Auto-Scan USB devices through Forefront Endpoint Protection

Hi all,

I'm using forefront Endpoint protection in my corporate office.
When i connect my usb devices, FEP doesn't scan the devices automatically.
I want FEP to scan immediately when a USb stick is connected.
Is there any options to do it?


Regards,
Arun.

July 19th, 2014 1:39pm

Under Advanced setting there is a policy known as Scan removable storage devices, such as USB flash drives and you may try to enable it, take a look at:

http://technet.microsoft.com/en-us/library/gg477039.aspx

Free Windows Admin Tool Kit Click here and download it now
July 19th, 2014 4:14pm

I don't believe this policy satisfies the request.

The policy indicates that it is related to the scanning of USB devices when running a full scan; where as Arun is looking for the scan to run at the time of device insertion/activation.

That is what I am looking to determine as well.  I have seen other comments suggesting that it may not be a good thing, given how large USB storage devices can potentially be; however, it would be nice to at least have the option.

Thanx.

August 8th, 2014 12:47pm

If there is threat in the USB device which attempt to infect the system such as Worm, Virus, TrojanDroppers and so on, then Forefront real-time protection will stop it and remove it. But if it is case of Trojan or whatever thing which user need to click on it , then it might not catch by real-time protection unless user attempt to execute it like by click on it which will again blocked by real-time protection.

The feature of scan when insert a USB device automatically is not available in Forefront, one reason could be just imagine a case that someone want to just insert a USB and open a single file and might only need to use it for 10 minutes while if scan start to run , it would try to scan for hours (in case of full scanning several files). USB device are mostly used just to plug in and plug out and if scan run and then consider user done with his/her job and want to take out the USB in middle of scan, it might also cause some damage to data.

However, you could always run manual scan by right click on the USB and then Scan with Forefront Endpoint Protection.

Free Windows Admin Tool Kit Click here and download it now
August 9th, 2014 8:28pm

It would be nice if Microsoft let us as the people being responsible for network and data security make the decision to force a scan or not...or at least have a window popup that would say "Scan USB drive now, yes/no".  A number of other providers already do this.
April 23rd, 2015 1:45pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics