Lock down Copy & Paste?

from Stardock Forums

I have a user who is looking to be able to use a KM/KVM software for switching keyboard and mouse control between 2 machines. However, our company's security policies restrict copying and pasting to and from machines not on our company's internal network. In this case, it is the employee's company PC and personal PC. I am wondering, is there a registry edit that can be done on Multiplicity KM to turn off copy/paste, that is not available to the user? For reference, the users are not local administrators. We would like to be able to run the registry edit via a script through Azure AD. We need to be able to control the copy/paste functionality ourselves, and not allow the user to control it. 

multiplicity
4,184 views 7 replies
Reply #1 from Stardock Forums Top

Hello,
I have forwarded your problem/question to Stardock Support Team for their assistance. Please keep an eye on this thread for any updates. We appreciate your feedback and patience.

Basj,
Stardock Community Assistant

Reply #2 from Stardock Forums Top

However, our company's security policies restrict copying and pasting to and from machines not on our company's internal network. In this case, it is the employee's company PC and personal PC.
End of quote

I am curious if this would supersede any effort to copy \ paste with MP in use.  Have you tried doing this with MP and it was able to successfully copy \ paste?

Sean Drohan
Stardock Product Lifecycle Manager

Object Desktop - Get all of our enhancement utilities in one suite
Reply #3 from Stardock Forums Top

Well, here's the thing. We have a written policy, but I'm not sure what, if anything, enforces it. We don't want to inadvertently give someone a new way to copy and paste. We could probably use something like Conditional Access to restrict it. Then we would have to test to see if MP's copy and paste was subject to Conditional Access.

What I originally wanted to know was whether MP had any built-in mechanisms to turn off the ability to copy and paste. You may have given me an alternate possibility. 

Reply #4 from Stardock Forums Top

Quoting RoseDierolf, reply 3

Well, here's the thing. We have a written policy, but I'm not sure what, if anything, enforces it. We don't want to inadvertently give someone a new way to copy and paste. We could probably use something like Conditional Access to restrict it. Then we would have to test to see if MP's copy and paste was subject to Conditional Access.

What I originally wanted to know was whether MP had any built-in mechanisms to turn off the ability to copy and paste. You may have given me an alternate possibility. 
End of RoseDierolf's quote

The only native support is via the UI itself (something you have likely already seen):

Perhaps an easier policy to enforce would be to set that and not allow access to MultiplicityConfig.exe.

Sean Drohan
Stardock Product Lifecycle Manager

Reply #5 from Stardock Forums Top

Multiplicity settings can be locked to be only editable by a user with admin rights if that helps?

Reply #7 from Stardock Forums Top

Quoting Neil, reply 5

Multiplicity settings can be locked to be only editable by a user with admin rights if that helps?
End of Neil's quote
Quoting RoseDierolf, reply 6

That does help, since our users are not local admins. How does it get locked? Is it that Locked icon? 
End of RoseDierolf's quote

Yep... I totally forgot about that... And Neil will never let me forget it... ;)

That will trigger UAC, something you have locked down I suspect.

Sean Drohan
Stardock Product Lifecycle Manager