You can use JumpCloud policies to manage how your users move data between systems in your organization using removable storage. Any device that can be removed from a computer while the system is running is considered removable storage, such as:
- Optical disks (CDs, DVDs)
- USB drives (external hard drives, thumb drives)
- memory cards (CompactFlash cards, Secure Digital cards, Memory sticks)
Some systems may contain other devices that are similar to removable storage but can't always be removed from the system or disabled through removable storage policies. Technology that is usually not considered removable storage includes some of the following:
- Digital cameras (can be blocked on Linux)
- Wired or wireless printers
- Other external or dockable peripheral that can be easily removed from a system (keyboards, mouse)
Using removable media can pose risks, including data theft and the introduction of malware. You can use a removable storage policy if you don't want users accessing removable storage on their systems to add or remove files.
In Jumpcloud, a single policy includes several options so you can choose which combination of devices to restrict and, for Windows media, what level is restricted, such as read or run permissions. You can manage removable storage on a per-system basis, or create a policy for system groups. Policies are created in JumpCloud's Admin Portal and require no coding experience.
Considerations
- As part of the system agent check-in process, policies on an individual system continuously compare their configuration with the version in JumpCloud. If a user modifies their system configuration, JumpCloud automatically modifies the system configuration to comply with the JumpCloud policy.
- If the JumpCloud agent for a system is out-of-date, JumpCloud may be prevented from enforcing all policies on that system.