cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
bphang
bphang
Level 10
Report Inappropriate Content
Message 1 of 4
‎07-16-2014 06:18 PM

How to treat USB HDD in Windows 8.x as it is detected as Portable Device

Hi everyone,

I have in the past build a Device rules that works fine with Win7 environment.

But since our company introduced Win8.1 to the fleet, looks like the rule is not working properly now

So what I have are :

- Removable Storage Protection Rules : which monitor all files written onto removable storage [ USB stick or USB HDD ]

- Plug and Play Device Rules : which block Device Class : Windows Portable Devices

The above combination works fine before as it blocks all attempt to connect phones onto machines [iPhone , Androids] and writing file to usb storage can be recorded.

Then come Win8.1 which when a USB hdd or USB flash drive plugged to it, it will detect the device as Portable Devices.

[for newer devices only , as my old Lacie 2GB is not treated as Portable device but my new 16GB is ]

ie my Seagate FlexGo enumerated 2 devices when I plug it in onto a Win8.1

SWD\WPDBUSENUM\{B54D092C-F832-11E3-825A-00249B026A41}#000000000000xxxx

USBSTOR\DISK&VEN_SEAGATE&PROD_FREEAGENT_GOFLEX&REV__210\NA0Exxxx&0

And since I have a block of WPD , looks like my RSPR rule is not working anymore.

Just wondering how you construst the protection rules to accomodate win8.1 ?

Thank you

0 Kudos
Reply
3 Replies
vimalnavis
vimalnavis
Level 13
Report Inappropriate Content
Message 2 of 4
‎07-17-2014 10:13 AM

Re: How to treat USB HDD in Windows 8.x as it is detected as Portable Device

What version of the agent is installed on 8.1 machines?

0 Kudos
Reply
bphang
bphang
Level 10
Report Inappropriate Content
Message 3 of 4
‎07-17-2014 03:13 PM

Re: How to treat USB HDD in Windows 8.x as it is detected as Portable Device

Hi Vimal.

Its 9.3 p2.

0 Kudos
Reply
vimalnavis
vimalnavis
Level 13
Report Inappropriate Content
Message 4 of 4
‎07-21-2014 11:40 AM

Re: How to treat USB HDD in Windows 8.x as it is detected as Portable Device

Please reach out to McAfee Support.

0 Kudos
Reply
More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator

    • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community


    Corporate Headquarters
    2821 Mission College Blvd.
    Santa Clara, CA 95054 USA

    Consumer Support   |   Enterprise Support   |   McAfee.com

    Legal   |   Privacy   |   Copyright © 2019 McAfee, LLC