I have for the last several months had my Device Policy set to "Detect but do not block".
I have finally unchecked this option to start effectively blocking access to removable storage devices.
So here is my question. Now that the Device Policy is set to block, if I have an employee who brings a personal USB device from home and I choose to allow them to use it on a limited basis of some sort, how do I go about adding the device to the exemption list?
From what I am experiencing, with the Device Policy now set to "blocking", when a user adds a USB thumb drive to their PC, it does not allow the device to install and therefore does not appear to get reported to the Enterprise Console at all.
I wasn't sure how that process worked and if what I am experiencing is normal or abnormal. I would have thought it would allow the device to be installed, detect it, get its device ID, report it to EC and apply the policy to either block, allow, read-only, etc.and if reported and needed you could easily exempt the device.
But from what I am currently experiencing, in order to exempt the newly introduced device, I will have to change the Device Policy to "Detect but do not block" long enough for the device to be detected, add the exemption and then change the Device Policy back to "blocking" mode.
I do have a support ticket on another issue regarding USB devices and will address it with them when I have contact with them again.
In the meantime while I am waiting, I was curious if anyone else had any knowledge on this process and how it worked.
Thanks!
This thread was automatically locked due to age.
