I'm trying to block all USB devices other than those Encrypted with McAfee Endpoint encryption but it seems to just block all devices. Please see the screenshot below for details of the device definition and the rule.
Hi Safeboot, the one I've been testing with has been encrypted with EERM. The only files on the device are MfeeEERM.exe, autorun.ing and the encrypted McAfee EERM folder. I've now exlcuded "Mcafee Encrypted USB Devices" but it's still not working.
I thought that's what you were suggesting in your previous post so I tried formatting the drive and encrypting the entire drive with EEF, not EERM.... still the same result. I don't suppose you happen to know what versions of DLP and EERM are compatible?
The customer is leaning towards just using EEFF now anyway and ditching DLP as they seem happy enough allowing all devices to work as long as they are encrypted. I've set the option in EEFF that forces USB drives to read only unless encrypted with EERM, then demonstrated it to the customer and they seem happy but just want to check if it will pass or fail their audit before making a decision.