Kaspersky Security Center receives information about devices if Kaspersky Endpoint Security is installed on the computers and Device Control is enabled. It is not possible to add a device to the trusted list unless information about that device is available in Kaspersky Security Center.
You can add a device to the trusted list according to the following data:
SCSI\CDROM&VEN_NECVMWAR&PROD_VMWARE_SATA_CD00\5&354AE4D7&0&000000
. Adding devices by ID is convenient if you want to add several specific devices.VID_1234&PID_5678
. Adding devices by model is convenient if you use devices of a certain model in your organization. This way, you can add all devices of this model.*
character replaces any set of characters. Kaspersky Endpoint Security does not support the ?
character when entering a mask. For example, WDC_C*
.*
character replaces any set of characters. Kaspersky Endpoint Security does not support the ?
character when entering a mask. For example, VID_05AC & PID_ *
.To add devices to the list of trusted devices:
The lists of trusted devices in the parent and child policies will be merged. The lists will be merged provided that merging values when inheriting is enabled. Trusted devices from the parent policy are displayed in child policies in a read-only view. Changing or deleting trusted devices of the parent policy is not possible.
Adding devices by model mask (VID and PID) works as follows: if you enter a model mask that does not match any model, Kaspersky Endpoint Security checks if the device ID (HWID) matches the mask. Kaspersky Endpoint Security checks only the part of the device ID that determines the manufacturer and the type of the device (SCSI\
CDROM&VEN_NECVMWAR&PROD_VMWARE_SATA_CD00\5&354AE4D7&0&000000
). If the model mask matches this part of the device ID, the devices that match the mask will be added to the list of trusted devices on the computer. At the same time, the list of devices in Kaspersky Security Center remains empty when you click the Refresh button. To display the list of devices correctly, you can add devices by device ID mask.
The *
character replaces any set of characters. The ?
character replaces any single character.
The table displays a list of devices that satisfy the defined filtering criteria.
By default, access to trusted devices is allowed for the Everyone group.
When a device is connected, Kaspersky Endpoint Security checks the list of trusted devices for an authorized user. If the device is trusted, Kaspersky Endpoint Security allows access to the device with all permissions, even if access to the device type or connection bus is denied. If the device is untrusted and access is denied, you can request access to the locked device.
Page top