Jump to content
Sign in to follow this  
chrish13

Device Access rules with Domain Groups and Domain Users

Recommended Posts

Hello all,

Since yesterday my company made a decision to apply a block policy to all removable usb drives including phones. We have two domains and for the shake of this request I am going to call the domains domain1.com.au and domain2.com.au. Under both domains there are sever Organizational Units reflecting departments, users and computers.

The requirements for the above policy was that we are going to have two Security Groups in the domain1.com.au. A Security group  called AllowUSB which will allow access to any removable usb device to the users who belong to that group and a security group called DenyUSB which will deny any access to any removable usb drive to the users who belong to that group. The screenshot below demonstrates this.

image.thumb.png.f811fa0d690a404b4934e24b8c2877ac.png

After that I went to our Kaspersky Security Center 10 under the managed computer group that we want to apply the rule and into that group's policy.

My steps where the following

Manage devices > Workstations > Domain1(sub group) > Policies >  Double click the targeted policy which was "Kaspersky Endpoint Security 10 Service Pack 2 for Windows (Domain1) > Endpoint Control > Device Control

image.thumb.png.b21bdbda4565ea1d43c0b636b4a5c16f.png

image.png.875fe53adfa4cd06eae56f40e67f8f11.png

image.png.87c7ea1d03d3a07394d2b967fb1641bc.png

The issue that discover was the above access configuration rule could not understand my Security groups but only the user(s).

Any suggestions ?

 

 

Share this post


Link to post
Sign in to follow this  

×
×
  • Create New...

Important Information

We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.