Hello everyone. I sure hope someone can help! I can't seem to get an answer.....................
Here is the scenario: We have specific (not all) contractors within the company that "the boys upstairs" want to block from saving anything to removable media that can "walk out of the company." Understandable...
I know that I can set up a policy with a rule that states that the protocol is removable storage AND the Sender/User matches a specific IP address or email address; then add a response to Block Copy to Removable Media. But, all of our contractors do not have email addresses, and our IP addresses change every eight days.
Also, some contractors use their own computers. We are about to implement a company-wide policy that all contractors must allow us to install an agent on their personal computer if they plan to use it at work. If they do not, they will not be allowed to use them at work..period!
It seems like you should be able to configure each individual endpoint agent, and specify that the agent on that machine should block saving to removable media. But I can't see where you can configure them individually???
I also thought of an exact data match (EDM), but EDM matches will not trigger Endpoint Prevent: Block. Grrrrr!
Can anyone help me??????
Thanks!!!