Endpoint Protection

 View Only

  • 1.  Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 07:44 AM

    I am trying to define a rule using the application control to allow apporve USB sticks identified by Device ID to be set as Read & Write and any other USB drives to be Read only.

    I have tried to add two File and Folder conditions in the same rule one for Read and Write based on device ID and then Read for everything else.

    I have also tried using one condition and applying the rule to files and folders but not to files and folders on a device with a particular device ID.

     

    Is anyone knowledgable enough on creating rules for this type of thing that they could give me some advice on how to create the rule?

     

    Thanks.



  • 2.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 07:50 AM

     

    How to make USB drives read-only with Symantec Endpoint Protection using Application and Device Control

    http://www.symantec.com/business/support/index?page=content&id=TECH95813&locale=en_US

     

    http://www.symantec.com/business/support/index?page=content&id=TECH106304&locale=en_US



  • 3.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 07:51 AM

    Check out the following KB,

    How to use Application and Device Control to block all USB devices except those I specifically want to allow

    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2008083110540548



  • 4.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 08:04 AM

    I understand how to block Devices outright with exclusions by adding hardware stored in the SEPM database using Device ID or even class ID.

    I want to allow all USB flash drives to connect.

    I need "Green" USB sticks to be Read and Write.

    I need all "other" USB sticks to be Read Only. Other USB sticks means the millions of others available from PC World and the like.

    Therefore the condition must be something like: 

    Allow all USB sticks to connect but be Read Only but Allow the "Green" ones with device ID 123456&abcdef to be Read and Write.



  • 5.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 08:15 AM

    Check this ; in the mean time; i will try those on my test machines

    http://www.symantec.com/business/support/index?page=content&id=TECH92943&locale=en_US



  • 6.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 10:59 AM

    Followed those instructions very carefully although the rule did still not work?



  • 7.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 22, 2010 11:59 AM

    You can try this and with simple modification here and there we hope we can achieve what you want.

    Block copy and execution of specific files from an USB.
    http://www.symantec.com/business/support/index?page=content&id=TECH94989&actp=search&viewlocale=en_US&searchid=1285170668514

     

    Regards,



  • 8.  RE: Restrict some USB drives to Read Only but Allow others Read / Write Access

    Posted Sep 28, 2010 11:51 AM

    However this will allow certain USB drives to work as Read Only it does not achieve the Read Write ability for other types of USB drives.  If anyone knows basic programming a command would look something like this:

    IF condition="USB Stick 1" THEN privilege=ReadWrite ELSE  privilege=ReadOnly

    What I am trying to achieve can only be done using Application rules and the device control side does not come into it as nothing is blocked.