Securing files from IT

[kreed]

"Tom Lake" wrote in message
"Allen Drake" wrote in message

For the first time ever I will need to allow someone to have access
to my laptop. IT will be installing CAD applications and I espacially
don't want anyone to have access to my files in Outlook 2010 and other
files to numerous to even consider.

Can I get some opinions on a good way to at least password protect
Outlook? I assume Administrator rights will be needed to install
applications. I have never set up accounts as I am the only one that
has ever use any of my systems. Can I set up a limited account for IT
use that will block everything but what they need to do?

Thanks for any suggestions.

Al.
Forget it. Even password protected Outlook can be bypassed with ease.
Any IT person who wants to see your data and has physical access to your
machine can see anything they want. Even if you delete the data off your
hard drive, it can be brought back, even if overwritten by other data. I
worked in
a computer forensics department for a while and we could get data back even
if it was overwritten up to six or seven times. That was years ago. I'm sure
the
depth is even greater now. Any IT person worth hiring has a code of ethics,
however and wouldn't poke around your personal data.

Tom Lake

Exactly, IT couldn't care less what's on your laptop - as long as its not
connected to 'their' network
K

 

[J. P. Gilliver (John)]

In message <[email protected]>, Allen Drake

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department. Different from the network I am on
while on company property. One other option I have is to install the
application myself in my home. I have been given that option but it is
taking longer than I expected to get the disks. I was considering the
install be done if I wanted to bring my laptop to work. If and when I

Is this an application they already have, and install on your work
machine and others, or would your home example be the first one your
company has dealt with?

If it's one they are familiar with, can't they just lend you the disc(s)
they use? I'm puzzled about the wait you describe.
[]

 

[Allen Drake]

In my work experience, I don't think I've ever had IT staff working
on a home computer in an official way, as a prerequisite.
Possible combinations where I worked would include.

1) IT staff maintain software and computers at work. This is
what everyone has grown to expect when they work at a high tech
company. Company hardware, company provided software.
Services include daily backups etc.

2) Company buys software for employee, employee takes it home and
installs it on home computer. No IT staff need examine the home machine
for this to happen. If the employee needs assistance with the
software, it would be solely at the employee's request. Or the
employee could brain it out for themselves, or even ask questions
of IT (consult) without actually bringing in the hardware. An example
might be, a copy of Microsoft Word or other word processing software.

3) Company provides complete "work at home" environment, including company
computer for usage in the home. It's even possible for that setup to
have remote backups. Software on the computer could be managed the same
as (1). Company pays for broadband connection. A person would be a fool,
for mixing personal files with such a machine, as for all intents and purposes,
it's a "machine at work".

So I can't say, I've experienced a home machine, *having* to be
given to IT staff as a prerequisite. Perhaps in the case of (2),
an employee might ask his local IT guy, to take a look at a home
machine brought in. But then the hardware would have to be signed
in and signed out at the security desk.

If you really need to bring the machine to work, and have software
installed on it, you have the option of using two hard drives.
One would be your regular OS hard drive, with personal items on it.
The second hard drive, would have a "clean" OS installed on it.
When the machine was taken to work, only the "clean" hard drive
would be physically present inside the computer. When back home
again, two hard drives would be present, and a "reboot" of the clean
drive, would allow using the copy of Solidworks. Using the BIOS
popup menu, you can select at boot time, which drive to boot.
(Booting doesn't have to be managed in an OS boot menu, it can
also be managed at the BIOS level.)

With both drives present, you might want to turn off System Restore,
because I imagine a dual disk setup like that, would make a mess
of any restore points. Boot up the disks, installed one at a time, turn
off System Restore. Then put both drives in the box, and switch
between them as needed.

Expensive software can be "keyed" to a number of assets inside
the computer (or even externally, to a floating license server),
and I doubt the software can be moved from one drive to the other
drive, easily. So it's not like I'm suggesting this "clean" drive
concept, with the idea you move the software over to the other
drive when you get it home. I doubt that would work. It's probably
going to have to stay put. For example, the license key generator
program, might record the disk hardware serial number or the like.

Paul

Excellent post Paul. Thanks. I always enjoy your posts as mostly I
sit back and lurk and rarely reply.

My laptop is an Asus G73SW with one hdd. At this time I am unable to
locate a bracket to install a second drive. It seems like I will just
wait for disks/disk to be handed to me for my own install. I haven't
even met the IT guy and was just informed a short time ago I could
have the app installed on my personal computer by the chief engineer
who said he would supply me with the media. Sounds like this is much
easier in the long run.

Regards.

Al.

 

[Allen Drake]

Allen Drake wrote:

For the first time ever I will need to allow someone to have access
to my laptop. IT will be installing CAD applications and I espacially
don't want anyone to have access to my files in Outlook 2010 and other
files to numerous to even consider.

Can I get some opinions on a good way to at least password protect
Outlook? I assume Administrator rights will be needed to install
applications. I have never set up accounts as I am the only one that
has ever use any of my systems. Can I set up a limited account for IT
use that will block everything but what they need to do?

Thanks for any suggestions.

Al.

IT already has access to your Outlook files if you are using Exchange as
your mail server. Since you say "IT" then your workstation is in some
corporate network setup and it's likely they are using Exchange. You
only have a *copy* of what is in your mailbox up on their Exchange
server. Also, it is highly likely that they already monitor their
network traffic so anything within your e-mails, even those that come
from an outside e-mail provider (Hotmail, Gmail, etc), can be
interrogated for keywords and recorded. Also remember that all that
Outlook data is *their* property, not yours. You are using their
property: their workstation, their network, their mail servers, their
software. Plus you are supposed to be working for them when you are at
work. Thay may even have installed a [hidden] client on your host to
assist in backing up all their workstations. They can walk over to your
host, logon as Administrator, and take ownership of all your files. If
you thought they didn't have or couldn't get at that data, you're wrong.

You won't protect your mailbox data on their Exchange server. You can't
be sure what they sniffed out on *their* network while you were using
*their* computer. At best, you can use an encryption tool, like
TrueCrypt, to store your other data files that you don't want them to
see. However, some companies have policies that you cannot secrete any
files on *their* property without their permission and without their
availability to access; else, they'll just delete it, especially if they
just reimage your HDD with their sysprep image when you call for help
and that's the quickest way to get you back to doing your work.

By your question, it looks like you don't even have admin privileges on
your host. You login to their network domain using the account they
gave you which assigns you the privileges they choose to give you. At
best, you may be granted a login that gives you admin privs on just that
host alone (but that requires manual configuration and often the IT
folks aren't willing to work with an individual and instead assign
accounts and their privs in "groups" so you belong to a group that
regulates what privs you get). If, for example, you worked in a Dev or
QA group, then you need admin privs but your domain account will give
them only to that host, not any others. Yet the sysadmins will still
have full privileges on your host and can do anything you can do as an
admin.

Forget about hiding your e-mails. They already have that data on their
Exchange server or by sniffing their network traffic. For that other,
um, "personal stuff" either consider removing it from their property or
hide it in an encrypted container (e.g., TrueCrypt and BestCrypt
Portable are free). Of course, that assumes that they aren't running
keyloggers or data miners on *their* property to monitor what their
employees are doing.

If you don't want them finding those data files on their property and
possibly looking inside, don't put them there (on their workstations or
transferred across their network).

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department. Different from the network I am on
while on company property. One other option I have is to install the
application myself in my home. I have been given that option but it is
taking longer than I expected to get the disks. I was considering the
install be done if I wanted to bring my laptop to work. If and when I
decided to do this is what prompted me to this post for advice after
searching for a way to PW protect Outlook 2010. I don't use exchange.
Only Solid works, MasterCam, AutoCad and a few other design SW most in
the privacy of my own home. I might voluntarily bring a drawing home
to complete or modify rather than stay on the job.

It's just that simple.

I guess that it depends on how much you can rely on the IT people to
just install the CAD/CAM software and nothing else.

I'd likely take the laptop to work, go to the IT department, get them to
hand me the install disks, and do it myself.

Lets just say that I'm retired, and no longer have to deal with company
or govt. IT groups. In my years working with minicomps and then P/Cs,
The IT departments went from (If it's not a mainframe, we don't want
anything to do with it!) to (We control Everything, or else!)

The latter gets really funny when you are dealing with a P/C or similar
computer that is used to control banks of instrumentation and equipment.
Thee IT people usually take one look, and eventually say something to
the effect that you can do whatever you want. It can get a bit sticky
when that includes LAN/WAN access without the IT's favorite software.

Obviously you have the years and experience I will never have and I
respect your wealth of knowledge. I plan on never retiring before the
dirt nap. I just having way to much fun above ground.

Al.

 

[Allen Drake]

Allen Drake wrote:

For the first time ever I will need to allow someone to have access
to my laptop. IT will be installing CAD applications and I espacially
don't want anyone to have access to my files in Outlook 2010 and other
files to numerous to even consider.

Can I get some opinions on a good way to at least password protect
Outlook? I assume Administrator rights will be needed to install
applications. I have never set up accounts as I am the only one that
has ever use any of my systems. Can I set up a limited account for IT
use that will block everything but what they need to do?

Thanks for any suggestions.

Al.

IT already has access to your Outlook files if you are using Exchange as
your mail server. Since you say "IT" then your workstation is in some
corporate network setup and it's likely they are using Exchange. You
only have a *copy* of what is in your mailbox up on their Exchange
server. Also, it is highly likely that they already monitor their
network traffic so anything within your e-mails, even those that come
from an outside e-mail provider (Hotmail, Gmail, etc), can be
interrogated for keywords and recorded. Also remember that all that
Outlook data is *their* property, not yours. You are using their
property: their workstation, their network, their mail servers, their
software. Plus you are supposed to be working for them when you are at
work. Thay may even have installed a [hidden] client on your host to
assist in backing up all their workstations. They can walk over to your
host, logon as Administrator, and take ownership of all your files. If
you thought they didn't have or couldn't get at that data, you're wrong.

You won't protect your mailbox data on their Exchange server. You can't
be sure what they sniffed out on *their* network while you were using
*their* computer. At best, you can use an encryption tool, like
TrueCrypt, to store your other data files that you don't want them to
see. However, some companies have policies that you cannot secrete any
files on *their* property without their permission and without their
availability to access; else, they'll just delete it, especially if they
just reimage your HDD with their sysprep image when you call for help
and that's the quickest way to get you back to doing your work.

By your question, it looks like you don't even have admin privileges on
your host. You login to their network domain using the account they
gave you which assigns you the privileges they choose to give you. At
best, you may be granted a login that gives you admin privs on just that
host alone (but that requires manual configuration and often the IT
folks aren't willing to work with an individual and instead assign
accounts and their privs in "groups" so you belong to a group that
regulates what privs you get). If, for example, you worked in a Dev or
QA group, then you need admin privs but your domain account will give
them only to that host, not any others. Yet the sysadmins will still
have full privileges on your host and can do anything you can do as an
admin.

Forget about hiding your e-mails. They already have that data on their
Exchange server or by sniffing their network traffic. For that other,
um, "personal stuff" either consider removing it from their property or
hide it in an encrypted container (e.g., TrueCrypt and BestCrypt
Portable are free). Of course, that assumes that they aren't running
keyloggers or data miners on *their* property to monitor what their
employees are doing.

If you don't want them finding those data files on their property and
possibly looking inside, don't put them there (on their workstations or
transferred across their network).

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department. Different from the network I am on
while on company property. One other option I have is to install the
application myself in my home. I have been given that option but it is
taking longer than I expected to get the disks. I was considering the
install be done if I wanted to bring my laptop to work. If and when I
decided to do this is what prompted me to this post for advice after
searching for a way to PW protect Outlook 2010. I don't use exchange.
Only Solid works, MasterCam, AutoCad and a few other design SW most in
the privacy of my own home. I might voluntarily bring a drawing home
to complete or modify rather than stay on the job.

It's just that simple.

If it's your property and not connected to their network, and if they
want a legit copy of their software on your computer, why don't they
just give you the installation CD? It might remain their license but
they'll have to track that and take care of retrieving the license when
your employment ends but that's all their responsibility.

Supplying me with the SW disks was an option. One I have now decided
to use. This is just getting to complicated to do otherwise. It seems
that they are not to strict about tracking the use of that
application. The whole place is so laid back it's unbelievable. It
takes so long to get things done it seems no one even cares. I can
wait.

Since you'll be bringing in your laptop for them to install their
software, it seems you'll be standing right next to them when they do
the install so you could watch what they're doing. Make an appointment
and wait and watch while the installation gets done. Somehow I have to
wonder why you would trust them to install software but then mistrust
them with your personal files. If you suspect they will spy on you or
steal your data, how do you know they didn't install a keylogger, data
miner, or other malware onto your computer? Once someone has physical
control over your computer, it's impossible to be absolutely sure they
didn't steal from you or will steal from you. Seems to be some
"politics" going on between you and the IT folks.

I would never know what to expect and while I would like to sit and
watch I might not have it that easy. I have only been working there
for a short time and haven't even met the IT guy or most of the rest
of the staff. No politics going on there other then being very
friendly with the rest of the guys in engineering. I need them and
they need me.

A password on Outlook's .pst file won't prevent a hacker from getting
into the .pst file. It is very weak protection and there are utilities,
like at Nirsoft, that will divulge the password. As mentioned, you
could use TrueCrypt to put the sensitive files inside an encrypted
container for which only you know the password. You can configure
TrueCrypt to load those volumes on loading TrueCrypt and configure
TrueCrypt to load on login at which time you will be prompted for the
password; however, any apps that need access to those data files will
need you to unprotect the volume with those files before you start those
apps. That is, for example, you'll have to open the TrueCrypt container
and enter the password BEFORE you load Outlook. Of course, you'll have
to configure Outlook to look for its .pst file at the different
location. Then you'll need a disk wipe tool that clears all unused disk
space but after first cleaning out the Recycle Bin.

Using TrueCrypt or BestCrypt, you can secrete files inside an encrypted
container to which only you have the password.

Thanks. I have learned more tonight than I had bargained for.

Al.

 

[Allen Drake]

"Allen Drake" wrote in message

For the first time ever I will need to allow someone to have access
to my laptop. IT will be installing CAD applications and I espacially
don't want anyone to have access to my files in Outlook 2010 and other
files to numerous to even consider.

Can I get some opinions on a good way to at least password protect
Outlook? I assume Administrator rights will be needed to install
applications. I have never set up accounts as I am the only one that
has ever use any of my systems. Can I set up a limited account for IT
use that will block everything but what they need to do?

Thanks for any suggestions.

Al.
Forget it. Even password protected Outlook can be bypassed with ease.
Any IT person who wants to see your data and has physical access to your
machine can see anything they want. Even if you delete the data off your
hard drive, it can be brought back, even if overwritten by other data. I
worked in
a computer forensics department for a while and we could get data back even
if it was overwritten up to six or seven times. That was years ago. I'm sure
the
depth is even greater now. Any IT person worth hiring has a code of ethics,
however and wouldn't poke around your personal data.

Tom Lake

That's the way I had it figured and when you get right down to it I
really don't have anything to hide other then simple personal data
like bank statements and purchase orders. Birth certificates the usual
things people keep on computers. However I would never return a HDD
for warrantee replacement. I have every one I have ever owned since
the first PC running Windows 3.0. Lets see, that must be a bit over
several dozen I guess.

Al.

 

[Allen Drake]

In message <[email protected]>, Allen Drake

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department. Different from the network I am on
while on company property. One other option I have is to install the
application myself in my home. I have been given that option but it is
taking longer than I expected to get the disks. I was considering the
install be done if I wanted to bring my laptop to work. If and when I

Is this an application they already have, and install on your work
machine and others, or would your home example be the first one your
company has dealt with?

If it's one they are familiar with, can't they just lend you the disc(s)
they use? I'm puzzled about the wait you describe.
[]

Solid Works is an application that is used by the entire engineering
staff so I imagine it's use and installation is second nature. The
wait is business as usual at this work place as it's installation on
my personal PC is not required to get my job done so I'm sure no one
is in any hurry. The guy I had spoken to seems to keep forgetting to
bring in his disks so at one time I had considered bringing my laptop
in with me. Nothing puzzles my any more at this place.

 

[Char Jackson]

Solid Works is an application that is used by the entire engineering
staff so I imagine it's use and installation is second nature. The
wait is business as usual at this work place as it's installation on
my personal PC is not required to get my job done so I'm sure no one
is in any hurry. The guy I had spoken to seems to keep forgetting to
bring in his disks so at one time I had considered bringing my laptop
in with me. Nothing puzzles my any more at this place.

Bringing in his disks? This place gets more dodgy-sounding with every
post.

 

[Paul]

Bringing in his disks? This place gets more dodgy-sounding with every
post.

If you have a pool of floating licenses, you may have the main install
on a server, and one install image is serving everyone. We had some software
like that, and it was on a triplicated server structure (failover), to avoid
outages.

We had other software, where for performance reasons, the executables were
kept on each workstation drive.

For individually licensed software, there is more of a relationship between
media and authenticity. But if you have a 30 seat floating license for
something, you either take the same CD set and install 30 (or more)
PCs or workstations with it, or you do a central install on a server
and run it from there. With floating licenses in that situation, the
first 30 people to start working "burn up" the licenses (because you acquire
the license on the fly, from the networked license server), leaving the
others to twiddle their thumbs. Having a floating scheme, makes more
efficient use of licenses, and usually the prices of the various license
types differ, to compensate a bit for it.

If a designer only spends 30% of time using a particular tool, you can
cut the yearly license fee correspondingly. (At least, as long as there
aren't any serious usage "peaks" to ruin the statistics.)

For example, we had a relatively expensive simulation package, and only
had a single floating license for it. Any of the designers in the various
buildings in town, could access it. But if you were doing serious work,
you'd have your department buy a private copy (fixed license), so you'd be
guaranteed of a simulation running immediately. I used to use that single floating
copy all the time, and it was great, as I was getting the benefit of a
$35,000 per annum package, at a fraction of the cost. (Billing would be worked
out later, as you were sharing with other departments.)

I'm surprised SolidWorks doesn't use a database of some kind, in which
case you're kinda tethered to the central database. Our mechanical designers
at work (using different software), had an extensive database, and it would
take hours to load a design, due to the crappy network we had. For example,
the database machine would probably not be in the same building as the designer
using it. Making copies of the database, would be frowned on, and due to the
dynamic nature (if you're working as a team), wouldn't do you much good anyway.
So even if you have the software installed on a home machine, there might
still be a need to have network access (say, over a Virtual Private Network
connection).

Paul

 

[Allen Drake]

Bringing in his disks? This place gets more dodgy-sounding with every
post.

Actually I am not sure if they are copies or original disks. I am sure
the company has multi user licenses. I was told by my boss and several
others the installation was allowed so I am not concerned. It is
written in the handbook that everything should be legal regarding
computer SW so I am not planning on doing anything but what is legit.

 

[Andy Burns]

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department.

Thanks for clarifying.

Undoubtedly they will ask for local admin rights to install the
software, and they will have physical access to the laptop, With those
two they could do more or less whatever they want to your machine, *IF*
they decided, fo course they shouldn't if it's not "their" machine.

However, if there's stuff on there you don't want them to see, and you
don't trust them not to look or take a copy while it's there you need to
either remove it from the laptop temporarily (and wipe over it if truly
paranoid) or encrypt all files you want to keep away from their eyes
using something like truecrypt. and a decent password.

 

[Andy Burns]

This is my personal laptop that I want Solid Works installed on so I
can use it at home if I choose. Many of the engineers do this. I am
new at this job and would like to do some work at home also. I am not
trying to hide anything and have no secrets but also don't want to
leave all my personal information open to anyone I don't know.

When you mentioned "IT" I said it sounded like a corporate setup and
based my post on that, making you aware that any permissions you'd
removed could easily be put back by "them".

Answer me this:
Would you have no problem allowing IT to have your personal laptop
without any security?

I would definitely *not* allow them.

I don't see anything suspicious about me post what-so-ever.
Post your phone number here and we can all discuss it.

XLIV-CXVI-MMCDLXXVII-DLXIX

 

[Allen Drake]

Thanks for clarifying.

Undoubtedly they will ask for local admin rights to install the
software, and they will have physical access to the laptop, With those
two they could do more or less whatever they want to your machine, *IF*
they decided, fo course they shouldn't if it's not "their" machine.

However, if there's stuff on there you don't want them to see, and you
don't trust them not to look or take a copy while it's there you need to
either remove it from the laptop temporarily (and wipe over it if truly
paranoid) or encrypt all files you want to keep away from their eyes
using something like truecrypt. and a decent password.

That's the conclusion I have that has made me decide to wait as long
as it takes to do the install myself. I think one of the people I
spoke with might have been the network administrator. Paranoia is only
good thinking.

 

[Char Jackson]

Actually I am not sure if they are copies or original disks. I am sure
the company has multi user licenses. I was told by my boss and several
others the installation was allowed so I am not concerned. It is
written in the handbook that everything should be legal regarding
computer SW so I am not planning on doing anything but what is legit.

Two points:
1. I wasn't making a comment about whether or not the company owns
enough licenses. They may, for all I know.
2. I wasn't making a comment about *you* doing anything that wasn't
legit.

I was only picking up on your use of the phrase, "bring in his disks",
which to me sounded like the guy keeps the company-owned software at
his house or something.

 

[Char Jackson]

If you have a pool of floating licenses, <snip>

Thanks, Paul, but my post wasn't related to floating licenses, or to
licensing at all. I was making a comment about the guy who apparently
keeps forgetting to bring the disks to work.

 

[Allen Drake]

Two points:
1. I wasn't making a comment about whether or not the company owns
enough licenses. They may, for all I know.
2. I wasn't making a comment about *you* doing anything that wasn't
legit.

I was only picking up on your use of the phrase, "bring in his disks",
which to me sounded like the guy keeps the company-owned software at
his house or something.

He may keep many disks that I am unaware of but on the other hand I
may have misunderstood him. He may simply have them in his office in
another building and he may be a network administrator. Like I
indicated before I am new to this organization and not completely
familiar with the duties of most employees I encounter on a day to
day basis. Mine is not to wonder why but to gain access to as many
tools as I am allowed and keep my mouth shut about their origin.

What would you do? Would you question how the golden goose got into
your back yard or would you collect its feathers?

Al.

 

[Philip Herlihy]

"Tom Lake" wrote in message
"Allen Drake" wrote in message

For the first time ever I will need to allow someone to have access
to my laptop. IT will be installing CAD applications and I espacially
don't want anyone to have access to my files in Outlook 2010 and other
files to numerous to even consider.

Can I get some opinions on a good way to at least password protect
Outlook? I assume Administrator rights will be needed to install
applications. I have never set up accounts as I am the only one that
has ever use any of my systems. Can I set up a limited account for IT
use that will block everything but what they need to do?

Thanks for any suggestions.

Al.
Forget it. Even password protected Outlook can be bypassed with ease.
Any IT person who wants to see your data and has physical access to your
machine can see anything they want. Even if you delete the data off your
hard drive, it can be brought back, even if overwritten by other data. I
worked in
a computer forensics department for a while and we could get data back even
if it was overwritten up to six or seven times. That was years ago. I'm sure
the
depth is even greater now. Any IT person worth hiring has a code of ethics,
however and wouldn't poke around your personal data.

Tom Lake

Exactly, IT couldn't care less what's on your laptop - as long as its not
connected to 'their' network
K

I'm self-employed, providing a wide-ranging technical support service.
If I were motivated to, I could probably break any "protection" a non-
specialist might try to use. However, unless you're very obviously a
paedophile or a terrorist, you'd find it hard to imagine how
uninterested tech support people would be with your personal files. If
you've ever worked in a bar or a shop, you'll know you become detached
from the desirability of other people's money very quickly. It's even
more so with your data. Your email will never be as interesting as my
own, and I have more of that than I can handle.

 

[Mark F]

This is my personal laptop that I want Solid Works installed on so I
can use it at home if I choose. Many of the engineers do this. I am
new at this job and would like to do some work at home also. I am not
trying to hide anything and have no secrets but also don't want to
leave all my personal information open to anyone I don't know.

Answer me this:

Would you have no problem allowing IT to have your personal laptop
without any security?

Perhaps you can set up a virtual machine and give the IT guy
Administrator access to the access to the virtual machine.

You who have to run the virtual
machine to run the program that the ID guy installs on the virtual
machine.

 

[Allen Drake]

Perhaps you can set up a virtual machine and give the IT guy
Administrator access to the access to the virtual machine.

You who have to run the virtual
machine to run the program that the ID guy installs on the virtual
machine.

I will have to get to know this VM I keep forgetting to read about.
So far from all I have learned in this thread is if you want anything
done the way you want it is to do it yourself.

Al.

 

[WaIIy]

Let me make this easier. My laptop that will soon have Solid Works
installed is my private computer not in any way monitored or
controlled by the IT department. Different from the network I am on
while on company property. One other option I have is to install the
application myself in my home. I have been given that option but it is
taking longer than I expected to get the disks. I was considering the
install be done if I wanted to bring my laptop to work. If and when I
decided to do this is what prompted me to this post for advice after
searching for a way to PW protect Outlook 2010. I don't use exchange.
Only Solid works, MasterCam, AutoCad and a few other design SW most in
the privacy of my own home. I might voluntarily bring a drawing home
to complete or modify rather than stay on the job.

It's just that simple.

This isn't a computer issue.

Just make an appointment with the guy, have him install while you're
there and take it back.