cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted

Blocking USB Storage Devices

Jump to solution

I am looking at DLP to implement the blocking of unknown/unauthorised USB storage devices.

I thought that I could have one rule that blocked ALL devices, followed by another rule that allowed KNOWN devices that we had already defined.

That way all new/unknown devices would be blocked until I specifically allowed them.

However, if I understand correctly, the BLOCK ALL rule will override the ALLOW KNOWN rule, as block rules take precedence over allow rules and there is no way of making

them hierarchical.

I'm sure this is a standard thing to want to do, so can someone point me in the right direction?

Adrian Lodge

Eastleigh Borough Council

1 Solution

Accepted Solutions
Highlighted

Re: Blocking USB Storage Devices

Jump to solution

Create two rules as follows: Rule 1: All Devices included and Approved Devices excluded (remember to do this in the same rule). Select block / read only as a reaction.

Rule 2: Include only the approved devices. Select monitor as the reaction

Rule 1 meets your requirement whereas Rule 2 monitors approved device usage.

View solution in original post

4 Replies
Highlighted

Re: Blocking USB Storage Devices

Jump to solution

Create two rules as follows: Rule 1: All Devices included and Approved Devices excluded (remember to do this in the same rule). Select block / read only as a reaction.

Rule 2: Include only the approved devices. Select monitor as the reaction

Rule 1 meets your requirement whereas Rule 2 monitors approved device usage.

View solution in original post

Highlighted

Re: Blocking USB Storage Devices

Jump to solution

Is anyone else having trouble getting SanDisk U3 devices to be read only?  I created the rules above as described, but I can still write to the SanDisk U3 device.  The rules do block other USB devices though.  Do I need to block all SanDisk U3 devices?

Highlighted

Re: Blocking USB Storage Devices

Jump to solution

Hi All,

How about if i want to block all the USB access by default but only allow the specific group from AD.

The Group include 2 type which is 

Group1 - Read only

Group2 - Read & Write

i couldnt find any acticle to solve my issue.

 

Highlighted
Level 7
Report Inappropriate Content
Message 5 of 5

Re: Blocking USB Storage Devices

Jump to solution

I try to find a document to block all about USB devices, it means to block keyboards, mice and also massive storage. Does anyone help me about it.

thanks in advance

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community