Timing makes this a little ironic
IBM Privileged Users, which some people have referred to, have to use an IBM created Linux platform called OpenClient. These are users who have a need to hold privileged information on their workstations, be it client confidential, personal data or commercially sensitive.
For stock deployments of OpenClient, RedHat Enterprise has been used as the base Linux (although it can sit on SuSE, Ubuntu or Debian), and for a long time the RedHat version has been RHEL 6.
RHEL 6 goes out of support in June, so many IBMers in positions that need secure systems have just been told to upgrade to an OpenClient release based on RHEL7.
The re-installation process, as defined by IBM, involves a 16GB USB memory stick.
So, privileged users, on systems that are not allowed to have USB memory sticks plugged in, have been told to use a USB stick to perform the update, and now company policy prohibits using removable storage at a different level as well! Brilliant.
Maybe IBM should go back to using 3278 green-screen terminals, NOSS/PROFS and SNA. I hear some of the (few) remaining old buildings may still have IBM Structured Cabling for 3270 coax and Token Ring.