While the Device Control task is running, Kaspersky Endpoint Security manages user access to devices that are installed on or connected to the computer (for example, hard drives, smart card readers, or Wi-Fi modules). This lets you protect the computer from infection when such devices are connected, and prevent loss or leaks of data.
Device Control manages user access to devices by using access rules.
Device Control controls access at the following levels:
For each type of devices, you can specify Allow, Block, or DependsOnBus access rules. If the DependsOnBus value is specified, access to the device is defined by the connection bus access rule.
For each connection bus, you can specify Allow or Block access rules.For example, you can allow or block the connection of all devices over USB.
You can add devices to a list of trusted devices by the device ID. Each device has a unique ID.
When a device that is blocked by Device Control is connected to the computer, Kaspersky Endpoint Security blocks user access to this devices and shows a notification.
Device Control settings
Setting |
Description |
---|---|
Removable drives connection control enabled / disabled |
This toggle button enables or disables Device Control. This toggle button is switched on by default. |
Configure trusted devices |
Clicking this link opens the Trusted devices window. In this window, you can add devices to a list of trusted devices by ID or by selecting from a list of existing devices. |
Configure settings for devices types |
Clicking this link opens the Device types window. In this window, you can configure access rules for different types of devices. |
Configure settings for device buses |
Clicking this link opens the Connection buses window. In this window, you can configure connection bus access rules. |