HP Z620 HP Remote Graphics Software 5.4.7 - Page 148

9. Serial Number USB device mounting can also be allowed/denied based on the following two parameters: 10. IP address of the Local Computer 11. The domain group of the local user The ACL file supports two rule types: "allow" and "deny". The rules are evaluated by the Remote Computer for each USB connection request from a Local Computer as follows: ● If any rule indicates the USB connection should be denied, the connection is denied, regardless of any other rule. ● If any rule indicates the USB connection should be allowed, and if there are no rules that deny the connection, the connection is allowed. ● If no rules match at all, the connection is denied. Therefore, a deny rule takes precedence over an allow rule. The ACL file is implemented as an XML (Extensible Markup Language) file. The ACL schema file is located at: C:\Program Files\Hewlett-Packard\Remote Graphics Sender\hprUsbAcl.xsd For backwards compatibility, the following default ACL file(installed during Sender installation) allows all USB connections to be made: C:\Program Files\Hewlett-Packard\Remote Graphics Sender \hprDefaultUsbAcl.xml The names for these files can be changed using the properties described in Sender USB access control list properties on page 192. The default ACL file contains the following contents, which allows all USB connections to be made: rule type="allow"> Allow all USB devices (HP default) The following example ACL file denies all remote USB attachment requests: Rules may contain filters based on the 11 parameters listed previously. These parameters are repeated below along with the name of the filter element. 1. Device Class- bDeviceClass 2. Device Subclass- bDeviceSubclass 3. Device Protocol- bDeviceProtocol 4. Vendor ID- idVendor 5. Product ID- idProduct 6. Device BCD- bcdDevice 7. Manufacturer- manufacturer 8. Product Type- product 132 Chapter 6 Advanced capabilities