we're looking at forcing our users to use encrypted usb drives. Central peripheral policy can detect whether a usb drive is a hardware encrypted device but we don't want the hassle and expense of going down that route, we're thinking of using bit locker to go as the majority of our users are Win10Pro users. What would be nice would be if central could detect bit locker to go encrypted usb drives as a separate device rather than as a bog standard usb storage device. Currently the only way I think we can do it is to block ALL usb storage devices and then authorise by device ID devices that users have given to us to encrypt for them, which is a bit messy.
So really this is a feature request! Unless anyone else have a better solution on how to achieve what we want?
Thanks
Kerry
This thread was automatically locked due to age.