The security team of a customer is in the midst of testing Windows 7 security features and came up with the following queries. While conducting some tests on desktops using Windows 7, our internal audit department observed that it is possible to transfer data from a Windows 7 desktop to an android device using Media Transfer Protocol even if the USB port is blocked through AD Group policies. Similarly it is also possible to perform this operation on windows XP desktops if media player v 10 is installed on them. They also observed that if a phone is connected to a Windows 7 desktop, USB tethering allows the user to bypass the proxy and access internet unrestricted. I wanted to check with you if these are known issues on OS 7 and whether there are any solutions available to prevent them through AD policies on Windows 7 OS? Would appreciate any help in this regards.

Hi, Please check whether other UBS device could work after you applied the policy. In addition, please try to enable it again and run gpupdate /force in command prompt to ensure it has been applied. Regards, Vincent Wang TechNet Community Support

Hi, Please check whether other UBS device could work after you applied the policy. In addition, please try to enable it again and run gpupdate /force in command prompt to ensure it has been applied. Regards, Vincent Wang TechNet Community Support