This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 98%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOP%3C/text%3E%3C/svg%3E)
Hi tried to block USB devices from Intune was creating the policy and getting the below error.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 35%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZM%3C/text%3E%3C/svg%3E)
@Omkar Parthe, Thanks for posting in Q&A.
From your description, I know you want to block USB devices in Mac from Intune policy.
Based on my research, we can create a device control policy for mac to block USB devices.
Here are some links you can refer.
Non-official, just for reference.
Hope above information can help you.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Thanks for your kind support.
the code in GitHub helped, we can restrict the use of external devices in Mac OS through Intune.
Hello Omkar
Here is step for your request
1. Sign in to the Microsoft Endpoint Manager admin center (https://endpoint.microsoft.com/).
2. In the admin center, navigate to "Devices" and select "Configuration profiles."
3. Click on "Create profile" and choose the platform as macOS.
4. Under the settings catalog, select "Device restrictions."
5. Click on "USB device restrictions" to configure the settings related to USB devices.
6. To block USB devices, you can set the policy to disable USB storage devices and other USB devices based on your organization's requirements.
7. Once you have configured the USB device restrictions settings as desired, click on "Create" to create the Device Configuration profile.
8. Assign the newly created profile to the desired user group or device group by clicking on "Assignments" and selecting the appropriate assignment type.
9. After assigning the profile, the restrictions will be enforced on the Mac devices within the targeted group, effectively blocking USB devices according to the configured policy.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 71%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMD%3C/text%3E%3C/svg%3E)
This unfortunately this doesn't exist on the macOS side, which has been confirmed by Microsoft.
Microsoft Support has provided me with this information:
https://learn.microsoft.com/en-us/archive/technet-wiki/54305.block-all-usbexternal-storage-drives-on-mac-windows-workstations-with-microsoft-endpoint-manager