Preventing use of removal drives.

  • Thread starter Thread starter Robert Cohen
  • Start date Start date
R

Robert Cohen

Hi All,

Is there any way to prevent non-administrators from using CD Rom, Floppy, or other removable media? Basically, I need (for HIPAA) to be sure that someone can't download PHI onto a disk of some sort and take the information out of the agency.

Any help would be appricatiated.

Robert
--
 
There is currently no way to do that with group policy or ntfs permissions. Possibly you need to look into a computer case that locks, blocking access to all those devices and there can not be and usb cable coming out of it that could be used to plug into a hub to gain access. There may be third party solutions also. See link to one company that claims such. --- Steve

http://www.protect-me.com/dl/
Hi All,

Is there any way to prevent non-administrators from using CD Rom, Floppy, or other removable media? Basically, I need (for HIPAA) to be sure that someone can't download PHI onto a disk of some sort and take the information out of the agency.

Any help would be appricatiated.

Robert
--
 
Thank you. Maybe microsoft will consider it in further versions as that is a hipaa concern.

I understand it would take else to do that, but another thing I was thinking about. Is there a way in group policy to prevent sending of attachments to external e-mail. Obviously this side of the network, I want to be able to sned attachments, but not to outside of the facility.

Or is that something I will need to look at my firewall for?



--
--
Regardless of whether my signature is long or short, I still welcome e-mails if you know my address but won't post it. But on the positive side, I don't try and impress by quoting others.
--

There is currently no way to do that with group policy or ntfs permissions. Possibly you need to look into a computer case that locks, blocking access to all those devices and there can not be and usb cable coming out of it that could be used to plug into a hub to gain access. There may be third party solutions also. See link to one company that claims such. --- Steve

http://www.protect-me.com/dl/
Hi All,

Is there any way to prevent non-administrators from using CD Rom, Floppy, or other removable media? Basically, I need (for HIPAA) to be sure that someone can't download PHI onto a disk of some sort and take the information out of the agency.

Any help would be appricatiated.

Robert
--
 
Hi Robert-

I don't believe this can be done in local polciy alone. You could edit the
permissions for who can access the removable storage from Computer
Management though.

1) To do so, go to Start-->Run and type COMPMGMT.MSC (Computer Management)
then press enter.

2) In the left hand pane, click on the plus next to Storage to expand it.

3) Left-click on Removale Storage to select it. Then right-click on
Removable Storage and select Properties.

4) Click on the Security tab so that it is in front.

5) Edit the security list (ACL) to remove Users you want to restrict.
Removing the Users account and adding indivdual users that need access
should be enough. Make sure you don't over-restrict to the point where you
do not have access.
 
There is not a platform specific setting to restrict that. You may check
the microsoft.public.office.misc newsgroup, or look in the Office Resource
Kit.
 
Back
Top