This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do I allow certain user/groups to use certain usb devices/groups on certain computers/groups of computers

Excuse the cross-post from Sophos Central, I wasn't sure where the right place to ask this question would be.

In the below scenario, how do I allow User02 to use USB03 only on endpoints in EndPtGroupB? This is in Central and not On-Prem Endpoint. I can move the discussion if needed.

UserGroupA = User01 & User02
UserGroupB = User03 & User04
DvcGroupA = USB01 & USB02
DvcGroupB = USB03 & USB04
EndPtGroupA = EndPt01 & EndPt02
EndPtGroupB = EndPt03 & EndPt04

This thread was automatically locked due to age.

Parents

0 IsmailJaweed over 6 years ago

In your central console

Edit EndPtGroupB > Click Policies > Click Peripheral Control Policy > Select Users > Now move the " User02 " to the " Assigned users list "

Now Click Settings > Make sure your " USB03 " is added in Peripheral Exemptions.

That's it. Policy should be bypassed. Peripheral Control Policy should be a " User Based Policy ". However, the policy will be on top which overrides the below policy and i think that will not make any sense.

Ismail Jaweed Ahmed (Ismail)
Senior Professional Service Engineer
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 IsmailJaweed over 6 years ago

In your central console

Edit EndPtGroupB > Click Policies > Click Peripheral Control Policy > Select Users > Now move the " User02 " to the " Assigned users list "

Now Click Settings > Make sure your " USB03 " is added in Peripheral Exemptions.

That's it. Policy should be bypassed. Peripheral Control Policy should be a " User Based Policy ". However, the policy will be on top which overrides the below policy and i think that will not make any sense.

Ismail Jaweed Ahmed (Ismail)
Senior Professional Service Engineer
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data