Elasticsearch and Kibana in the context of log data management (Elastic Stack) β
Configure Logstash to collect, normalize, transform and ship log data β
Configure syslog and Filebeat to send log data to Logstash β
Configure Logstash to send email alerts β
Understand application support for log management β
Terms and Utilities
logstash
input, filter, output
grok filter
Log files, metrics
syslog.conf
/etc/logstash/logstash.yml
/etc/filebeat/filebeat.yml