Whitelisting USB Disk Drives / Windows Portable Devices

1 minute to read

Overview

As part of your onboarding into the GCC cloud(s) and Compliance as a Service, we need to secure the USB ports on any in-scope CAAS assets. This will not affect USB peripherals such as mouse, keyboard, printer etc., however any device that is capable of transferring data and classified as either a Windows Portable Device or a Disk Drive will require whitelisting.

Acquiring Device Instance Path for Whitelisting

To whitelist USB Disk or Windows Portable Devices, we require the Device Instance Path and Class GUID for the device. To get this information, on a non-onboarded / locked down PC, please perform the following steps:

Plug the USB device in & browse to it in Windows File Explorer.
Right click on the device and go to “Properties”.
Navigate to the Hardware tab and select the drive under “All disk drives.” These steps may vary slightly at this point depending on the device type.
Click on “Properties” at the bottom of the window, and then open the “Details” tab on the subsequent window.
In the “Property” drop down field, select “Class GUID”, and copy/paste the “Value” to a blank email. Do the same for “Device Instance Path”. If you have multiple devices, please provide these values for all applicable devices. Have your administrator send the email to support@nimbus-logic.com so that we can implement the whitelisted item.