
Option 1: Blacklist style with read-only support on regular USB keys (Block writing to USB except IronKey) Part II: Application and Device Control Policy If all of the IronKey devices are the same model and revision you should only see 2 File exceptions (Application Control) per drive letter and 2 Application exceptions (The hash won't change with drive letter, however duplicate hashes may be seen if the application was detected in more than one location). The number of necessary exceptions will vary if older and newer devices are used. The completed policy should look similar to the following. d:\ironkey.exe, d:\windows\ironkey.exe or e:\ironkey.exe, e:\windows\ironkey.exe) Note: There should be two exceptions per expected drive letter. Check the box next to Also exclude child processes.


Application Exception - Prevent SONAR interaction and/or process injection upon execution of :\IronKey.exe and :\windows\Ironkey.exe or their dependencies.
