Solved

Block USB flash drives on domain clients with gpo

Posted on 2014-12-18
3
145 Views
Last Modified: 2015-01-03
Is there a GPO that will block USB ports- mass storage devices only- so that I can prevent folks from using USB flash drives on the domain etc, but NOT block USB ports that are needed for other devices like printers etc?

Win7 clients/ Win2008 domain

please advise
0
Comment
Question by:Rbbedz1
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 10

Accepted Solution

by:
Schuyler Dorsey earned 500 total points
ID: 40507287
Yes.

Computer Configuration > Admin Templates > System > Removal Storage Access. Here are your options.

 removstorage.PNG
0
 

Author Comment

by:Rbbedz1
ID: 40507292
we also want to be able to enforce this for some clients and to not push to others (exceptions).....can this be done so that we can only give to some and not others
0
 
LVL 10

Expert Comment

by:Schuyler Dorsey
ID: 40507296
Yes. You apply GPOs to OUs in the GPMC. So it just depends on your A.D. structure. You could have two OUs, one where you are going to enforce this and one where you don't. So apply the GPO to the OU you want to enforce this setting. Just ensure the related computer objects are in this OU.

Alternatively, you can use security or wmi filtering.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Do you want to know how to make a graph with Microsoft Access? First, create a query with the data for the chart. Then make a blank form and add a chart control. This video also shows how to change what data is displayed on the graph as well as form…
Suggested Courses

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question