Hi All,
The client I support wishes to enforce the use of only encrypted USB mass storage devices. I have created the relevant device control policy which works fine and this is currently going through UAT testing.
There have been several encrypted devices approved for use by the client and I have successfully added these as expections to the policy, but the issue I have is that I cannot simply roll this policy out to the live environment (circa 17,000 users) as I don't want to block access to other encrypted devices which are in use but unkown to me. As a result I was hoping to roll the device control policy out in 'log only' mode to collate a list of devices IDs for units currently in use but it would appear that you can only do this with application control policies; application control policy logs unfortunately don't report device IDs.
So, is there some way to utilise SEP11 logging to collate a list of USB mass storage device IDs?
Thanks,
Pete