Help Center

Third-party software Contact us

Configuring external device control policies

The external device control policies offered by DataSecurity Plus restrict read, write, or execute actions on USBs—either individually or altogether—to stop sensitive data from leaving the organization and to prevent the infiltration of malware. These policies can also prevent file transfers by blocking peripheral devices operating on Bluetooth, Wi-Fi, and CD or DVD drives.

Follow the steps below to create new external device control policies:

  • Select the Endpoint DLP module from the drop-down menu at the top.
  • Go to Configuration > Prevention Policies > External Device Control.
  • Click + Add New Profile in the top-right corner.
  • Provide a suitable profile name and description.
  • Select the actions that you wish to restrict from the checklist provided.
  • Select Allow or Block for the required peripheral devices.
  • Click Save.
  • Enforce the external device control policy on endpoints by linking it to the corresponding DLP policy.
Notes:
  • You can add devices to the blocklist by adding them on the Blocked Devices tab of the External Device Control page.
  • Devices on the blocklist will be restricted from use only if the Block All Blocklisted Devices action is chosen in the external device control policy.

Follow the steps below to add devices to the blocklist:

  • Select the Endpoint DLP module from the drop-down menu at the top.
  • Go to Configuration > Prevention Policies > External Device Control.
  • On the Blocked Devices tab, click + Add USB Devices.
  • Enter the Device Instance Path of the required device and click Add.
Notes: To find the device instance path:
  • Go to the Start menu and search for Device Manager.
  • Double-click Disk drives.
  • Right-click the required connected USB device and select Properties.
  • In the window that appears, go to the Details tab.
  • From the Property drop-down menu, select Device instance path. The device instance path is now displayed.

Mapping external device control policies to endpoints

To enforce external device control policies on endpoints, created policies have to be mapped to the DLP policy linked to the targeted endpoints.

Follow the steps below to map external device control policies to endpoints:

  • Select the Endpoint DLP module from the drop-down menu at the top.
  • Go to Configuration > DLP Policies.
  • Select the DLP policy that is linked to the endpoints to which you wish to apply the external device control policy.
  • Under Prevention Policies, click External Device Control.
  • Select the external device control policy you wish to enforce on endpoints.
  • Click Save to update the external device control policy.

Don't see what you're looking for?

  • Visit our community

    Post your questions in the forum.

     
  • Request additional resources

    Send us your requirements.