Managing access to devices by type

Device Control allows managing access to devices by type. The type of the device is determined by the operating system when the device is connected. You can look up the device type using the Device Manager tool built into the operating system. To manage access to devices, you must configure rules. A device access rule is a group of settings that determine how users can access devices that are installed or connected to the computer. These settings include access to a specific device, an access schedule, and read or write permissions. You cannot add a device that is outside of Device Control classification. Access to such devices is allowed for all users.

By default, Device Control allows access to all devices for all users.

You can configure access to devices as follows:

Be careful when configuring access to devices of the Hard drives type. If you block access to the system disk, the application may cause a crash (BSOD) when booting the operating system.

If a device does not fit in the Device Control classification scheme, access to such a device cannot be restricted.

How to manage access to devices by type in the Administration Console (MMC)

How to manage access to devices by type in the Web Console and Cloud Console

How to manage access to devices in the application interface

As a result, when a user attempts to gain access to a device, the application blocks access in accordance with the rules. Kaspersky Endpoint Security also logs a corresponding event. If you want to grant access to individual devices, you can add these devices to the list of trusted devices.

Page top