Tag: Computer Configuration

This policy setting allows you to manage whether . NET Framework components that are signed with Authenticode can be executed from Internet Explorer. These components include managed controls referenced from an object tag and managed executables referenced from a link. If you enable this policy setting Internet Explorer will execute signed managed components. If you select Prompt in the drop-down box Internet Explorer will prompt the user to determine whether to execute signed managed components. If you disable this policy setting Internet Explorer will not execute signed managed components. If you do not configure this policy setting Internet Explorer will execute signed managed components.

This policy setting allows you to manage whether applets are exposed to scripts within the zone. If you enable this policy setting scripts can access applets automatically without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow scripts to access applets. If you disable this policy setting scripts are prevented from accessing applets. If you do not configure this policy setting scripts can access applets automatically without user intervention.

This policy setting allows you to manage ActiveX controls not marked as safe. If you enable this policy setting ActiveX controls are run loaded with parameters and scripted without setting object safety for untrusted data or scripts. This setting is not recommended except for secure and administered zones. This setting causes both unsafe and safe controls to be initialized and scripted ignoring the Script ActiveX controls marked safe for scripting option. If you enable this policy setting and select Prompt in the drop-down box users are queried whether to allow the control to be loaded with parameters or scripted. If you disable this policy setting ActiveX controls that cannot be made safe are not loaded with parameters or scripted. If you do not configure this policy setting users are queried whether to allow the control to be loaded with parameters or scripted.

This policy setting allows you to manage whether an ActiveX control marked safe for scripting can interact with a script. If you enable this policy setting script interaction can occur automatically without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow script interaction. If you disable this policy setting script interaction is prevented from occurring. If you do not configure this policy setting script interaction can occur automatically without user intervention.

This policy setting allows you to manage whether ActiveX controls and plug-ins can be run on pages from the specified zone. If you enable this policy setting controls and plug-ins can run without user intervention. If you selected Prompt in the drop-down box users are asked to choose whether to allow the controls or plug-in to run. If you disable this policy setting controls and plug-ins are prevented from running. If you do not configure this policy setting controls and plug-ins can run without user intervention.

This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting users will receive file download dialogs for user-initiated downloads. If you enable this setting users will receive a file download dialog for automatic download attempts. If you disable or do not configure this setting users will receive a file download dialog for automatic download attempts.

This policy setting manages whether users will be automatically prompted for ActiveX control installations. If you enable this policy setting users will receive a prompt when a site instantiates an ActiveX control they do not have installed. If you disable this policy setting ActiveX control installations will be blocked using the Notification bar. Users can click on the Notification bar to allow the ActiveX control prompt. If you do not configure this policy setting users will receive a prompt when a site instantiates an ActiveX control they do not have installed.

This policy setting allows you to manage whether users are prompted to select a certificate when no certificate or only one certificate exists. If you enable this policy setting Internet Explorer does not prompt users with a “Client Authentication” message when they connect to a Web site that has no certificate or only one certificate. If you disable this policy setting Internet Explorer prompts users with a “Client Authentication” message when they connect to a Web site that has no certificate or only one certificate. If you do not configure this policy setting Internet Explorer does not prompt users with a “Client Authentication” message when they connect to a Web site that has no certificate or only one certificate.

This policy setting allows you to manage whether a resource hosted on an admin-restricted protocol in the Intranet Zone can run active content such as script ActiveX Java and Binary Behaviors. The list of restricted protocols may be set in the Intranet Zone Restricted Protocols section under Network Protocol Lockdown policy. If you enable this policy setting no Intranet Zone content accessed is affected even for protocols on the restricted list. If you select Prompt from the drop-down box the Notification bar will appear to allow control over questionable content accessed over any restricted protocols; content over other protocols is unaffected. If you disable this policy setting all attempts to access such content over the restricted protocols is blocked. If you do not configure this policy setting the Notification bar will appear to allow control over questionable content accessed over any restricted protocols when the Network Protocol Lockdown security feature is enabled.