Pertemuan 15

Review Materi dan Persiapan Ujian Akhir Semester

Persiapan komprehensif untuk ujian praktik administrasi sistem

Tujuan Pembelajaran

Setelah menyelesaikan praktikum ini, mahasiswa mampu:

  • Mereview seluruh materi praktikum administrasi sistem semester 3
  • Melakukan simulasi ujian akhir semester yang komprehensif
  • Mengidentifikasi area yang perlu pendalaman lebih lanjut
  • Mempersiapkan strategi untuk ujian praktik akhir

Simulasi Ujian Akhir Semester

Scenario: Deployment Server Company "Digitalinnovate"

Latar Belakang: Anda ditugaskan sebagai lead system administrator untuk melakukan deployment server infrastructure perusahaan teknologi "Digitalinnovate" yang sedang berkembang pesat.

Requirements:
  • 50 karyawan dengan berbagai departemen
  • Layanan: File sharing, Web server, Database, Backup system
  • Keamanan: Firewall, Monitoring, Access control
  • Domain: digitalinnovate.local

Soal Simulasi Ujian Akhir

BAGIAN 1: SYSTEM DEPLOYMENT (30 Poin)

Tugas: Setup server dasar dengan spesifikasi berikut:

# Spesifikasi Server:
- Hostname: server-uas.digitalinnovate.local
- IP: 192.168.100.100/24
- Gateway: 192.168.100.1
- DNS: 8.8.8.8, 8.8.4.4
Subtasks:
  1. Konfigurasi network dan hostname
  2. Update system dan install package dasar
  3. Setup firewall dengan UFW (buka port needed only)
  4. Konfigurasi NTP untuk time synchronization
Expected Output: Server dapat terkoneksi jaringan dengan baik, hostname terkofigurasi dengan benar, firewall aktif dengan rules yang tepat.
BAGIAN 2: USER & GROUP MANAGEMENT (20 Poin)

Tugas: Buat struktur organisasi perusahaan

Departemen:
  • IT, HR, Finance, Marketing, Operations
  • Setiap dept: 1 manager, 2 staff
Subtasks:
  1. Buat group untuk setiap departemen
  2. Buat user sesuai struktur
  3. Set password policy: minimal 12 karakter, expire 60 hari
  4. Berikan sudo access hanya untuk manager
  5. Setup shared directory dengan permission yang tepat
Expected Output: Struktur user/group terorganisir dengan baik, password policy terimplementasi, permission shared directory sesuai kebutuhan bisnis.
BAGIAN 3: SERVICE DEPLOYMENT (30 Poin)

Tugas: Deploy layanan kritikal perusahaan

3.1 Web Server (Nginx/Apache)
  • Domain: www.digitalinnovate.local
  • Document root: /var/www/digitalinnovate
  • SSL certificate (self-signed)
3.2 Database Server (MySQL/PostgreSQL)
  • Database: company_db
  • User: db_admin dengan hak akses tepat
  • Backup automation
3.3 File Sharing (Samba/FTP)
  • Share directory untuk setiap departemen
  • Access control berdasarkan group
Expected Output: Web server accessible via domain, database operational dengan security, file sharing working dengan permission yang tepat.
BAGIAN 4: SECURITY & MONITORING (20 Poin)

Tugas: Implementasi keamanan dan monitoring

4.1 Hardening SSH:
  • Port 2222, key authentication only
  • Disable root login
  • Limit login attempts
4.2 Setup monitoring:
  • System resource monitoring
  • Log monitoring dan analysis
  • Alert system untuk critical issues
4.3 Backup strategy:
  • Daily incremental backup
  • Weekly full backup
  • Off-site backup simulation
Expected Output: SSH security hardened, monitoring system operational, backup strategy terimplementasi.

Review Materi Per Pertemuan

Pertemuan 1-3: Fundamental Administration
Key Concepts Review:
  • Linux file system hierarchy
  • User/group management (useradd, usermod, userdel)
  • File permissions (chmod, chown, chgrp)
  • Process management (ps, top, kill)
Practice Exercises:
  1. Buat script untuk automasi user creation dari file CSV
  2. Setup directory structure dengan permission yang kompleks
  3. Troubleshoot permission issues dalam scenario realistis
# Contoh command yang harus dikuasai:
chmod 755 /directory
chown user:group file
useradd -m -s /bin/bash username
ps aux | grep process
Pertemuan 4-6: Service Management
Key Services Review:
  • DNS server (BIND9) setup and configuration
  • DHCP server configuration and management
  • Web server (Apache/Nginx) deployment
  • Database server administration
Practice Exercises:
  1. Deploy internal DNS untuk domain company
  2. Setup web server dengan virtual hosts
  3. Configure database dengan replication
# Contoh konfigurasi penting:
sudo systemctl status nginx
sudo ufw allow 80/tcp
mysql -u root -p
named-checkconf
Pertemuan 7-9: Network & Security
Security Concepts Review:
  • Firewall configuration (iptables/UFW)
  • SSH hardening and key management
  • SSL/TLS certificate management
  • Network security and monitoring
Practice Exercises:
  1. Implementasi firewall rules kompleks
  2. Setup VPN server untuk remote access
  3. Hardening system berdasarkan CIS benchmarks
# Security commands:
sudo ufw enable
ssh-keygen -t rsa -b 4096
openssl req -new -x509 -key key.pem -out cert.pem
sudo fail2ban-client status
Pertemuan 10-12: Advanced Administration
Advanced Topics Review:
  • Performance monitoring and optimization
  • Automated task scheduling (cron/systemd)
  • Backup and recovery strategies
  • System logging and audit
Practice Exercises:
  1. Setup comprehensive monitoring system
  2. Implementasi backup strategy dengan retention policy
  3. Optimasi system performance berdasarkan workload
# Advanced administration:
crontab -e
sudo systemctl enable service
tar -czf backup.tar.gz /data
journalctl -u service --since "1 hour ago"

Troubleshooting Scenarios

Scenario 1: Server Performance Degradation
Symptoms:
  • High CPU usage (90%+)
  • Slow response time
  • Users complaining about application slowness
Troubleshooting Steps:
  1. Identify top resource-consuming processes
  2. Check system load average
  3. Analyze memory usage and swap activity
  4. Investigate disk I/O bottlenecks
  5. Check network connectivity and bandwidth
# Diagnostic commands:
top -bn1 | head -20
free -h
iostat -x 1 3
df -h
netstat -tulnp
Expected Solution: Identifikasi root cause (process, service, atau configuration issue), implementasi immediate mitigation, long-term prevention strategy.
Scenario 2: Security Breach Suspicion
Symptoms:
  • Unusual network traffic patterns
  • Unknown processes running
  • Failed login attempts in logs
  • System behaving erratically
Incident Response:
  1. Immediate containment procedures
  2. Evidence preservation and logging
  3. Root cause analysis
  4. System recovery and hardening
# Incident response commands:
sudo netstat -tulnp | grep ESTABLISHED
sudo ps aux | grep -v "$(whoami)"
sudo grep "Failed password" /var/log/auth.log
sudo lsof -i
Expected Solution: Isolation strategy, forensic analysis approach, recovery plan documentation.
Scenario 3: Service Outage
Symptoms:
  • Web service unavailable
  • Database connection failures
  • Network connectivity issues
  • Users cannot access critical applications
Recovery Procedure:
  1. Service status checking and restart attempts
  2. Dependency verification (network, database, storage)
  3. Log analysis for error identification
  4. Rollback procedures if needed
# Recovery commands:
sudo systemctl status nginx mysql
sudo journalctl -u nginx --since "1 hour ago"
ping -c 4 google.com
ss -tulnp | grep :80
Expected Solution: Systematic service recovery approach, communication strategy during outage, post-mortem analysis documentation.

Exam Preparation Strategy

Technical Skills Checklist
  • ✅ User and group management mastery
  • ✅ File system and permission management
  • ✅ Service configuration and troubleshooting
  • ✅ Network configuration and security
  • ✅ Performance monitoring and optimization
  • ✅ Backup and recovery procedures
  • ✅ Security hardening techniques
  • ✅ Automation and scripting skills
Time Management Strategy
  • 15 menit: Reading and understanding scenario
  • 60 menit: Implementation and configuration
  • 15 menit: Testing and validation
  • 10 menit: Documentation and cleanup
Common Pitfalls to Avoid:
  • ❌ Tidak membaca soal dengan teliti
  • ❌ Melupakan testing setelah konfigurasi
  • ❌ Tidak dokumentasi perubahan yang dilakukan
  • ❌ Terlalu lama pada satu task sehingga mengabalkan lainnya
  • ❌ Melupakan aspek keamanan dalam konfigurasi

Practice Exam Questions

Quick Fire Questions (5 minutes)
  1. Apa perbedaan antara chmod 755 dan chmod 750?
  2. Bagaimana cara melihat listening ports pada sistem Linux?
  3. Apa command untuk melihat default gateway?
  4. Bagaimana restart network service di Ubuntu?
  5. Apa fungsi dari file /etc/passwd dan /etc/shadow?
Scenario-based Questions (15 minutes)
  1. Describe step-by-step how you would migrate a web server from one machine to another with minimal downtime.
  2. Explain how you would troubleshoot a situation where users cannot connect to a file share.
  3. Outline a disaster recovery plan for a database server.
Hands-on Tasks (40 minutes)
  1. Setup a secure SSH configuration with specific requirements
  2. Configure a web server with virtual hosts and SSL
  3. Implement a backup strategy for critical data

Final Preparation Checklist

Pre-Exam Preparation
  • ✅ Review semua job sheet praktikum
  • ✅ Practice command-line muscle memory
  • ✅ Understand troubleshooting methodologies
  • ✅ Review security best practices
  • ✅ Practice time management dengan scenario realists
Exam Day Strategy
  • ✅ Baca semua soal sebelum mulai mengerjakan
  • ✅ Prioritasi tasks berdasarkan complexity dan points
  • ✅ Dokumentasi setiap step yang dilakukan
  • ✅ Test semua konfigurasi sebelum submit
  • ✅ Review akhir sebelum time's up
Post-Exam Review
  • ✅ Analisis areas of improvement
  • ✅ Document lessons learned
  • ✅ Update personal knowledge base
  • ✅ Prepare untuk real-world implementation

Additional Resources

Command Quick Reference:
# User Management
useradd, usermod, userdel, passwd, chage

# File Management
chmod, chown, chgrp, lsattr, chattr

# Process Management
ps, top, htop, kill, pkill, nice, renice
# Network Management
ip, ss, netstat, iptables, ufw

# Service Management
systemctl, journalctl, service

# Monitoring
top, vmstat, iostat, sar, dstat
Configuration Files to Review:
  • /etc/passwd, /etc/shadow, /etc/group
  • /etc/sudoers, /etc/ssh/sshd_config
  • /etc/fstab, /etc/hosts, /etc/resolv.conf
  • /etc/nginx/nginx.conf, /etc/mysql/my.cnf

SELAMAT BELAJAR DAN SEMOGA SUKSES DALAM UJIAN AKHIR!

Ingat: Practice makes perfect! Gunakan waktu review ini dengan maksimal untuk mengasah skills administrasi sistem Anda.

Pertemuan 14
Pertemuan 16