• @banneryear1868
    link
    English
    011 months ago

    We run virtual workstations and terminal servers for specific purposes, but a lot of our decisions are guided by NERC CIP standards and where certain things fall within that framework. The Windows workstations are probably the easiest part of this whole environment to manage though. It’s realtime data and all the applications linked to that where the complicated stuff is. If it was up to me we’d be a Kubernetes shop.

    • @CeeBee
      link
      English
      111 months ago

      a lot of our decisions are guided by NERC CIP standards and where certain things fall within that framework.

      I would hazard a guess that this is more of a “safe-bet” thing rather than a hard policy. I tried looking up anything that stipulates using Windows over any other OSes, and this Software Integrity and Authenticity is the only thing I could find with a five minute search.

      Microsoft Windows provides such a mechanism for Microsoft signed software through its default configuration and through a Group Policy Object (GPO) that expands this capability to other trusted third parties.

      It doesn’t make sense that you wouldn’t be able to use Linux, unless the higher-ups making the decisions are your classic dinosaurs that still believe Microsoft’s propaganda from the 2000’s about the scary “communist” Linux OS and the dangerous open-source programs that will steal your company secrets.

      • @banneryear1868
        link
        English
        111 months ago

        Nah it’s because some core apps are not supported by the vendors on non-Windows OSs and adding an extra layer just to run Windows apps virtually/remotely when we could run them on workstations is unnecessary.