I've been asked by my manager to create a policy in a 2016 domain that blocks access to USB devices until they have been scanned by third-party antivirus and found to be clean. I've been Googling this and have found nothing that is helpful. I thought it would be a simple thing but apparently there aren't very many people trying to do this. Any help would be greatly appreciated.
Thanks,
Joe B