Please go to Dashboard ---> Policies
Policies -- > Application and Device Control
create a new policy Application and Device Control test
Application and Device Control--> Windows Settings -- > Blocked Devices -- > Click on Add
in Device Selection choose USB by class (identification) and click ok
in bottom you will find Device excluded from blocking
Click Add
in Device Selection choose Human Interface Devices (Mice, Joysticks, Gamepads ) by class and click ok
Save policy and apply in a test group
move 1 computer to that group and test it first than apply on a desire group
Please use class ID not device ID
Original Message:
Sent: 11-18-2021 02:37 PM
From: Rakesh Tamarapalli
Subject: Application Control blocking USBSTOR device that has been added to exception list
Hello Team,
We are using the Block USB Storage Devices rule to block access to USB drives. Normally, in order to allow a device on Windows, I will add it to Hardware Devices under Policies and then set it as a (*) wildcard under Do not apply to the following files and folders under File and Folder Access Attempts. This has been working pretty consistently until I came across a new batch of USB drives that have a somewhat different Device ID (USBSTOR\DISK&VEN__USB&PROD__SANDISK_3.2GEN1&REV_1.00\). Nothing that I have tried so far will allow these drives, and they are still being blocked. Any assistance would be appreciated.
Thanks,
Rakesh