<div>
<div class="content wysiwyg-content">
Hi all <br />
<br />
We need to disable the USB in the bios Level. As all are aware that we do get desktops on usb keyboard and mouse and so we have disabled the registry <br />
<br />
hklm\system\currentcontrol<wbr />set\servic<wbr />es\usbstor<wbr />. by changing the start value to 4 usb is by default getting disbaled. <br />
<br />
the users are the admin accounts to the local systems. Is there any way we can set permission to the registry value where in users will not be allowed to change the access.<br />
<br />
NOTE: I have even tried the following things. I went to the key and selected permissions and removed everyone and selected only domain admins over there and has pushed the same through group policy also. But users are able togo the keys and select add and add everyone and give full permissions and change the value. Is there a way to stop this. <br />
<br />
my main aim is Either user should be allowed to change the value in the registry even if they are local admins. <br />
<br />
I have tried even disbaling registry. some softwares gets installed and some does not as it gets written to the HKLM. So kindly help me in this.<br />
<br />
<br />

</div>
</div>


Hi all 

We need to disable the USB in the bios Level. As all are aware that we do get desktops on usb keyboard and mouse and so we have disabled the registry 

hklm\system\currentcontrolset\services\usbstor. by changing the start value to 4 usb is by default getting disbaled. 

the users are the admin accounts to the local systems. Is there any way we can set permission to the registry value where in users will not be allowed to change the access.

NOTE: I have even tried the following things. I went to the key and selected permissions and removed everyone and selected only domain admins over there and has pushed the same through group policy also. But users are able togo the keys and select add and add everyone and give full permissions and change the value. Is there a way to stop this. 

my main aim is Either user should be allowed to change the value in the registry even if they are local admins. 

I have tried even disbaling registry. some softwares gets installed and some does not as it gets written to the HKLM. So kindly help me in this.




USB -  Registry

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.