Tag: User Configuration

This policy setting allows you to manage permissions for Java applets. If you enable this policy setting you can choose options from the drop-down box. Custom to control permissions settings individually. Low Safety enables applets to perform all operations. Medium Safety enables applets to run in their sandbox (an area in memory outside of which the program cannot make calls) plus capabilities like scratch space (a safe and secure storage area on the client computer) and user-controlled file I/O. High Safety enables applets to run in their sandbox. Disable Java to prevent any applets from running. If you disable this policy setting Java applets cannot run. If you do not configure this policy setting Java applets are disabled.

This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.

This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download not the zone from which the file is delivered. If you enable this policy setting files can be downloaded from the zone. If you disable this policy setting files are prevented from being downloaded from the zone. If you do not configure this policy setting files can be downloaded from the zone.

This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting users can drag files or copy and paste files from this zone automatically. If you select Prompt in the drop-down box users are queried to choose whether to drag or copy files from this zone. If you disable this policy setting users are prevented from dragging files or copying and pasting files from this zone. If you do not configure this policy setting users can drag files or copy and paste files from this zone automatically.

This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful especially when coming from an untrusted zone. If you enable this policy setting users can run unsigned controls without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow the unsigned control to run. If you disable this policy setting users cannot run unsigned controls. If you do not configure this policy setting users cannot run unsigned controls.

This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy users can download signed controls without user intervention. If you select Prompt in the drop-down box users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded. If you disable the policy setting signed controls cannot be downloaded. If you do not configure this policy setting users can download signed controls without user intervention.

This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. If you enable this policy setting and the drop-down box is set to Enable the user does not receive a security information message (This page contains both secure and nonsecure items. Do you want to display the nonsecure items?) and nonsecure content can be displayed. If the drop-down box is set to Prompt the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content. If you disable this policy setting users cannot receive the security information message and nonsecure content cannot be displayed. If you do not configure this policy setting the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content.

This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting binary and script behaviors are available. If you select Administrator approved in the drop-down box only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available. If you disable this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager. If you do not configure this policy setting only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available.