• Install & Activate
  • Troubleshooting
BEST Antivirus KBS : Largest Anti-Malware Knowlegde Base and Support
  • Install & Activate
  • Troubleshooting

Microsoft Defender for Endpoint Device Control Removable Storage Protection (Microsoft)

/Download, Install & Active / Microsoft / Download, Install & Active / Microsoft / Microsoft Endpoint / Microsoft Defender for Endpoint Device Control Removable Storage Protection (Microsoft)
  • December 24, 2021
  • BEST Antivirus Staff 2
  • Microsoft / Microsoft Endpoint

Contents

  1. Protection policies
    1. Removable storage access control
    2. Device installation
    3. Endpoint DLP Removable storage
    4. BitLocker
  2. Device properties
    1. Source : Official Microsoft Brand Editor by : BEST Antivirus KBS Team
0
(0)

 Important

Some information relates to prereleased product which may be substantially modified before it’s commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.

Device control removable storage protection in Microsoft Defender for Endpoint prevents users, endpoints, or both from using unauthorized removable storage media.

Protection policies

Removable storage access control

Capabilities

  • Audit Read or Write or Execute access to removable storage based on various device properties, with or without an exclusion.
  • Prevent Read or Write or Execute access with or without an exclusion – Allow specific device based on various device properties.

Windows 10 and Windows 11 support details:

  • Applied at either the device level, user level. or both. Only allow specific people performing Read/Write/Execute access to specific removable storage on specific machine.
  • Support MEM OMA-URI and GPO.
  • Supported ‘Device Properties‘ as listed.
  • For feature in Windows, see Removable storage Access Control.

Supported Platform – Windows 10, Windows 11

macOS support details:

  • Applied at the device level: the same policy applies for any logged on user.
  • For macOS specific information, see Device control for macOS.

Supported platform – macOS Catalina 10.15.4+ (with system extensions enabled)

Device installation

Capabilities – Prevent installation with or without exclusion based on various device properties.

Windows 10 and Windows 11 support details:

  • Applied at the device level: the same policy applies for any logged on user.
  • Supports Microsoft Endpoint Manager and Group Policy Objects.
  • Supported ‘Device Properties‘ as listed.
  • For more information on Windows, see How to control USB devices and other removable media using Microsoft Defender for Endpoint.

Supported Platform – Windows 10, Windows 11

macOS support details:

  • Applied at the device level: the same policy applies for any logged on user
  • For macOS specific information, see Device control for macOS.

Supported platform – macOS Catalina 10.15.4+ (with system extensions enabled) or later

Endpoint DLP Removable storage

Capabilities – Audit, warn, or prevent a user from copying an item or information to removable media or USB device.

Description – For more information on Windows, see Learn about Microsoft 365 Endpoint data loss prevention.

Supported Platform – Windows 10, Windows 11

BitLocker

Capabilities:

  • Block data to be written to removable drives that aren’t BitLocker protected.
  • Block access to removable drives unless they were encrypted on a computer owned by your organization

Description – For more information on Windows, see BitLocker – Removable Drive Settings.

Supported Platform – Windows 10, Windows 11

Device properties

Microsoft Defender for Endpoint Device Control Removable Storage Protection allows you to restrict the removable storage access based on the properties described in the table below:

DEVICE PROPERTIES
Property Name Applicable Policies Applies to Operating Systems Description
Device Class How to control USB devices and other removable media using Microsoft Defender for Endpoint Windows For information about Device ID formats, see device setup class. The following two links provide the complete list of Device Setup Classes. ‘System Use’ classes are mostly refer to devices that come with a computer/machine from the factory, while ‘Vendor’ classes are mostly refer to devices that could be connected to an existing computer/machine: System-Defined Device Setup Classes Available to Vendors – Windows drivers and System-Defined Device Setup Classes Reserved for System Use – Windows drivers. Note: Device Installation can be applied to any devices, not only Removable storage.
Primary ID Removable storage Access Control Windows The Primary ID includes removable storage and CD/DVD and Windows Portable Device/WPD.
Device ID Removable storage Access Control;How to control USB devices and other removable media using Microsoft Defender for Endpoint Windows For information about Device ID formats, see Standard USB Identifiers, for example, USBSTOR\DISK&VEN_GENERIC&PROD_FLASH_DISK&REV_8.07
Hardware ID Removable storage Access ControlHow to control USB devices and other removable media using Microsoft Defender for Endpoint Windows A string identified the device in the system, for example, USBSTOR\DiskGeneric_Flash_Disk___8.07; Note: Hardware ID is not unique; different devices might share the same value.
Instance ID Removable storage Access ControlDevice Installation Windows A string uniquely identifies the device in the system, for example, USBSTOR\DISK&VEN_GENERIC&PROD_FLASH_DISK&REV_8.07\8735B611&0
Friendly Name Removable storage Access Control Windows A string attached to the device, for example, Generic Flash Disk USB Device
Vendor ID / Product ID Removable storage Access Control WindowsmacOS Vendor ID is the four-digit vendor code that the USB committee assigns to the vendor. Product ID is the four-digit product code that the vendor assigns to the device; Support wildcard.
Serial NumberId Removable storage Access Control WindowsmacOS For example, 002324B534BCB431B000058A

Source : Official Microsoft Brand
Editor by : BEST Antivirus KBS Team

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

(Visited 47 times, 1 visits today)
Tagged: MicrosoftMicrosoft for Endpoint

Related Articles

  • All about Microsoft

  • Overview of Microsoft 365 Lighthouse

  • Microsoft Defender for Business (preview) – Frequently asked questions and answers

  • Get help and support for Microsoft Defender for Business (preview)

  • Manage your custom rules for firewall policies in Microsoft Defender for Business (preview)

  • Firewall in Microsoft Defender for Business (preview)

ask or enter a search term

Top Rated Posts

5 (1)

Activate code Avast on Windows PC

5 (1)

[KB5699] Set the PIN in ESET Parental Control for Android

5 (2)

Getting started (app) (ESET)

5 (1)

[KB3239] How do I uninstall or reinstall ESET Cyber Security or ESET Cyber Security Pro?

5 (2)

[KB6842] Upgrade to ESET Cyber Security and ESET Cyber Security Pro version 6.6 fails on previous versions of macOS (10.6 – 10.8)

About

We are BEST Antivirus , Trusted Comparison and Cheap Antivirus Software 2020. KBS is Knowledge Base and Support : This page was created to guide customers through the installation and to resolve all the common errors of anti-virus software.

Partners

› Avast
› AVG
› BitDefender
› ESET
› Trend Micro
› All Partners

Resources

› Store
› Advertise
› Brand Reviews
› Review Platforms
› Contact Page
› Knowledge Base

  • Install & Activate
  • Troubleshooting
© Copyright by BEST Antivirus by SSG Limited