Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\USBSTOR]
"Start"=dword:00000004
siuko does that not stop the use of usb keyboards etc doing it that way?
Hmm interesting. Is there anyway to disable usb storage devices, but allow mobile devices to connect via activesync?If you are running a Domain Controller and have your computers joined to it.
There are options using GPO to allow or deny USB access depending on the user or group.
I work in a school - and we have it set so staff can access usb but students cannot.
I wish I could find a product that works in Citrix/TS environments properly
Lumension, SEP, Vontu?
Lumension doesnt,havent heard of the other 2.
Anything that needs direct access to the USB ports wont work as they are effectively mapped as network drives
I wish I could find a product that works in Citrix/TS environments properly
We use a paid up product that allows monitoring and control of USB devices, but as said it costs
As do we. We use a product called Sanctuary which can stop anything being used. For all I moan about it every time someone needs to read a CD, it's great for keeping control of the PC's.
No-one can add anything without us knowing about it, and when you do allow USB or CD access, it can shadow copy, so we can see exactly what has been put on or copied off the network.
You can. We use GPO on all our machines. We basically remove drive letters. We basically allow C: and the network drives, nothing else.
Then we have policies to allow use of the cd drive in laptops for instance
Kimbie
We want to enable staff to use USB sticks, but only pre-approved hardware encrypted sticks...