New-CMFDVDenyWriteAccessPolicy

Module:

ConfigurationManager

Create a new policy to determine whether BitLocker protection is required for fixed data drives to be writable on a computer.

Syntax

New-CMFDVDenyWriteAccessPolicy
   [-PolicyState <State>]
   [-DisableWildcardHandling]
   [-ForceWildcardHandling]
   [<CommonParameters>]

Description

Create a new policy to determine whether BitLocker protection is required for fixed data drives to be writable on a computer.

Examples

Example 1: New default enabled policy

This example creates a new policy that's enabled.

New-CMFDVDenyWriteAccessPolicy -PolicyState Enabled

Parameters

-DisableWildcardHandling

This parameter treats wildcard characters as literal character values. You can't combine it with ForceWildcardHandling.

Type:	SwitchParameter
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-ForceWildcardHandling

This parameter processes wildcard characters and may lead to unexpected behavior (not recommended). You can't combine it with DisableWildcardHandling.

Type:	SwitchParameter
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

-PolicyState

Use this parameter to configure the policy.

• Enabled: If you enable this policy setting, Windows mounts all fixed data drives that BitLocker doesn't protect as read-only. If BitLocker protects the drive, Windows mounts it with read and write access.

• Disabled or NotConfigured: If you disable or don't configure this policy setting, Windows mounts all fixed data drives on the computer with read and write access.

Type:	State
Accepted values:	Enabled, Disabled, NotConfigured
Position:	Named
Default value:	None
Required:	False
Accept pipeline input:	False
Accept wildcard characters:	False

Inputs

None

Outputs

Microsoft.ConfigurationManagement.AdminConsole.BitlockerManagement.PolicyObject

Related Links

• New-CMBlmSetting
• BitLocker settings reference