Reference Guide
Security Management Server v10.2.10 AdminHelp
267
Advanced Port Control
Policy descriptions also display in tooltips in the Management Console. In this table, master policies are
in bold font.
Policy Default Setting Description
Windows Port Control
This technology allows for control of all the physical ports on a Windows computer
(disable/enable/bypass), and can be customized by port type.
Subclass Storage: External Drive
Control
Full Access
CHILD of Class: Storage. Class:
Storage must be set to Enabled to use
this policy.
This p
olicy interacts wit
h EMS Access
to unShielded
Media policy. If you
intend to have Full Access to media,
also
set this policy to Full Access
to ensure that the media is not set
to read only and the port is not
blo
cked.
Full Access: External Drive port does
not have read/write
data restrictions
ap
plied
Read Only: Allows read capability.
Write data is disabled
Bloc
ked: Port is blocked from
read/write capability
This policy is endpoint
-based and
cannot be overridden by user policy.
Subclass Storage: Optical Drive
Control
UDF Only
CHILD of Class: Storage. Class:
Storage must be set to Enabled to use
this policy.
Full
Access: Optical Drive port does
not have read/write data restrictions
applied
UDF Only: Blocks all data writes that
are
not in the UDF format (CD/DVD
burning, ISO bur
ning). Read data is
ena
bled.
Read Only: Allows read capability.
Write data is disabled
Bl
ocked: Port is blocked from
read/write capability
This policy is endpoint
-based and
cannot be overridden by user policy.
Universal Disk Format (UDF)
is an
implementati
on of the specification
known as ISO/IEC 13346 and ECMA
-167
and is an open vendor
-neutral file
system for computer data storage for
a broad range of m
edia.
To encrypt data written to CD/DVD
media:
Set EMS Encr
ypt External Media =
True, E
MS Exclude CD/DVD E
ncryption =
False, and Storage Class: Optical
Drive Control = UDF
Only.
Subclass Storage: Floppy Drive
Read Only
CHILD of Class: Storage. Class: