Disable/Remove CDROM Drive

P

patlav

I work in a high security environment where the use of any type of CD
ROM is now prohibited. I'm looking for a was to disable the use of
the CDROM on all the Windows 2000 PC. Going around to all the PC and
changing the BIOS or physically removing the device is not practical.

IS there any 3rd party software to do this....I looked and looked and
it can't be done in Group Policy.

Any help is appreciated
 
D

David H. Lipman

From: <[email protected]>

| I work in a high security environment where the use of any type of CD
| ROM is now prohibited. I'm looking for a was to disable the use of
| the CDROM on all the Windows 2000 PC. Going around to all the PC and
| changing the BIOS or physically removing the device is not practical.
|
| IS there any 3rd party software to do this....I looked and looked and
| it can't be done in Group Policy.
|
| Any help is appreciated

Why would a read-only device be a security problem in the first place ?

Such a ruling would also mean disabling the serial ports, USB and FireWire ports as well.

If it was truly a security problem, then removing the drive *is* what is required.

In addition, what security regulation requires this ?


BTW: I was in a Top Secret "skiff" and all PCs had CDROMs and many had ZIP drives.
 
J

James Blair

I work in a high security environment where the use of any type of CD
ROM is now prohibited. I'm looking for a was to disable the use of
the CDROM on all the Windows 2000 PC. Going around to all the PC and
changing the BIOS or physically removing the device is not practical.

IS there any 3rd party software to do this....I looked and looked and
it can't be done in Group Policy.

Any help is appreciated
Click to expand...

Actaully it can be done via GPO. Refer to this article:
http://support.microsoft.com/default.aspx?scid=kb;en-us;555324

Also, you could just disable the device in device manager (right click the
cd-rom, select disable). The user would need to have admin level rights to
re-enable it. Obviously, the GPO method would be easier for enterprise wide
deployment though.

Cheers.

Jim
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

cdrom drive not working 3
Block Floppy, CDRom, USB 1
Access to Floppy/CDROM/USB 2
Disable CDROM Drive for user in GP but user still can access 2
Removable drive locked although no process accessing it 4
my pc want boot from the hard drive, also my CDROM does not work 1
How To Disable Microsoft CD Player; AutoRun Registry Value; CD-ROM 1
Permanantly disableing autoplay 1

Top