Prevent access to company resources by hostile external agents (eg hackers)įor 2. Control access to company resources for internal staffĢ. There are two issues I'm addressing with a security policy:ġ.
The factory is a restricted area, so external agents can't get physical access to the computers.
CAT FACTORY PASSWORD WINDOWS 7 SOFTWARE
We use our antivirus software to lock down the computers (no internet access, no access to file shares, no USB access). However, this may cost a bit more than it's worth for only 5 machines. That way you're centrally managing both the desktop and the user account. You could use a local machine account, but I think you'd have better management capability with a domain account.Īnother option would be to use a similar kiosk sort of setup, but couple it with some sort of remote desktop setup. Auto-logon is a couple of quick registry edits, and the stored password can be updated via PowerShell. You'll need to play around with mandatory profiles and Group Policy lockdown.
CAT FACTORY PASSWORD WINDOWS 7 HOW TO
I doubt, however, that she would have been able to browse to another site even if she knew how to use IE's various keyboard shortcuts to navigate.Įxtrapolating this to a manufacturing environment shouldn't be too difficult.
The screensaver was password protected, but it didn't appear to be an actual network login.If I had to guess, I'd say this was controlled via Group Policy, with relevant applications configured auto-start as part of the login sequence. Staff had no access to the Start Menu at all (they were Windows machines) and moved through various required applications via ALT+TAB. The computer appeared to be setup in kiosk mode.While the lovely lass who was assisting me was trying to look up the availability of self-assembled pocket doors, I noticed the following: This doesn't seem very secure, and isn't very practical either as if the computer is turned off for any reason (eg during a power cut), no-one can log on to it apart from the manager, who may not be around if it is during a weekend shift.įor those of you running a similar environment, what do you do? Sharing an account but having the password expire every 90 days would be impractical.Īt the moment, the factory manager logs on using a single account with a password that never expires and the computer remains switched on and unlocked 24/7, so anyone can walk up to it and use it. Giving them individual user accounts would be impractical (and potentially expensive). I don't know what the policy for these computers should be. These are used to lookup stock details, check part drawings, view works orders etc etc. However, we have around 25 staff on the factory floor who share 5 PCs. Ie unique passwords passwords expire every 90 days computer is locked after 5 minutes of inactivity staff are not permitted to tell anyone their password. For our desk based office workers we follow fairly standard procedures for computer security.
0 kommentar(er)
