![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 97%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAA%3C/text%3E%3C/svg%3E)
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,718 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 9%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Hello
Blocking USB tethering or stopping the execution of the RNDIS.sys file without using Group Policy Objects (GPO) can indeed be challenging, especially when dealing with multiple devices. However, there are a few alternative methods you can consider:
Device Manager: You can manually disable the RNDIS driver in the Device Manager. This method is suitable for individual devices but may not be practical for a large number of devices.
Registry Editor: You can create a registry script to disable the RNDIS driver. This script can be deployed to multiple devices using a software deployment tool. Here is an example of a registry script:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RNDISMP]
"Start"=dword:00000004
This script sets the RNDISMP service to "disabled" (Start=4).
Endpoint Management Tools: Tools like Microsoft Intune can be used to manage device configurations and enforce policies across multiple devices. Intune allows you to create custom configuration profiles that can disable specific drivers or services.
Local Security Policy: You can use the Local Security Policy to block the installation of specific device drivers. This method is similar to using GPO but can be applied locally on each device.
Third-Party Security Software: Some endpoint security solutions offer features to block specific types of network connections, including USB tethering. These solutions can be deployed across multiple devices and managed centrally.