Device Control

While the Device Control component is running, Kaspersky Endpoint Security manages user access to the devices that are installed on or connected to the client device (for example, hard drives, cameras, or Wi-Fi modules). This lets you protect the client device from infection when external devices are connected, and prevent data loss or leaks. Device Control manages user access to devices using the access rules.

This feature is not supported in the KESL container.

When access to a device is denied by the Device Control task, and such a device connects to the client device, the application denies access to the device to users specified in the rule and displays a notification. During attempts to read and write on this device, the application silently blocks the users specified in the rule from reading/writing.

Device Control settings

Setting

Description

Enable Device Control

This check box enables or disables Device Control.

The check box is selected by default.

Trusted devices

This group of settings contains the Configure button. Clicking this button opens the Trusted devices window. In this window, you can add a device to a list of trusted devices by the device ID or by selecting it from the list of devices detected on the client devices.

Device Control action

Action performed by the application when an attempt is made to access a device to which access is denied in accordance with the access rule:

  • Apply rules (default value). If you select this option, the application uses the access rules and performs the action specified in the rules.
  • Test rules. If you select this option, the application tests the access rules and generates an event about the detection of an attempt to access a device.

Device Control settings

This group of settings contains buttons that open windows where you can configure access rules for various types of devices as well as connection bus access rules.

Page top