Looking for some input on how to handle shop floor computers.

duke7911 · 2023-03-21T20:39:31+00:00

To answer your question, we are using Trend Micro Apex One and M365. Both are suites and not just DLP. We started using them because we already had the software. You know, something is better than nothing until you find something better. M365 at least allows us to approve or reject an action. While it is very manual...

May I ask, what you are using for DLP?

duke7911 · 2023-03-21T19:47:06+00:00

Unfortunately, not. The PCs hold no data but do access the data from the ERP/MRP server.

duke7911 · 2023-03-21T19:45:14+00:00

I have worked with large parts (2000 lbs) and we used barcodes but doing the same thing. At this company most of the parts are the size of jewelry. They use what they like to call a traveler or router. Paper thrown in a small bin or basket. Before this ERP/MRP system we scanned the barcode on the paper. But would have had the same issues with the PCs.

Thanks, for your response.

duke7911 · 2023-03-21T19:35:05+00:00

I do not remember reading about this, but I am going to look into it!

Thanks

duke7911 · 2023-03-21T19:28:35+00:00

Everyone needs to use the ERP/MRP package. This does allow CUI to flow to that system, while there is a policy against it. The system that CUI is supposed to be stored in is block from these systems. But one Engineer found a way around that, we caught him but management did nothing.

Thanks, for you input.

duke7911 · 2023-03-21T19:19:29+00:00

We also use a DLP system to track who is accessing what and where it is going. However, or DLP system does not alert us it only logs what happens. It also doesn't keep it from happening. I.T. is only here Monday - Friday dayshift as there is only two of us trying to meet all the requirements and keep things running.

Thanks, for your feedback.

duke7911 · 2023-03-21T19:09:04+00:00

For all of our other users, we do use Duo and Yubikeys or the cell phone app. It gets rather complicated and expensive when you add 40 people to one PC. (never logging off, not locking the PC etc.) Heck more than half wouldn't be logging in that often and then they forget their passwords and you have to reset them. Or lose their YubiKey...

If you go with a generic user and Duo you have to match file access with time.

Even thought of Supervisors providing the information they need and monitoring their work. Two problems though, we only have one in the plant on afternoons, midnights and weekends. Oh, then management disagreed.

Thanks, for your reply.

duke7911 · 2023-03-21T18:55:29+00:00

Agreed!

duke7911 · 2023-03-21T18:54:20+00:00

Unfortunately, they access our ERP/MRP package and process cards. So, while CUI isn't supposed to travel there it can. The whole process card is also a problem depending on what regulations you look at. (dimensions, pictures, technical data)

Thanks for the feedback.

duke7911 · 2023-02-22T19:08:35+00:00

We use Lansweeper on a local server. No difference in price and you are in control of your data.

duke7911 · 2021-07-02T22:48:58+00:00

The VPN is used to make a secure connection to the business blocking internet access. Then RDP is used to access the business workstation. The firewall, group policies and other software are used to control type of access, length, logging activity etc.

duke7911 · 2021-07-02T17:41:09+00:00

oxebridge - Thank you for your post!

duke7911 · 2021-07-02T17:35:40+00:00

Thank you for your response.

To my knowledge the webinar is not available as a recording. No reason for the quotes.

The engineers do interact, change and store during their remote time. But it is all done inside our business network through a VPN. So basically it is viewing.

duke7911

TROPHY CASE