• Capture Client
• Overview
  • Description
  • Navigation
  • Guide Conventions
• Scopes and Policies
  • Introducing Scope of Operations
  • Using Scope Selector
  • Policy Management
    • Inheritance
    • Policy Types
      • Client Policies
      • Threat Protection Policies
      • Trusted Certificate Policies
      • Web Content Filtering Policies
      • Managing Blacklist
      • Exclusions
        • Hashes
        • Paths
        • Signer Identity
        • File Types
        • Browsers
    • Replicating Policies
    • Group Ranking Policy
    • Creating Custom Policies for Device Groups
    • Device Control
• Protection
  • Tenant Token
  • Installation for the New Clients
  • Migrating Clients Across Regions
  • Protecting Devices
  • Reviewing Registered Devices
    • List View
    • Unmanaged List View
    • Map
  • Active Users
  • Performing System Scan
• Groups
  • Creating a Static User Group
  • Creating Static Device Groups
  • Creating Dynamic Device Groups
  • Creating Custom Rules for Dynamic Groups
• SonicWall Support
  • About This Document

Device Control

Capture Client allows you to control what USB devices can be connected to or are blocked from connecting to an endpoint. This feature can be used on both Windows and Mac devices.

Capture Client features a device control option that allows you to prevent data exfiltration and the malware threats from spreading via USB devices. USB devices are still a big source of malware threats spreading through an environment, and they are often used by insiders to steal sensitive data from an organization.

Device Control is only available via the Capture Client Advanced License and is supported with SentinelOne 2.8 Windows Agents and 2.7 macOS Agents.

Device Control lets you manage which external devices can be used with endpoints in your organization. It can be used at both the tenant level and at the policy level; each device control list is independent of the other. The policy device control takes precedence over the global device control. Use Device Control to:

• Block those external devices that are not required so data leaks are limited.
• Strictly control allowed devices to prevent malicious content from entering your network through external devices.