The port that is used the most is the USB interface, but sometimes you need to disable it to do some work. Windows recognizes USB devices mainly through two files, one is Usbstor.pnf and the other is Usbstor.inf. When the computer is used for the first time, the two files can be disabled to achieve our goal.
1. Open Active Directory users and computers;
2. Select the OU that needs to disable the USB device and click the right mouse button to group policy;
3. Create a target USB GPO, and click Edit to open the Group Policy Editor;
4. Go to the Group Policy Editor and expand “Computer Configuration”, “Windows Settings”, “Security Settings”. , & rdquo; file system & rdquo;;
5, right click "Add files", pop-up "Add files and folders", enter "ldquo;%systemroot% in the "folders" folder \\inf\\usbstor.inf“, OK; the article you see is from the Active Directory seo
6. In the "Database Security Settings", delete all users and add “Everyone”, remove Default Allow “Read & Execute”,“List Folder Content”,“Read”,Add Reject “Full Control>;Apply, OK;
In the "Add Objects" window, the default Before setting, if you want to re-edit security permissions, you can click ““Edit Security Settings” to reset; confirm, exit the settings;
8. In addition, repeat steps 5, 6, and 7. Set to “%systemroot%\\inf\\usbstor.PNF“;
9. Close the Group Policy Editor;
10. Use “gpupdate /force” to force the refresh policy.
The above methods can only be applied to computers that have not used USB. If some computers in the enterprise have used U disk and other devices, you need to modify the registry to achieve the purpose. The registry key that needs to be modified is located at:
HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\UsbStor
Under Windows 2000, the key value is HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\usbhub,
Open the above registry location, we can see the key value of start, you need to change the key value to 4, the default is 3 (3 means manual, 2 means automatic, 4 means disable), to use Group Policy to deploy.
Sometimes it is necessary to disable or disable certain ports or devices to run or achieve some purposes, so don't assume that disabling is a bad thing. If necessary, follow the steps above. do.
First of all, to prevent disasters, please backup the SWSETUP folder under the C drive and burn the
4. WinDirStat This is a software that calculates and displays the capacity of your hard drive. This
After Lingling bought the computer, she learned very hard and mastered some basic knowledge and oper
It is believed that Windows XP users are familiar with switching users. However, after the account i
It is found that some Group Policy of Vista and other systems cannot start
Windows Registry is more secure setting skills
Three steps to easily remove the npf.sys virus from your computer
XP install IIS, can not find zClientm.exe solution
Sharing of NTFS partition data under Windows XP
Teach you that Windows XP can fully maintain the system
What should I do if the XP system desktop shortcut cannot be deleted?
Restore corrupted XP system files
Quickly install Windows operating system exclusive cheats
Analysis of the Causes of PatchExpLib.dll Error in XP System and Solutions
How does WIN7 modify the system sound
How to completely remove Win8Metro Clear Win8Metro application tutorial
Analysis of Windows disk quota setting method
Win8.1 RTM Simplified Chinese Leakage Edition Getting Started
What is the use of the easy transfer function in Windows 7 [Photos]
Win10 prohibits the method of automatically running speech recognition when booting
How does Alipay look for lost children?
Win10 mouse can not open the right border of the screen solution