Works wonderfully to defend endpoints against malware, ransomware, and malicious scriptsIt would be much easier if the solution added the allowed USB for pen drives and USB drives. You can import an Excel CSV file with 500 devices, but it will be allowed globally. That would be helpful if you want to allow it only in one policy. If you want to enable these pen drives only for one group or an organization's security group, you have to add them manually one by one. That could be easier. It's a user experience, but you can add not just the serial but also the vendor. If you only have a Kingston pen drive, you can say that you want to allow all Kingston, or you can add the model number. If you know that you have a specific model of the Kingston pen drive, you can just allow Kingston and that model. The serial number is not important. You will not filter by serial number. However, if you want to filter by serial number and add only the given devices with the serial number, you have to add them one by one. You have to do this if you don't want to allow them globally. It's enough if you know that you bought a Kingston pen drive and you just put in that you want to allow the Kingston and the model number. Then, all pen drives of the given model will be allowed for a given security group on a given number of computers. In that case, you can attach only pen drives and no external hard drives from Kingston. That could be fast. If you want to add a given serial number, you add it one by one for a specific group. If you want to allow them globally, you say that everybody can use the pen drive on every computer. You can do it from a CSV. Let's say the CSV imports for security groups only and not company-wide. I think this is the more punctual way. If you want to allow it only for the security group or Active Directory group of users, you must manually edit it to limit the serial numbers. The solution's user experience regarding device control could be more friendly or straightforward.
