Endpoint Protection

 View Only

  • 1.  can we block USB in MAC machines

    Posted Jan 04, 2012 12:00 AM

    Hi 

    can we block USB in MAC  machines 



  • 2.  RE: can we block USB in MAC machines

    Posted Jan 04, 2012 12:24 PM

    This isn't really a question for the SD forums but the answer is sort of. There is no real supported method for disabling USB access. You can remove a kernel extension which will disallow the mounting of USB mass storage devices while still allowing USB keyboards, etc. Using a task or job you could quickly create a script to do this task for you.

    The following lines will first create a backup of the extension then delete kext. It follows up with a restart. If using a task or job, you can remove the "sudo" as you would already be running as a user with the privelleges to remove the kext.

     

    cp /System/Library/Extensions/IOUSBMassStorageClass.kext ~/backup/
sudo srm -rf /System/Library/Extensions/IOUSBMassStorageClass.kext
sudo touch /System/Library/Extensions
sudo reboot

    If you want to block FireWire access as well, the correct kernel extension is IOFireWireSerialBusProtcolTransport.kext

     

    Hope this helps.



  • 3.  RE: can we block USB in MAC machines

    Posted Jan 04, 2012 01:09 PM

    If you are asking can Endpoint Protection block USB access on Mac OS, unfortunately the answer is no.

    SEP for Mac is antivirus only. No NTP, and no Application and Device Control.



  • 4.  RE: can we block USB in MAC machines

    Posted Jan 04, 2012 02:01 PM

    I've moved this thread to the SEP forum.

    Cheryl



  • 5.  RE: can we block USB in MAC machines

    Posted Jan 04, 2012 03:08 PM

    It should be noted, that in previous versions of Mac OS X, when removeing the files, you needed to return the originals before performing updates/upgrades.

    It was a workaround that worked well, but not having them there bug could muck up the whole system.