Hi All,
Please a take a look at my design/scenario below.
Policy A - Blocks USB storage ports
Policy B - Allows USB storage ports
Policy C - Force File level Encryption to all removable storage devices
Policy A is applied to the default ".Auto Registered" OU as a "catch all". All new PCs/Notebooks when installed with Safeguard is issued Policy A to have port disabled.
Policy B is applied to a group call USB_Allow. The purpose of this group is to allow controlled group of users to have USB.
The thing is we are not using Active Directory synchronization due us having a pretty complex and ever-changing AD OU structure. So this means Computer 1 when installed with Safeguard will get Policy A by default
And computer 1 is supposed to be allowed USB usage. So it gets assigned to Group B and C.
So how do i resolve the fact that Policy A blocks, while Policy B allows? Using the priority? (Works?) Or just setting Policy B to be a no overrride?
This thread was automatically locked due to age.
