For reasons I'm not going into, I've inhertited the management of our EPO and EEFF deployment on workstations.
By default, any member of staff connecting a USB pen drive will be prompted to encrypt it. If they click no then the device is rendered read-only.
A requirement is that we make certain drives exempt from this. My predecessor has taken an approach which I'm not happy with..
Specifically, if they exempt "MySuperSpeedyUSB3.0" pen drive, then ANYONE with a ""MySuperSpeedyUSB3.0" drive will be able to use it without being prompted for encryption.
Could someone please advise where on EPO I set it to make a specific drive exempt?