Go to the policies in the group where you require to modify.
Double click on Application and Device Control policy under policies.
Click on Application Control select the following options:
- Make all removable drives read-only
- Block writing to USB drives
Remove the USBSTOR* from Device Control.
Click Ok.
After the next heartbeat policy will be applied