I'd like to know if it's possible to restrict USB devices on a per user bases, the only users that should be able to access USB Storage devices, are those in the "USB Access" security group.
I'm using both windows server 2000/2003 for this, with group policy management console. I know it can be done per machine, but we do need it per user, as everyone has roaming profiles.
In addition, this needs to be enforced, as im aware that if someone with rights inserts a usb stick, drivers are loaded into memory, thus anyone can use USB devices untill next reboot, any way to unload this or something?
Clients are windows XP based machines.