this happened to me yesterday. the solution depends on how you created the policy.
For me I have created the policy as are follows:
Endpoint Manager Intune portal https://endpoint.microsoft.com/
- Select Devices > Windows > Configuration profiles > Create profile
- In Create Profile, Select Platform, Windows 10, and later and Profile, Select Profile Type as Settings catalog. Click on Create button.
- On the Basics tab, enter a descriptive name, such as Disable Removable Storage Write Access. Optionally, enter a Description for the policy, then select Next.
- In Configuration settings, click Add settings to browse or search the catalog for the settings you want to configure.
- On the Settings Picker windows, Select Storage to see all the settings in this category. Select Removable Disk Deny Write Access below. After adding your settings, click the cross mark at the right-hand corner to close the settings picker.
- The setting is shown and configured with a default value Disabled. Set Removable Disk Deny Write Access to Enabled. Click Next.
so, to reverse the change: I selected "Disable".
and then I have created a new profile with "Removable Disk Deny Write Access" enabled, and selected a device group that I want to block USB from.
and I have created another profile with "Removable Disk Deny Write Access" disabled for those I want to allow them to use USB.
It is complicated, but it works!