Dear Microsoft!

In our company we get a RSC3003 Security token from our bank. We are using Windows 8 Prof with AD server, so there accounts with normal user rights and there is an account with administrator rights. I disabled the USB drives via group policy editor like detailed in this topic:

https://social.technet.microsoft.com/Forums/windowsserver/en-US/0be0c42b-950c-4a16-8be6-3f3a3d22e712/process-for-usb-port-blocking-via-active-directory-group-policy?forum=winserverGP

(Computer Configuration-->Policies-->Administrative Templates-->System-->Removable Storage Access)

But after this procedure I realized that neither the token will work too. I revert the changes that I made, but after that I can only use this device with administrator rights. Before that the normal users can use this device to authorize the logon to the bank. What would I have to change too to use the device with normal user rights?

What's the error when you plug in the USB device as a normal user ? 

What are the permissions on usbstore.if file ? 

Hi,

Make sure that all removable storage devices relevant policies (computer and user) have been set to not configured/disabled. Check the OU make sure that policy has been disabled for machines. Force Update the policy on client side and check the Group policy result.

If the issues still persists, uninstall USB driver under administrator account and re-install them back, reboot the computer and check under standard user account.

Check following registry entry

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Storage\enabledDenyGP

Any applied storage device group policies shows up in this container

Regards,

D. Wu

Thank You for Your help! I did the first two thing before that you mentioned, and it didn't help. The problem was solved by the uninstall of the USB Storage driver.

To Arnav: I didn't any error, just when I started the banking application, it didn't has access to the USB drive. But now I can use with normal user rights.

• Marked as answer by Deason WuMicrosoft contingent staff, Moderator 6 hours 12 minutes ago

Thank You for Your help! I did the first two thing before that you mentioned, and it didn't help. The problem was solved by the uninstall of the USB Storage driver.

To Arnav: I didn't any error, just when I started the banking application, it didn't has access to the USB drive. But now I can use with normal user rights.

• Marked as answer by Deason WuMicrosoft contingent staff, Moderator Monday, July 06, 2015 1:12 AM

Hi,

Glad to hear this issue has been solved. Thanks for sharing. We really appreciate your time and efforts. Hope your experience will help other community members facing similar problems.

Regards,

D. Wu