I've found multiple methods of creating exceptions based on various device characteristics. But, I want to exclude users from the policy. This doesn't seem to be working. Is this even possible with a Device Control policy?
We're blocking all USB devices (example) and applying it to Domain Users. What we want to do is exclude a certain Group from AD from the policy using exceptions.
Go to DLP Policy Manager -> Policy Assignment -> Policy Settings -> Click on "Edit" next to it, click on Privileged Users -> add users/groups