Windows Vista Security News

Windows Vista Information - Security, news, articles, tips and more.

• Home
• Contact

Latest Entries

• Microsoft releases faster Desktop Search 4.0
• Vista users keen on SP1, but XP SP3 not so much
• Windows 7 Details In October, Microsoft Says
• Microsofts plans for post-Windows OS revealed
• Most Vista Business Buyers Downgrade To Windows XP

Windows Longhorn: Using Group Policy to Control Device Management (Part 1)

Thursday, August 10th, 2006

One particularly challenging aspect of Windows security has always been controlling the user’s access to the hardware on their workstation. Years ago, some of the more security conscious companies were removing CD-ROM and floppy drives from workstations. Today though, USB ports are an even more serious threat. Most electronics stores sell USB adapters for hard drives that allow the drives to be used externally. What this means is that it is easy for any user to plug in an external hard drive and copy all of the data that they have access to. I have known of companies to fill workstation USB ports with epoxy in an effort to prevent such intrusions.

If you don’t like the idea of permanently damaging workstation hardware, then there are a variety of third party products that are designed to help to restrict the user’s access to a workstation’s hardware. For example, GFI makes a product called GFI End Point Security (http://www.gfi.com/endpointsecurity/) that is designed to regulate which types of USB devices users are allowed to use. In Longhorn Server though, you will be able to regulate device management via group policy.

The Available Group Policy Settings

Longhorn Server offers several different group policy settings that can be configured in an effort to control device usage on workstations. If you open the Group Policy Editor, you can find the device installation related settings at Computer Configuration | Administrative Templates | System | Device Installation | Device Installation Restrictions. Figure A shows the group policy settings that are available. Before I talk about the individual group policy settings though, I should mention that these settings are only effective on computers running Windows Vista or Longhorn Server. They can not be used to lock down devices on computers running Windows XP.Windows Longhorn: Using Group Policy to Control Device Management (Part 1)

Popular Posts

• Gartner Repeats Vista Delay Prediction
• Vista app compatibility: What is the story?
• Visiting Vista RC2, Part Two
• Is Windows Vista Immune to Malware?
• Windows Vista to Lock Out Old PDAs
• File management with Vista Explorer
• Microsoft fixes flaw in Vista
• Microsoft clarifies: Halo 2 Vista wont be Direct X 10
• Windows Server Longhorn Beta 3 review
• How to update vista and office offline
• Vista not for home users: security expert
• Will Vista Run Your Games?
• Microsoft Cites Top 10 Reasons Partners Should Pitch Vista
• Windows Vista Release Candidate 1 Review, Part 3
• On the Lookout for Vista
• Windows Vista limits security add-ons
• How To Find the Windows Vista Product Key Code
• Cisco exec: Windows Vista is scary
• Microsoft Clarifies: Only Cheapest Vistas Cant Power VMs
• WGA = SPP, SPP=Kill Switch, Killed Vista => Linux Desktop!
• Q and A: Windows Vista Released to Manufacturing
• Vista security: incompatible with humans
• Does Vista Give You Too Many Choices?
• Long-winded Longhorn aims at server security
• Office 2007 Slips; Will Vista Be Next?
• A Work List for Windows Vista
• How To Assign a keyboard shortcut to a program
• A look at the different roads to Windows Vista
• Microsofts plans for post-Windows OS revealed
• Vista SP1 To Enhance Security, Block Piracy

Comments are closed.

Please read our Disclaimer

Search

Your search engine brought you here? please use the same keyword in the Google box below to find what you are looking for.

Web This Site

© Windows Vista Security News 2006 - 2008 All Rights Reserved
Site Map | About | Disclaimer | Privacy Policy

Design by Andreas Viklund | Ported by Matteo Turchetto