Device control for removable storage

Device control prevents data loss via removable storage devices (set the device to read-only), and can protect the endpoints from data copied to the endpoint from removable storage devices.

Administrators can create device access rules to control the permissions on removal storage devices.

Access rules granularity includes:
  • Users or Groups to which the rule applies.
  • Devices to which the rule applies, either/or by Serial Number, or vendor (VID) or product ID (PID).
  • On which endpoints the device can be used (if you want to restrict the usage of a device only to specific endpoints)

Supported device access permissions includes:​

  • Allow
  • Read only
  • Block