Hybrid studio · 4 weeks · intensive
Permissions & Identity Hygiene
ACLs, sudo patterns, and group design with least-privilege stories.
BRL 650 · informational only
Responsible mentor
Elias Carvalho
Learner success advisor who translates policy fights into lab stories.
Program narrative
You rebuild broken permission trees, audit sudoers fragments, and practice explaining tradeoffs to fictional stakeholders. Labs emphasize narration, not brute chmod -R.
Included drills
- ACL repair puzzles with mentor keys
- sudoers pair editing with review gates
- Group mapping exercises tied to HR-ish scenarios
- SELinux awareness module (enforcing/permissive)
- Weekly reflection prompts on privilege creep
- Scripted audits you can reuse cautiously
- Language templates for stakeholder updates
Outcomes we expect you to evidence
- Propose a group change with rollback steps
- Spot risky sudo shortcuts before they ship
- Explain POSIX vs ACL decisions succinctly
FAQ for this track
We reference sssd concepts only; full AD integration projects are not covered.
Experience notes
“Permissions & Identity Hygiene made our team rehearse stakeholder language before each sudo change.”
— Renata , Helpdesk lead · 5/5
“SELinux module was short—expected—but the ACL repair labs were dense in the right way.”
— Felipe M.