Video Screencast Help

How to Create the policy

Created: 15 Dec 2011 • Updated: 16 Dec 2011 | 5 comments
This issue has been solved. See solution.

How I can create the new policy in any of the internal of external device which I attach in our n/w to provide the access/denied.

 

If any one have solution then help me

Comments 5 CommentsJump to latest comment

Sumit G's picture

Kindly find the link below attach. In that link all the information included

 

https://www-secure.symantec.com/connect/downloads/devviewer-tool-helpful-application-and-device-control-find-hardware-device-id-and-guid

 

Also find the attach pdf document. It can guide you about Application and Device Control.

AttachmentSize
Application and Device Control_V1 2.pdf 1.82 MB

Regards

Sumit G.

SOLUTION
Mithun Sanghavi's picture

Hello,

Here are the Steps:

1. First you have start and logon to “Symantec Endpoint Protection Manager”

2. In the main windows | tool bar select: “Policies” | Hardware Devices | right click and ADD

3. In Device Name write “USB Storage” and Device ID “USBSTOR*.*” | OK 

4. Then click inside “Application and Device Control” in the main menu and then right click inside “Application and Device Control” and Edit. 

5. Device Control | Blocked Devices and click Add

6. Select “USB Storage” and click OK

7. Active Notification: Mark: “Notify users when deviced is blocked”, click “Specify Message Text”  | add message | OK (c) and click OK.

8. To assign to the policy just click in “ASSIGN”

9. Select the group to be applied and click “Assign”

10. Done the policy will updated to all workstation member of this group.

 

Link to create exception: 

http://www.symantec.com/docs/TECH104299

http://www.symantec.com/docs/TECH106304

 
Conclusion: All USB ports will be blocked. As we know Information Management is very important.
 
Also, check this Amazing Article:

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

consoleadmin's picture

I will try this attach doc and lnik at tomorrow and revert

Thanks.

Mithun Sanghavi's picture

Hello,

A Quick Note: Make sure you need to have the Symantec Network Threat Protection and Application and Device Control Installed on all Symantec Endpoint Protection Clients to have the Policy working.

I am sure that would help you.

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

consoleadmin's picture

Thanks a lot to sharing such good documents

Thanks.