Endpoint Protection

I currently have about 5,000 Ironkey Flash memory sticks the company wants to implement into the system. Is there a way to add the multiple device ID's into one policy on SEP or does an idividual hardware device have to be added for each one?

This is the wrong forum.  This forum is for the ticketing software made by Symantec.

However, all memory sticks should share the same Device ID.  Just add it once for each unique policy you want affected.

Moved to the SEP forum...

Is not the same DEVICE ID?

Hello GeoGeo
you can add the Flash disks to your policy via wild key use. Every Company have diffrent ID Therefore use can use like this. For Example My flash disk id's is USBSTOR\DiskTOSHIBA_TransMemory_____6.50 i can exclude my disks like this USBSTOR\*

you can try this.
Best Regards.
Fatih

Start using our DevViewer utility on CD2, you can see device ID's and Class ID's from that.  For more information on Device ID's see here: http://msdn.microsoft.com/en-us/library/ms791083.aspx
 
 
 
Suffice to say, you can use wildcards in the device ID to match based on device type, manufacturer, etc.
 
 
 
For instance on my machine, I have a USB device (Apple iPhone) which is recognised as:
 
 
 
\USB\Vid_05ac&Pid_1292\9f5bce6ec6831ba6c2520874ebca5f1ce17ac5c6
 
 
 
If I wanted to block that single device I could use the above string.
 
 
 
If I wanted to block all Apple iPhones, I could use the following:
 
 
 
\USB\Vid_05ac&Pid_1292\*
 
 
 
If I wanted to block all Apple USB devices, I could use this:
 
 
 
\USB\Vid_05ac*
 
 
 
If I wanted to block all Apple devices, I could try this:
 
 
 
\*\Vid_05ac*
 
 
 
In the above example,
 
 
 
Vid_05ac - Vendor ID 05ac - Apple
Pid_1292 - Product ID

Geo works in the same team as me, our problem is setting up Ironkey devices specifically....

Does anyone have any experience in setting up Ironkey devices?

There is an encrypted parttition and simply allowing the USB Drive does not work yet there is nothing in the A&D logs to show what else is blocked

Hello ,
Can you give your Ironkey Flash disk's device ID please.

Best Regards.
Fatih

There appear to be four device id's initially

Adding the USB drive allows the s/w to be installed and brings the partition up (as a CD Drive) to create the encryption using the Ironkey unlocker

Right clicking this and checking properties brings up four 'Hardware' options

Hitachi ATA Device
IDE\DISKHITACHI_HDT721050SLA360_________________ST3OA31B\5&21AEE20C&0&0.0.0

Ironkey Secure USB Device
USBSTOR\DISK&VEN_IRONKEY&PROD_SECURE_DRIVE&REV_2.06\00552659&1

HL-DT-ST DVDRAM ATA Device
IDE\CDROMHL-DT-ST_DVDRAM_GH40N___________________NV01____\5&EF53167&0&1.0.0

Ironkey CD-ROM USB Device
USBSTOR\CDROM&VEN_IRONKEY&PROD_CD-ROM&REV_2.06\00552659&0

Looking for anything else in the Device Viewer also shows

Portable Devices (Ironkey)
WPDBUSENUMROOT\UMB\2&37C186B&0&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_IRONKEY&PROD_SECURE_DRIVE&REV_2.06#00552659&1#

Thanks

Create hardware device and add following to device exceptions
IDE\DISKHITACHI_HDT721050SLA360*
USBSTOR\DISK&VEN_IRONKEY&PROD_SECURE_DRIVE*
IDE\CDROMHL-DT-ST_DVDRAM_GH40N*
USBSTOR\CDROM&VEN_IRONKEY*

Hello,
As I said before you can add ( *) for device ID's

IDE\DISKHITACHI*
USBSTOR\DISK&VEN_IRONKEY*
IDE\CDROMHL-DT-ST_DVDRAM*
USBSTOR\CDROM&VEN_IRONKEY*
WPDBUSENUMROOT\UMB\2&37C186B&0&STORAGE#VOLUME#1&19F7E59C&0&_??_USBSTOR#DISK&VEN_IRONKEY*

Best Regards.
Fatih

Create hardware device and add following to device exceptions
IDE\DISKHITACHI_HDT721050SLA360*
USBSTOR\DISK&VEN_IRONKEY&PROD_SECURE_DRIVE*
IDE\CDROMHL-DT-ST_DVDRAM_GH40N*
USBSTOR\CDROM&VEN_IRONKEY*

As well as the above had to add       USB\VID_1953&PID_0202*       as the ironkey device also has a hidden encrypted partition. It wasn't till we added this line that the Ironkey showed up correctly on the drive.

Happy to hear your problem got solved...