Home    SecuLution Dokumentation back next
Welcome
SecuLution technique and terminology
Quick start
Test setup in 30 minutes
Best practice in everyday use
Full setup and deployment in 5 hours
Installation of components
Install Appliance
AdminWizard installation
Agent installation
Syslog server installation
Initial configuration tasks
Configure basic settings
Agent configuration
Configure automated tasks
Manage whitelist
Initial whitelist generation
Import trustworthy software
Learn mode
Check deployment and learning progress
Audit
Add entries to whitelist
Drag'n'drop
Individual lernmode
Import from directory
PermanentLernUser
Log alarms
Cleanup whitelist
Manually delete unused entries
Delete entries using a pattern
Clean up classifications
Managed Whitelist
Managed Whitelist
Actions
Actions
Referring rules to objects
Offline mode
Offline mode
Devices
USB device management
USB device encryption
RCM
Agent deployment (RemoteClientManagement)
ArpWatch
ArpWatch
Logs
Logs
FAQ
setup.ini

USB device management

The Agent can be configured so that it treats USB devices the same way it treats software: A hash is calculated and checked against the whitelist:



Note that the appliance doesn't make a distinction between hashes that represent devices and hashes that represent software. Unknown hashes are denied. Therefore any unknown USB device cannot be used on any computer where USB device management is configured.

To configure USB device management, go to tab "Rules", scroll upwards, double-click on "Agent config" and click on "device-check":

Unless the option "Separate devices by serial number" is configured, any USB device will be identified by its VIDPID, the vendor and product ID of the device. That way all devices that have the same VIDPID are combined in one hash. "Separate devices by serial number" will cause one hash for every individual serial number of a device.

It is possible to classify your hardware the same way as it is possible with software: