Greg..
When it comes to SmartPhones, there are many ways that they coonect to the Endpoints. IN some cases they act like a USB devices. In other cases they look like a camera or use another application to transfer files.
In each of those cases you will need to know what application they are using. So for example when connecting an iPhone it will use the Itunes program.. so you will need to make sure that iTunes is an application that you are monitoring when it accesses files and trys to copy thgem to the phone.
Follow this process to add or monitor the programs that are connecting to the phones..
You can change or add this value in the Application Monitoring setting for the iTunes application. To do this, perform the following steps:
- For version 10.5: Login as Administrator into the hidden page at: https://<enforceserver>/ProtectManager/EndpointApplicationControlList.do .
- For version 11 and later: Login as Administrator, then navigate to System -> Agents -> Application Monitoring.
- Click on Add Fingerprint (Add Application in v11) and create a new application:
- Name: Apple iTunes
- Binary name: <leave empty>
- Internal name: iTunes
- Original Filename: iTunes\.exe
- Enable "Write CD/DVDs?" option
- Click on Save.
- Recycle the Endpoint server.
- Restart the EDPA service on the Endpoint Agent.
Hope this makes sense.
If this solves your questions please marked as solved.
Ronak