I’m trying to write a driver to prevent CDROM devices (when plugged in) on the OS.
I have started research implement POC of it by writing “Filter driver(?for bus or nobus?)” which implementing “IRP_MJ_PNP” and “IRP_MN_START_DEVICE” and set ACCESS_DENIED for preventing.
@Mark_Roddy said:
How about using this gpo “all removable storage classes deny all access” -
much simpler.
Mark Roddy
Hi Mark_Roddy,
Thanks for your response.
In the future I would like to give the option for exclusions according to device name/id, so I’m still looking for PNP filter driver solution.