USB devices such as pen drives, wireless controllers or printers can be used to steal data or to execute unauthorized software or even malware. Deactivating as many USB device classes as possible increases security.
By default, USB access control is not active. To enable and configure it follow these steps:
In combination with the preconfigured rule that allows Human Interface Devices (HID), no USB devices apart from e.g. mouse and keyboard are allowed.