I have Checkpoint Endpoint with version R80.20.
I have configured all users ,without media owner, can access read only mode to encrypted media partition.
But when tried that other users can copy relevant files outside of usb.
How can I restrict this, is there any way to do that?
Think about it: if you can read the file, you can rewrite the file somewhere else very easily.
MEPP only controls the data that flows in and out of removable storage.
It does not control what can be written to boot drive, which would cause problems similar to: Media Encryption blocks access to Hard Disk that is connected via SATA, via USB or via a PCI Express to IDE adapter
Thanks for the update.
But I can not copy files from desktop ,which the agent is not installed, to USB on offline mode with this configuration.
Opposite this , I can copy files from USB to desktop.
Seems like expected behavior.
I assume the media in question was encrypted by MEPP.
When you're offline, you don't know who the user is.
As such, the "Read Only" permission applies.
Retrieving data ...