cancel
Showing results for 
Search instead for 
Did you mean: 

Blocking USB Storage Devices

Jump to solution

I am looking at DLP to implement the blocking of unknown/unauthorised USB storage devices.

I thought that I could have one rule that blocked ALL devices, followed by another rule that allowed KNOWN devices that we had already defined.

That way all new/unknown devices would be blocked until I specifically allowed them.

However, if I understand correctly, the BLOCK ALL rule will override the ALLOW KNOWN rule, as block rules take precedence over allow rules and there is no way of making

them hierarchical.

I'm sure this is a standard thing to want to do, so can someone point me in the right direction?

Adrian Lodge

Eastleigh Borough Council

1 Solution

Accepted Solutions

Re: Blocking USB Storage Devices

Jump to solution

Create two rules as follows: Rule 1: All Devices included and Approved Devices excluded (remember to do this in the same rule). Select block / read only as a reaction.

Rule 2: Include only the approved devices. Select monitor as the reaction

Rule 1 meets your requirement whereas Rule 2 monitors approved device usage.

4 Replies

Re: Blocking USB Storage Devices

Jump to solution

Create two rules as follows: Rule 1: All Devices included and Approved Devices excluded (remember to do this in the same rule). Select block / read only as a reaction.

Rule 2: Include only the approved devices. Select monitor as the reaction

Rule 1 meets your requirement whereas Rule 2 monitors approved device usage.

Re: Blocking USB Storage Devices

Jump to solution

Is anyone else having trouble getting SanDisk U3 devices to be read only?  I created the rules above as described, but I can still write to the SanDisk U3 device.  The rules do block other USB devices though.  Do I need to block all SanDisk U3 devices?

Re: Blocking USB Storage Devices

Jump to solution

Hi All,

How about if i want to block all the USB access by default but only allow the specific group from AD.

The Group include 2 type which is 

Group1 - Read only

Group2 - Read & Write

i couldnt find any acticle to solve my issue.

 

hmera
Level 7
Report Inappropriate Content
Message 5 of 5

Re: Blocking USB Storage Devices

Jump to solution

I try to find a document to block all about USB devices, it means to block keyboards, mice and also massive storage. Does anyone help me about it.

thanks in advance

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator
  • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community