I've been wrecking my brain for the last 3 days now with an issue after rolling out a GPO to disable USB, floppy and CD-ROM devices.
Roll-out was through server 2008 to a mixed domain (2008, 2003, xp, win7) hence the adm file located in the below article:
After disabling all devices, I have had to re-enable them all. Everything is working fine for floppy and USB devices but the end users keep getting access denied to the CD-ROM.
Here is an article on the exact same issue, but the resolution doesn't work on win7 machines:
"sc start cdrom
sc config cdrom start= enable"
I have tried editing the registry values, no joy.
Tried changing permissions on the cdrom.sys files
Re-enabled all devices through the GPO, including win7 specific settings:
ve Templates: Policy definitions (ADMX files) retrieved from the local machine\System\Removable Storage Access
All values set to disabled.
ve Templates: Policy definitions (ADMX files) retrieved from the local machine\Classic Administrative Templates (ADM)\Custom Policy Settings\Restrict Drives
All values set to enabled and started
I would like to be able to roll out the solution (what ever it may be) as we have over 100 users...
Any help at all would be greatly appreciated!!
Thanks in advance,