SD Card Format/Delete Files Permission with Read-Only Permission in EPP

Products Endpoint Protector Ideas
,
1

What is a one sentence summary of your feature request?

Format/Delete Files from an SD Card where the user has Read-Only Permission in EPP

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

We want to give some users the ability to format/delete data from an SD Card without being able to upload files to that SD Card. T

The problem is that we currently gave the users Read-Only permission which does not allow them to format/delete files from their SD cards, and we don’t want to give them “Allow Access” permission. For those who need to Format/Delete files, we give them Allow Access after they have received approval through an exception request. This gives the approved users permanent access in the EPP client.

We are suggesting an enhancement in the EPP client on the endpoints to have a setting which will allow users to format/delete files from an ED Card or any External Storage Device without being allowed to upload data to the device from the computer. This will especially be very helpful to our users in the field who store a lot of data on SD Cards in Drones, Cameras, etc., that they need to routinely transfer to their computers. Automating this process will make us more efficient in our DLP program.

How do you currently solve the challenges you have by not having this feature?

For those who need to Format/Delete files, we are currently giving them “Allow Access” after they have received approval through an exception request. This gives the approved users permanent access in the EPP client. This is a long process that is an inconvenience to our users since they have to wait days or sometimes more than a week for their request to be approved for them to be able to format/delete files in their SD cards. This also leaves a lot of stale devices in EPP that we need to constantly delete manually.

Thank you.

2

Hello Charles,

Thank you for being part of the Netwrix Community!

We appreciate you taking the time to fully detail your use case. Therefore, please allow a few days to look into the suggested improvements for the SD Card where the user has Read Only permissions in EPP.

I will get back to you shortly with an update.

Kind Regards,
Simona

3

Hi Charles,

Thank you for your patience while we reviewed your request.

We’re happy to share that your suggestion has been acknowledged, and our team will be working on a solution to facilitate his behavior.

In the meantime, if you would like to allow users to format devices, you can do so by granting Trusted Device Level 1+ access and enabling the formatting option in the Settings section.
→ Allow formatting/renaming Removable devices in Trusted Device™ Level 1+ (TD1+) – only available for Windows, enable this setting to allow the user to format or rename a USB device that has TD1-x access permission.
→ For this setting to work successfully, enable the Minifilter Driver setting.

At this stage, we don’t have an estimated timeline for delivery, but we will keep you informed as progress is made.

Thank you again for your understanding, and have a great day!

Regards,
Simona