By /

How to create storage policies for specific users?

This document outlines the step-by-step process of how to create storage policies for specific users in ThreatLocker Dashboard.

This article is a part of our ThreatLocker How-to Guides series, Chapter 05 – Storage Control.

purchase threatlocker licenses online!

Introduction

Sometimes, it’s necessary to apply storage control rules to a specific user rather than an entire machine or group. For example, blocking USB access for a particular employee or contractor.ThreatLocker’s Storage Control module allows administrators to target individual users or user groups, ensuring personalized control and compliance in shared device environments.

Implementation

Step 1: Access the Storage Control Module

  1. Log in to the ThreatLocker Portal.
  2. Navigate to Modules > Storage Control.
  3. Click ‘Create Policy’
create storage policies for specific users in ThreatLocker

Step 2: Fill in the Policy Creation Form

  1. In the Details section:
  • Name: Block USB – Sofiane
  • Description: Block USB for user Sofiane
create storage policies for specific users in ThreatLocker

2. In the Applied To section:

  • Applied To: Select the target computer or computer group where the policy should be enforced
  • Then, under Users and Groups, choose Selected Users/Groups
  • Add the specific user (e.g., Sofiane) so the rule is applied only when they are logged in.
create storage policies for specific users in ThreatLocker

3. In the Condition section:

  • Access Type: Read (or Read/Write if you also want to block writing)
  • Interface Type: Select Selected Interfaces
  • Choose USB to apply the policy only to USB storage devices
create storage policies for specific users in ThreatLocker

4. In the Action section:

  • SelectDeny” as the action
  • Enable the ‘Allow User to Request’ option to let users submit a request for temporary access when needed.
  • Add the policy to the top of the policy list to ensure it takes priority
create storage policies for specific users in ThreatLocker

Step 3: Deploy the policy

Once all fields are configured, click Create to save the policy

create storage policies for specific users in ThreatLocker
contact us for threatlocker deployment and maintenance services

Conclusion

By applying storage control policies to specific users, you gain precise control over who can access USB and external storage — even on shared devices.

This approach allows you to:

  • Enforce stricter rules for sensitive user roles
  • Maintain flexibility with exception handling
  • Strengthen Zero Trust by tying policy enforcement to user identity, not just the machine.

With ThreatLocker, storage access becomes fully customizable, user-aware, and auditable.

purchase threatlocker licenses online!

Related Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top