If anyone has any experience executing robot scripts on a classified application, I would love to pick your brain.
Due to DSS regulations, we cannot leave scripts running unattended in our secure room.
Current options include getting a COMSEC safe with a ventilation unit. Even then, if I'm logged in and the scripts are running within the safe, our security officer and IT will also have access to the safe and we can not accurately describe the situation as secure and DSS may not accept this plan.
If I could find a simple way to run the robot scripts and lock the computer that would be easier and cheaper. I've heard that is possible with VMware (and that is under consideration), but if there is an easier way I would appreciate it if someone could let me know!
I have not done this specifically for government regulations but for our own security.
As you have seen, when Robot is running the keyboard and mouse are still accessible which is a security hole.
We use VMWare and MS Virtual Servers to get around this.
All of our virtual host servers are locked in a "secure" room. Only those that need physical access to them are allowed in the room unattended. For those of us that need virtual access we are granted permissions through AD. You can connect to the console of the virtual machines through RDP and control a Robot session. Once the scripts are running you can then disconnect from the virtual and allow the scripts to continue on their merry way. As far as the scripts are concerned they are still running in a logged in version of windows. But since they are virtual, only those with proper access can connect to the RDP session and gain access to them.
If this or any response has helped you, please reply to the thread stating that it worked so other people with a similar issue will know how you fixed your issue!