Edit FalconDeviceControlPolicy - CrowdStrike/psfalcon GitHub Wiki
Modify Falcon Device Control policies
Requires 'Device control policies: Write'.
| Name | Type | Description | Min | Max | Allowed | Pipeline | PipelineByName |
|---|---|---|---|---|---|---|---|
| InputObject | Object[] | One or more policies to modify in a single request | X | ||||
| Name | String | Policy name | |||||
| Description | String | Policy description | |||||
| UsbSetting | Object | USB settings | |||||
| BluetoothSetting | Object | Bluetooth settings | |||||
| Propagated | Boolean | Propagate policy to child environments | |||||
| Id | String | Policy identifier |
Edit-FalconDeviceControlPolicy [[-Name] <String>] [[-Description] <String>] [[-UsbSetting] <Object>] [[-BluetoothSetting] <Object>] [[-Propagated] <Boolean>] -Id <String> [-WhatIf] [-Confirm] [<CommonParameters>]Edit-FalconDeviceControlPolicy -InputObject <Object[]> [-WhatIf] [-Confirm] [<CommonParameters>]PATCH /policy/entities/device-control/v2
NOTE: As of PSFalcon v2.2.9, Edit-FalconDeviceControlPolicy is no longer used to manage exceptions. Update your code to use Edit-FalconDeviceControlClass instead.
$Setting = @{
enforcement_mode = 'MONITOR_ENFORCE'
end_user_notifications = 'NOTIFY_USER'
classes = @(
@{
id = 'AUDIO_VIDEO'
action = 'BLOCK_ALL'
},
@{
id = 'MASS_STORAGE'
action = 'BLOCK_ALL'
}
)
}
Edit-FalconDeviceControlPolicy -Id <id> -Setting $Setting2026-06-29: PSFalcon v2.2.9
