Overview
The Trustity Unified Agent includes a kernel-level driver (Windows) or daemon (Linux) to monitor I/O ports.
Policy Modes
- Allow: All devices are permitted. Activity is logged.
- Block: Removable storage devices (USB Flash Drives, External HDDs) are instantly unmounted upon connection. Keyboards/Mice are unaffected.
- Read-Only: (Windows Only) Users can copy files FROM the USB drive but cannot write data TO it.
Configuration
Go to Security Policy > Device Control to apply rules globally or per-group.