|
|
|
You can configure a Media Encryption & Port Protection rule to require malware and unauthorized file type scans when a storage device is attached. You also can require a user or an administrator to authorize the device. This protection makes sure that all storage devices are malware-free and approved for use on endpoints.
You can select one of these predefined options for a Media Encryption & Port Protection rule:
Action |
Description |
|---|---|
Require storage devices to be scanned and authorized. Allow self-authorization. |
Scan the device when inserted. If this option is selected, users can scan the storage device manually or automatically. If this setting is cleared, users can only insert an authorized device. |
Require storage devices to be scanned and authorized. Do not allow self-authorization. |
Scan the device when inserted. Specified administrators must authorize the device after a successful scan. |
Do not scan storage devices |
Storage devices are not scanned when inserted and no authorization is necessary. |
New |
Create a custom action with different authorization and media scan requirements. |
You can configure which file types can or cannot be on storage devices.
To configure which file types can be on storage devices:
The default is unauthorized with all file types allowed.
If you selected Unauthorized mode, select the file types that are not blocked from storage devices.
If you selected Authorized mode, select the file types that are allowed on storage devices.
Related Topics |
