Disable removable drive autorun in Azure AD

Ted Sinclair 21 Reputation points

Windows Server has a group policy to disable autorun/autoplay on removable drives. (Computer Configuration > Policies > Administrative Templates > Windows Components > AutoPlay Policies.)

Does the same thing exist in Azure AD policies? I've looked at the Device Control profile options in Endpoint Manager > Endpoint security > Attack surface reduction. I see how to disable removable drives completely, but can't find a policy setting to disable autorun.


Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,697 questions
0 comments No comments
{count} votes

Accepted answer
  1. Crystal-MSFT 42,306 Reputation points Microsoft Vendor

    @Ted Sinclair , Thanks for posting in Q&A.

    After researching, I find the setting "Turn off Autoplay" and "Set the default behavior for AutoRun" are under Windows 10 Settings Catalog-> Administrative Templates > Windows Components > AutoPlay Policies. Here is the location for the reference:
    You can configure it there. Hope it can help.

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful