Problem to OfficeScan

Is there a way to resolve the lock from OfficeScan of TrendMicro, to access USB hard-drive?
LVL 12
HuaMin ChenProblem resolverAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

btanExec ConsultantCommented:
The block is part of Officescan device control data protection scheme. USB is part of its monitoring device interface regardless data protection activation state. See this useful overview which the below pts will be alluding to.

First, it is to make sure the unblocking is to sieve out any false positive and the device log may be a good area to see the block of "unauthorised" access

Second, consider to block access to all USB storage devices, except those that have been added to the list of approved devices. you can use Device list tool to get the vendor and product id to include it in the exception list of approved device to allow (and block the rest of other USB).

Minimally I suggest having to block autorun from USB drive (thumbdrive, HDD, etc)

Third, consider other permission instead of direct block for more granular permission setting such as read only, etc if there are constant request or based on the workstation usage purpose and authorised scope of work . Typically for reference, Officescan recommend below for USB and other media type.
For Plugin Devices like USB drives, set permission to Read and Write Only.
For Optical Disk like CDROM drives, set permission to Read and Execute Only.
For Floppy drives, set permission to Read and Write Only.
For Network Resources such as mapped drives, set permission to Read Only.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
HuaMin ChenProblem resolverAuthor Commented:
Many thanks Btan. where should I adjust its permission to Read and Write, due to this problem below?
btanExec ConsultantCommented:
Should be under Device Control setting, see under
To manage access to external devices (Data Protection activated):
To manage access to external devices (Data Protection not activated):
To configure Device Control:
Log on to the OfficeScan management console
Go to any of the following:
For OfficeScan 10.x: Go to Networked Computers > Client Management and then select the target agents or domains from the client tree.
For OfficeScan 11.0: Go to Agents > Agent Management, and then select the target clients or domains from the client tree.
On the toolbar above the client tree, click Settings > Device Control Settings.

There is also a screen capture on the permission under the internal client in below

Note: Device Control is available only on computers running x86(32-bit) type platforms.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Legacy OS

From novice to tech pro — start learning today.