SWIF.ai

The Windows Settings Policy in Swif.ai allows administrators to control key system behavior related to AutoPlay and device autorun on Windows endpoints. This policy is commonly used for compliance requirements that mandate disabling autorun functionality across corporate devices.

This policy can be applied to BYOD and company-owned Windows devices.

___________________________________________________________

This policy is supported on the following Windows editions:

Windows IoT Enterprise / IoT Enterprise LTSC 10+

- Windows Pro 10+
- Windows Enterprise 10+
- Windows Education 10+
- Windows SE 10+
- Windows IoT Enterprise / IoT Enterprise LTSC 10+

Many compliance frameworks require disabling any automatic execution of media or external storage, known as AutoRun or AutoPlay. These features allow removable drives, CDs/DVDs, and certain file types to automatically launch handlers when connected — posing a security risk.

The Windows Settings Policy allows you to control this behavior remotely from Swif.ai by managing the AutoPlay setting.

This setting defines whether users can change or use AutoPlay on the system.

True – AutoPlay is allowed and users may modify AutoPlay settings.

False – AutoPlay is disabled, preventing autorun-type behavior.

- True – AutoPlay is allowed and users may modify AutoPlay settings.
- False – AutoPlay is disabled, preventing autorun-type behavior.

Minimum Requirements: Windows Pro 10+, Windows Enterprise 10+, Windows Education 10+, Windows SE 10+, Windows IoT Enterprise / IoT Enterprise LTSC 10+

Some customers must provide evidence that autorun (AutoPlay) is disabled on all corporate devices. This fulfills common audit requirements across frameworks such as:

- SOC 2
- ISO 27001
- HIPAA
- CIS Benchmarks
- Zero-Trust Hardening Standards

The Windows equivalent of macOS AutoRun settings (described <a href="https://help.swif.ai/en/articles/12501502-how-to-disable-autorun-on-macos-devices">here</a>) is to disable AutoPlay.

Setting Allow AutoPlay = False in this Swif.ai policy:

Prevents Windows from automatically launching content from USB drives, cameras, SD cards, and removable media.

Ensures users cannot re-enable AutoPlay in Windows Settings.

Helps organizations meet security hardening and compliance requirements by eliminating autorun-based attack vectors.

- Prevents Windows from automatically launching content from USB drives, cameras, SD cards, and removable media.
- Ensures users cannot re-enable AutoPlay in Windows Settings.
- Helps organizations meet security hardening and compliance requirements by eliminating autorun-based attack vectors.

How to Verify AutoPlay is Disabled on the Device

Users can manually confirm AutoPlay is disabled:

Navigate to Bluetooth &amp; devices → AutoPlay

- Use AutoPlay for all media and devices is Off

1. Open Settings
2. Navigate to Bluetooth &amp; devices → AutoPlay
3. Confirm:
 - Use AutoPlay for all media and devices is Off

Select Hardware and Sound → AutoPlay

Ensure all dropdowns are set to Take no action or AutoPlay is disabled entirely

1. Open Control Panel
2. Select Hardware and Sound → AutoPlay
3. Ensure all dropdowns are set to Take no action or AutoPlay is disabled entirely

Method 3: Registry Check (Optional)

Get-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers" | Select NoDriveTypeAutoRun

A correct hardened value is typically: 255

Combine this policy with Windows Security Policy (for encryption) and Windows Connectivity Policy (for VPN &amp; Bluetooth restrictions) to strengthen endpoint security.

Apply to all device groups that include Windows laptops or desktops storing sensitive corporate data.

Periodically audit AutoPlay enforcement using Swif.ai’s Compliance Center.

- Combine this policy with Windows Security Policy (for encryption) and Windows Connectivity Policy (for VPN &amp; Bluetooth restrictions) to strengthen endpoint security.
- Apply to all device groups that include Windows laptops or desktops storing sensitive corporate data.
- Periodically audit AutoPlay enforcement using Swif.ai’s Compliance Center.

Windows Settings Policy

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Windows Settings Policy

Requirements

What This Policy Controls

Available Setting

Allow AutoPlay

Compliance Use Case: Disabling Autorun

How to Verify AutoPlay is Disabled on the Device

Method 1: Using Windows Settings

Method 2: Using Control Panel

Method 3: Registry Check (Optional)

Best Practices