Re: Prevent BlueTooth USB access
- From: "Simon Geary" <simon_geary@xxxxxxxxxxx>
- Date: Wed, 13 Apr 2005 23:48:19 +0100
"PeteL" <dontmail@xxxxxx> wrote in message
news:d3j7c4$b3c$1$8300dec7@xxxxxxxxxxxxxxxxxxx
> Is it possible to block users from connecting USB devices using GPO. I've
> created a GPO to hide drives for usb storage (DOS prompt blocked so not
> too
> worried about that aspect) but I just wondered if you can block BlueTooth
> or
> any other USB devices.
>
> TIA.
>
> Pete.
>
>
You can use this ADM template to disable USB devices, it works by disabling
the usbstor.sys driver. I'm not sure about Bluetooth though, if you know
what driver bluetooth relies on I could probably edit the adm to include
that as well.
CLASS MACHINE
CATEGORY !!category
CATEGORY !!categoryname
POLICY !!policynameusb
KEYNAME "SYSTEM\CurrentControlSet\Services\USBSTOR"
EXPLAIN !!explaintextusb
PART !!labeltextusb DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynamecd
KEYNAME "SYSTEM\CurrentControlSet\Services\Cdrom"
EXPLAIN !!explaintextcd
PART !!labeltextcd DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 1 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynameflpy
KEYNAME "SYSTEM\CurrentControlSet\Services\Flpydisk"
EXPLAIN !!explaintextflpy
PART !!labeltextflpy DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynamels120
KEYNAME "SYSTEM\CurrentControlSet\Services\Sfloppy"
EXPLAIN !!explaintextls120
PART !!labeltextls120 DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
END CATEGORY
END CATEGORY
[strings]
category="Custom Policy Settings
categoryname="Restrict Drives"
policynameusb="Disable USB"
policynamecd="Disable CD-ROM"
policynameflpy="Disable Floppy"
policynamels120="Disable High Capacity Floppy"
explaintextusb="Disables the computers USB ports by disabling the
usbstor.sys driver"
explaintextcd="Disables the computers CD-ROM Drive by disabling the
cdrom.sys driver"
explaintextflpy="Disables the computers Floppy Drive by disabling the
flpydisk.sys driver"
explaintextls120="Disables the computers High Capacity Floppy Drive by
disabling the sfloppy.sys driver"
labeltextusb="Disable USB Ports"
labeltextcd="Disable CD-ROM Drive"
labeltextflpy="Disable Floppy Drive"
labeltextls120="Disable High Capacity Floppy Drive"
Enabled="Enabled"
Disabled="Disabled"
.
- Follow-Ups:
- Re: Prevent BlueTooth USB access
- From: PeteL
- Re: Prevent BlueTooth USB access
- References:
- Prevent BlueTooth USB access
- From: PeteL
- Prevent BlueTooth USB access
- Prev by Date: Desktop Icons
- Next by Date: Re: Easy questions for the experts (I hope)
- Previous by thread: Prevent BlueTooth USB access
- Next by thread: Re: Prevent BlueTooth USB access
- Index(es):
Relevant Pages
|
