topic Re: Cortex XDR_ Device Control Violation_ Policy Management in Cortex XDR Discussions https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex-xdr-device-control-violation-policy-management/m-p/582222#M6439 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/188171">@Seth_Sakshi</a>&nbsp;,</P> <P>&nbsp;</P> <P><SPAN>Thanks for reaching out on LiveCommunity!</SPAN></P> <P>&nbsp;</P> <P><SPAN>Your requirement is completely depends on your organisation policy. If you want granular control then you can go with B.</SPAN></P> <P>&nbsp;</P> <P><SPAN>If you feel this has answered your query, please let us know by clicking on "mark this as a Solution". Thank you.</SPAN></P> Mon, 01 Apr 2024 08:04:30 GMT aspatil 2024-04-01T08:04:30Z Cortex XDR_ Device Control Violation_ Policy Management https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex-xdr-device-control-violation-policy-management/m-p/581811#M6434 <P>Hello All,</P> <P>&nbsp;</P> <P>Whenever the user is connecting any device in the system which is not allowed, we get the logs in the device control violation regarding that device.</P> <P>&nbsp;</P> <P>In such case, what changes are required-</P> <P>a) Allow the device through device permanent/temporary exception only</P> <P>b) Allow the access through device configuration in extension policy- like disk drive, CD-DVD rom, windows portable device etc only.</P> <P>c) Or both the above.</P> <P>&nbsp;</P> <P>Thanks in advance.</P> <P>&nbsp;</P> <P>Regards,</P> <P>Sakshi Seth</P> Wed, 27 Mar 2024 07:37:29 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex-xdr-device-control-violation-policy-management/m-p/581811#M6434 Seth_Sakshi 2024-03-27T07:37:29Z Re: Cortex XDR_ Device Control Violation_ Policy Management https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex-xdr-device-control-violation-policy-management/m-p/582222#M6439 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/188171">@Seth_Sakshi</a>&nbsp;,</P> <P>&nbsp;</P> <P><SPAN>Thanks for reaching out on LiveCommunity!</SPAN></P> <P>&nbsp;</P> <P><SPAN>Your requirement is completely depends on your organisation policy. If you want granular control then you can go with B.</SPAN></P> <P>&nbsp;</P> <P><SPAN>If you feel this has answered your query, please let us know by clicking on "mark this as a Solution". Thank you.</SPAN></P> Mon, 01 Apr 2024 08:04:30 GMT https://live.paloaltonetworks.com/t5/cortex-xdr-discussions/cortex-xdr-device-control-violation-policy-management/m-p/582222#M6439 aspatil 2024-04-01T08:04:30Z