Tag: Computer Configuration
Allow installation of desktop items
This policy setting allows you to manage whether users can install Active Desktop items from this zone. The settings for this option are: If you enable this policy setting users can install desktop items from this zone automatically. If you select Prompt in the drop-down box users are queried to choose whether to install desktop items from this zone. If you disable this policy setting users are prevented from installing desktop items from this zone. If you do not configure this policy setting users are queried to choose whether to install desktop items from this zone.
Java permissions
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting you can choose options from the drop-down box. Custom to control permissions settings individually. Low Safety enables applets to perform all operations. Medium Safety enables applets to run in their sandbox (an area in memory outside of which the program cannot make calls) plus capabilities like scratch space (a safe and secure storage area on the client computer) and user-controlled file I/O. High Safety enables applets to run in their sandbox. Disable Java to prevent any applets from running. If you disable this policy setting Java applets cannot run. If you do not configure this policy setting Java applets are disabled.
Download unsigned ActiveX controls
This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful especially when coming from an untrusted zone. If you enable this policy setting users can run unsigned controls without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow the unsigned control to run. If you disable this policy setting users cannot run unsigned controls. If you do not configure this policy setting users cannot run unsigned controls.
Allow drag and drop or copy and paste files
This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting users can drag files or copy and paste files from this zone automatically. If you select Prompt in the drop-down box users are queried to choose whether to drag or copy files from this zone. If you disable this policy setting users are prevented from dragging files or copying and pasting files from this zone. If you do not configure this policy setting users can drag files or copy and paste files from this zone automatically.
Allow file downloads
This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download not the zone from which the file is delivered. If you enable this policy setting files can be downloaded from the zone. If you disable this policy setting files are prevented from being downloaded from the zone. If you do not configure this policy setting files can be downloaded from the zone.
Render legacy filters
This policy setting specifies whether Internet Explorer renders legacy visual filters in this zone. If you enable this policy setting you can control whether or not Internet Explorer renders legacy filters by selecting Enable or Disable under Options in Group Policy Editor. If you disable or do not configure this policy setting users can choose whether or not to render filters in this zone. Users can change this setting on the Security tab of the Internet Options dialog box. Filters are rendered by default in this zone.
Allow font downloads
This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.
Allow cut copy or paste operations from the clipboard via script
This policy setting allows you to manage whether scripts can perform a clipboard operation (for example cut copy and paste) in a specified region. If you enable this policy setting a script can perform a clipboard operation. If you select Prompt in the drop-down box users are queried as to whether to perform clipboard operations. If you disable this policy setting a script cannot perform a clipboard operation. If you do not configure this policy setting a script can perform a clipboard operation.
Allow binary and script behaviors
This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting binary and script behaviors are available. If you select Administrator approved in the drop-down box only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available. If you disable this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager. If you do not configure this policy setting only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available.
Use Pop-up Blocker
This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting most unwanted pop-up windows are prevented from appearing. If you disable this policy setting pop-up windows are not prevented from appearing. If you do not configure this policy setting pop-up windows are not prevented from appearing.