If you want to block Apple Devices (iPhones), you'll need to block by VID/PID or just the VID 05AC
If you want to block MTP-Devices (Android, BB, Win), you would go for device compatible ID "MS_COMP_MTP" with partial match
>>I already block all the USB but this smart phone plug and play is not blocked to my policy in device control.
What exactly did you do here?
Moved to DLP - Moderator
Thank You for the response, is there any video tutorial for that? on how to block MTP-Devices (Android, BB, Win) via device compatible ID "MS_COMP_MTP" with partial match? also for I phone.
or can you teach me .
@Ex_Brit how can i moved this question to DLP moderator?
I am the Moderator...I already moved this to DLP. That was all I was saying.
1 of 1 people found this helpful
- open DLP Policy
- klick Device Definitions
- Add New -> Plug and Play Device Definition
- rename to Plug and Play Device Definition Block MTP Devices (or whatever you like)
- doubleclick the new Device Definition
- choose Device Compatible ID (Advanced)
- Add New -> Value: MS_COMP_MTP
- Allow Partial Match: yes
- go to Device Rules
- doubleclick your blocking rule (or reporting rule, if you have one and want to try first)
- look for the previously added Definition and choose Include
- enable rule if not already enabled
- Apply to ePO
thank you also for doing that stuff
Hi Sir/Mam c.stueckrath,
I tried to do your guide but nothings happens. I think I missing something.
can you please give me a step by step guide with screenshot(if possbile), I know this is to much..
Thanks In advance.
I understand you wanted to block all smart phones using dlp device control. Please follow the below steps to block all smart phones:
1 In the Navigation Bar under Device Management, select Device Definitions.
2 Right-click in the device definitions panel, and click Add New | Plug and Play Device
Definition. Type Block smart phones to rename, and press Enter.
3 Double-click the device definition to edit it. Select Device Class, then select portable device and click OK.
4 In the Navigation Bar under Device Management, select Device Rules.
5 Right-click in the device definitions panel, and click Add New | Plug and Play Device
Rule. Type Block smart phones and rename the rule..
6 Double-click to edit the rule. Select "Block smart phones" in the Include column.
7 Select Block, Monitor, and Notify User.
8 Click next and finish.