<div>
you know that certain internal hardware is linked to USB ? for example bluetooth<br />
do you want to disable USB Mice ?
</div>


you know that certain internal hardware is linked to USB ? for example bluetooth
do you want to disable USB Mice ?

<div>
Hi enachemc<br />
<br />
no i just want to disable mass storage devices and portable flash drives
</div>


Hi enachemc

no i just want to disable mass storage devices and portable flash drives

<div>
The best way to do this would be to remove the ability to install new hardware from all unprivileged accounts. This give you the ability to stop users from connecting not just USB storage devices, but any new HW as it won't allow installation.
</div>


The best way to do this would be to remove the ability to install new hardware from all unprivileged accounts. This give you the ability to stop users from connecting not just USB storage devices, but any new HW as it won't allow installation.

<div>
Hi Chev_PCN<br />
<br />
can you give me a brief on how to do this ?<br />

</div>


Hi Chev_PCN

can you give me a brief on how to do this ?


<div>
In your GMP console:<br />
Computer Configuration &gt;&gt;&nbsp;Windows Settings &gt;&gt;&nbsp;Security Settings &gt;&gt;&nbsp;Local Policies &gt;&gt;&nbsp;User Rights Assignment.<br />
Limit the &quot;Load and unload device drivers&quot; to administrator groups only.
</div>


In your GMP console:
Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment.
Limit the "Load and unload device drivers" to administrator groups only.

<div>
<div class="content wysiwyg-content">
Hello Experts.<br />
<br />
I want to disable the using of flash drives and disk on keys on my network.<br />
I know that the best way to do this is using GPO.<br />
So i want to know the proper configuration to the GPO.<br />
My DC is server 2008 and the client PC's is windows 7.<br />
<br />
Thanks.<br />

</div>
</div>


Hello Experts.

I want to disable the using of flash drives and disk on keys on my network.
I know that the best way to do this is using GPO.
So i want to know the proper configuration to the GPO.
My DC is server 2008 and the client PC's is windows 7.

Thanks.


what is the best way to disable USB on the network using GPO

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.