InformationThis policy setting controls whether websites can access connected USB devices.
The recommended state for this setting is Enabled: Do not allow any site to request access to USB devices via the WebUSB API.
WebUSB could potentially be used for attacks that may bypass other controls regarding connected USB hardware including hardware authentication devices.
Websites will be unable to utilize connected USB devices via the API, this includes web cameras, microphones, and other USB devices.
SolutionTo establish the recommended configuration via GP, set the following UI path to Enabled: Don't allow any site to request access to USB devices via the WebUSB API
Computer Configuration\Policies\Administrative Templates\Microsoft Edge\Content settings\Control use of the WebUSB API
Note: This Group Policy path may not exist by default. It is provided by the Group Policy template MSEdge.admx/adml that can be downloaded from Microsoft here.
Enabled - Users will be asked whether websites can access USB devices. Users may change this setting.