What are the exact definitions you are using for both? With 9.0 you can directly create definition for the device from the log (DLP monitor) - so try to connect your excluded device to a computer where DLP is installed and create the definition. I hope you are using USB with FS option for "all USBs"...!!
Thanks for your answer!
I`m using next defenitions:
1. All removable storage devices - Bus type (USB) option
2. Content Encrypted by McAfee Endpoint Encryption - Content Encrypted by McAfee Endpoint Encryption option (RS)
I think, that system must define encrypted by EEFF usb stick and without it. In DLP 9.0 product guide on 27 page said that "Content encrypted by McAfee Endpoint Encryption" option is "indicate a device protected with McAfee Endpoint Encryption."
In my env. I can not manualy define ech usb stick, that why I want to automatic define and pass encrypted sticks and block all others.
Try fine-tuning your definitons:
All USB: Choose bus type - USB, File system - Exclude CDFS and UDFS, select rest 4,
EERM: Choose bus type - USB, You can choose either option like PID/VID or serial numbers (if you have the list)
Include all USB exclude EERM - action, user assignment group, enable rule