Tenia una politica que bloquea las memorias USB, funcionando adecuadamente
con WinServer 2003 SP1, cuando instalamos el SP2 ha dejado de funcionar.
Esta es la política en el archivo adm que utilizamos, cual es el problema?
CLASS MACHINE
CATEGORY !!category
CATEGORY !!categoryname
POLICY !!policynameusb
KEYNAME "SYSTEM\CurrentControlSet\Services\USBSTOR"
EXPLAIN !!explaintextusb
PART !!labeltextusb DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynamecd
KEYNAME "SYSTEM\CurrentControlSet\Services\Cdrom"
EXPLAIN !!explaintextcd
PART !!labeltextcd DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 1 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynameflpy
KEYNAME "SYSTEM\CurrentControlSet\Services\Flpydisk"
EXPLAIN !!explaintextflpy
PART !!labeltextflpy DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
POLICY !!policynamels120
KEYNAME "SYSTEM\CurrentControlSet\Services\Sfloppy"
EXPLAIN !!explaintextls120
PART !!labeltextls120 DROPDOWNLIST REQUIRED
VALUENAME "Start"
ITEMLIST
NAME !!Disabled VALUE NUMERIC 3 DEFAULT
NAME !!Enabled VALUE NUMERIC 4
END ITEMLIST
END PART
END POLICY
END CATEGORY
END CATEGORY
[strings]
category="Custom Policy Settings"
categoryname="Restrict Drives"
policynameusb="Disable USB Removable Drives"
policynamecd="Disable CD-ROM"
policynameflpy="Disable Floppy"
policynamels120="Disable High Capacity Floppy"
explaintextusb="Disables the USB Removable Drives capability by disabling
the usbstor.sys driver. Select the ENABLED radiobox, then select STOPPED
for the usbstore.sys driver status in the drop-down list. Note that this
will only prevent usage of newly plugged-in USB Removable Drives or Flash
Drives, devices that were plugged-in while this option was not configured
will continue to function normally. Also, devices that use the same device or
hardware ID (for example - 2 identical Flash Disks made by the same
manufacturer) will still function if one of them was plugged-in prior to the
configuration of this setting. In order to successfully block them you will
need to make sure no USB Removable Drive is plugged-in while you set this
option. In order to re-enable the usage of USB Removable Drives select
STARTED for the usbstore.sys driver status in the drop-down list."
explaintextcd="Disables the CD-ROM Drive by disabling the cdrom.sys driver.
Select the ENABLED radiobox, then select STOPPED for the cdrom.sys driver
status in the drop-down list. In order to re-enable the usage of USB
Removable Drives select STARTED for the cdrom.sys driver status in the
drop-down list."
explaintextflpy="Disables the Floppy Drive by disabling the flpydisk.sys
driver. Select the ENABLED radiobox, then select STOPPED for the
flpydisk.sys driver status in the drop-down list. In order to re-enable
the usage of USB Removable Drives select STARTED for the flpydisk.sys driver
status in the drop-down list."
explaintextls120="Disables the High Capacity Floppy Drive by disabling the
sfloppy.sys driver. Select the ENABLED radiobox, then select STOPPED for
the sfloppy.sys driver status in the drop-down list. In order to
re-enable the usage of USB Removable Drives select STARTED for the
sfloppy.sys driver status in the drop-down list."
labeltextusb="usbstore.sys driver status"
labeltextcd="cdrom.sys driver status"
labeltextflpy="flpydisk.sys driver status"
labeltextls120="sfloppy.sys driver status"
Enabled="Stopped"
Disabled="Started"
Últimos mensajes - Powered by IBM
Palabras claves
Hacer una pregunta
Siga el debate
Tengo una respuesta
Viernes 26 de abril - 00:03
Registrar
Leer las respuestas