What is the difference between "Notify users when external devices are blocked(allowed)" and "ENABLE NOTIFICATION" in a Device Control Policy of SES
Article ID: 274312
Updated On:
Products
Issue/Introduction
Device Control Policy of Symantec Endpoint Security (SES) has two kinds of options related to notifications,
"Notify users when external devices are blocked(allowed)" and "ENABLE NOTIFICATION".
What is the difference between them?
|
|
|
Environment
Windows clients and Mac clients managed by Integrated Cyber Defense Manager (ICDm)
Resolution
If "Notify users when external devices are blocked" or "Notify users when external devices are allowed" are enabled,
a notification will appear when an event occurs that matches a rule registered in the "Windows Rules" or "Mac Rules".
| Windows Rules | Mac Rules | |
|
The following screenshot shows an example when the rule "General_USB" is registered in "Windows Rules". |
|
The following screenshot shows an example when the rule "USB devices" is registered in "Mac Rules". |
|
Detail of the rule |
|
Detail of the rule |
|
The following screenshot is an example of a notification displayed on a Windows client. |
|
The following screenshot is an example of a notification displayed on a Mac client. |
If "ENABLE NOTIFICATION" is enabled, a notification will appear when an event occurs that matches a rule in "Windows - USB Mass Storage Rules".
|
Windows - USB Mass Storage Rules |
|
The following screenshot shows an example when the rule General_USB is registered in "Windows - USB Mass Storage Rules". |
|
Detail of the rule |
|
The following screenshot is an example of a notification displayed on a Windows client. |
Additional Information
"Windows Rules" (Windows External devices) , "Windows - USB Mass Storage Rules" and "Mac Rules" (Mac mass storage devices) are described in the following page of online manual .
Feedback
