This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(16, 99%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESR%3C/text%3E%3C/svg%3E)
I would like to manage all USB devices plugged on our computers throughout the domain. I would like to be able to block or unblock any of them, while letting other devices working in windows 10 function, example printer , mouse, keyboard. With GPO its seems to be difficult. Can Bit Locker do this? Does Windows Defender do this? And if not, what do you suggest to be able to manage this issue. Can Endpoint manage it
Thank You,
Sylvain
If you resolved it using our solution, please click "Accept Answer" on a reply to help other community members find the helpful reply quickly.
If you resolve it using your own solution, please share your experience and solution here. It will be very beneficial for other community members who have similar questions.
Hi Sylvain,
Unfortunately, if we only focus on Windows 10 built-in features and Microsoft Windows related products, we can’t make it.
Windows doesn’t have a function to pass/block specific USB drive but pass/block other USB drives, Microsoft’s security tools such as BitLocker, Defender, Endpoint, AppLocker neither can do it.
From my experience, we need to use third-party security software for block policy. I ever used Symantec to pass specific USB devices and block all other USB drives, this software use hardware ID to recognize USB drive. You need to enter the hardware IDs of allowable USB devices in advance, then enable Symantec USB port protection(maybe it called this name), then other USB cannot work.
-------------------------------------------------------------------------------------
If the Answer is helpful, please click "Accept Answer" and upvote it.
Please note: The mentioned product is owned and operated by a third party. Microsoft has no control regarding to the product's performance and reliability.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.