[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Deny write access to removable drives not protected by BitLocker

ID: oval:org.secpod.oval:def:35358Date: (C)2016-06-10   (M)2023-07-14
Class: COMPLIANCEFamily: windows




This policy setting configures whether BitLocker protection is required for a computer to be able to write data to a removable data drive. If you enable this policy setting, all removable data drives that are not BitLocker-protected will be mounted as read-only. If the drive is protected by BitLocker, it will be mounted with read and write access. If the "Deny write access to devices configured in another organization" option is selected, only drives with identification fields matching the computer's identification fields will be given write access. When a removable data drive is accessed it will be checked for valid identification field and allowed identification fields. These fields are defined by the "Provide the unique identifiers for your organization" policy setting. If you disable or do not configure this policy setting, all removable data drives on the computer will be mounted with read and write access. Counter Measure: This policy requires users to fully encrypt their drives prior to granting write access. Additionally, users who have encrypted their drive with BitLocker in another organization will not be able to write data to their drives until they re-encrypt with your organizations configuration of BitLocker. Potential Impact: Drives without BitLocker protection or are BitLocker protected but we not encrypting in your organization will be read-only. Drives encrypted with BitLocker in another organization will be read-only. This policy cannot be used in conjunction with Startup Keys or Recovery Keys. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\BitLocker Drive Encryption\Removable Data Drives\Deny write access to removable drives not protected by BitLocker (2) REG: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Policies\Microsoft\FVE!RDVDenyWriteAccess

Platform:
Microsoft Windows 10
Reference:
CCE-43930-7
CCE    1
CCE-43930-7
XCCDF    2
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_10
xccdf_org.secpod_benchmark_PCI_3_2_Windows_10

© SecPod Technologies