Home > IT Answers > Microsoft Windows > Stop using USB in office computers
Help

Question

  Asked: Jul 9 2008   7:51 AM GMT
  Asked by: Aspire

Stop using USB in office computers


Active Directory, USB Flash drives, User permissions, Group Policy

How can I define a GP so that users cannot use their USB Flash disks??

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
0
Click to Vote:
  •   0
  •  0
Last Answered: Jul 11 2008  4:20 PM GMT  by Flame


Latest Contributors: Vlvpk


Hi Aspire,

Pls find the Link1 Link2 from Microsoft.

I hope this will for u

Thanks & Regards,
Vlvpk

*************************************

This might also be helpful:
http://labnol.blogspot.com/2006/07/how-employers-disable-usb-ports-how.html

The site also has a few other security issues that employers should be aware of.
  • AddThis Social Bookmark Button

Browse more Questions and Answers on Microsoft Windows, Storage and Security.

Looking for relevant Microsoft Windows Whitepapers? Visit the SearchEnterpriseDesktop.com Research Library.


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register

Cults14  |   Jul 14 2008  4:13PM GMT

I’m not a techie, but that looks like a very simple question which needs fuller explanation i.e. why do you want to do this in the first place? If you’re concerned about DPL (Data Leak Prevention), prepare yourself for a rocky ride as (a) it’s still a relatively new area and (b) the range of options - problems/solutions and vendors - is almost overpowering.

If DLP is an issue for you, or if you’re concerned about the introduction of unwanted material (malware, 3rd party IPR, media-rich files etc etc) then how do you know that you have a problem in the first place?

General advice I’ve seen seems to be (a) install something like DeviceWall (granular policies) to monitor what’s actually going on (b) develop an Acceptable Use Policy (AUP) and (c) implement and monitor your AUP.

Disabling USB ports disables any kind of USB device and this may not be what you (or your users or managers) intend or find acceptable.

At the other end of the scale, Cisco have a product which does everything which DeviceWall (and others do), plus can prevent emailing, printing, copying, save as from specified folder locations - so if you’re paranoid about your IPR leaving the builing, it’s possible to go into complete lock-down - you can even disable screen captures!!

Hope this help.