[ale] Virtual machine questions for public use machines
Justin W Elam
justin.w.elam at gmail.com
Sat Jan 24 17:47:14 EST 2015
Yes this is possible.
I would advise to use a extender for the smartcard, monitor, sound, mouse
and keyboard so that the terminal CPUs can be put in a secure, locked and
CCTV monitored location. Some were able to integrate this into the monitor
case.
Sun used to have the Sun Ray system which was a possible solution but
Oracle's price is now too high in my opinion.
Have each terminal CPU be encrypted.
Manage security via smart card or federated SSO LDAP username and password,
one signon to logon to terminal, domain, and network servers.
Script terminal to access a new VM session for each logon and at 0600 local
Reboot the terminal.
Then save the logins for user public123
Configure VM only for OpenOffice and browser.
Another option is to use a custom live disc that is placed in the terminal
CPU and configure network or bios to reboot at 0600
Another option is to place a switch at the terminal to reboot the machine,
or allow cmd CTRL-ALT-DELETE to reboot terminal. And place sign stating
before use reboot machine.
The disc I have used is called
LPS-Public-Deluxe.
http://spi.dod.mil/lipose.htm
http://www.wpafb.af.mil/news/story.asp?id=123189629
Every so often the SPI office releases an upgrade that must be downloaded
to a CDROM if you would like updates.
Hope this helps your use case.
Your mileage may vary.
Good luck in your mission.
Warm regards,
--
-------------------------------------
Justin W Elam
E-mail :> justin.w.elam at gmail.com
###
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.ale.org/pipermail/ale/attachments/20150124/63de7f94/attachment.html>
More information about the Ale
mailing list