<div>
Just what was required - many thanks.
</div>


<div>
<div class="content wysiwyg-content">
We are having problems fine tuning a solution.<br />
<br />
Ideally we would like ban all but one make of USB stick on a domain. However if we enter a generic disallow such as &quot;USBSTOR\DiskGen&quot; and then allow the approved device on a specific Hardware ID it doesn't work as the Denies seem to take precedence over the Allows. Any ideas?<br />
<br />
We are using SBS 2011 and Server 2012 with all workstations on Windows 7 Pro x64.
</div>
</div>


We are having problems fine tuning a solution.

Ideally we would like ban all but one make of USB stick on a domain. However if we enter a generic disallow such as "USBSTOR\DiskGen" and then allow the approved device on a specific Hardware ID it doesn't work as the Denies seem to take precedence over the Allows. Any ideas?

We are using SBS 2011 and Server 2012 with all workstations on Windows 7 Pro x64.

Group Policy - Banning most USB sticks

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

Small Business Server (SBS) is a line of server operating systems targeted at small businesses by bundling the operating system with a number of other Microsoft products that would normally need to be purchased or licensed separately. The most notable inclusions are Exchange, SQL Server, SharePoint and ISA/TMG (Microsoft's firewall and proxy server).

Windows 7 is an operating system from Microsoft. Features include multi-touch support, a redesigned Windows Shell with a new taskbar, referred to as the Superbar, a home networking system called HomeGroup, and performance improvements.