Tag: User Configuration
Allow active scripting
This policy setting allows you to manage whether script code on pages in the zone is run. If you enable this policy setting script code on pages in the zone can run automatically. If you select Prompt in the drop-down box users are queried to choose whether to allow script code on pages in the zone to run. If you disable this policy setting script code on pages in the zone is prevented from running. If you do not configure this policy setting script code on pages in the zone is prevented from running.
Allow META REFRESH
This policy setting allows you to manage whether a user’s browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting (tag) to redirect browsers to another Web page. If you enable this policy setting a user’s browser that loads a page containing an active Meta Refresh setting can be redirected to another Web page. If you disable this policy setting a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page. If you do not configure this policy setting a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page.
Allow cut copy or paste operations from the clipboard via script
This policy setting allows you to manage whether scripts can perform a clipboard operation (for example cut copy and paste) in a specified region. If you enable this policy setting a script can perform a clipboard operation. If you select Prompt in the drop-down box users are queried as to whether to perform clipboard operations. If you disable this policy setting a script cannot perform a clipboard operation. If you do not configure this policy setting a script cannot perform a clipboard operation.
Allow binary and script behaviors
This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting binary and script behaviors are available. If you select Administrator approved in the drop-down box only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available. If you disable this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager. If you do not configure this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager.
Turn off . NET Framework Setup
This policy setting prevents the user’s computer from starting Microsoft . NET Framework Setup when the user is browsing to . NET Framework content in Internet Explorer. The . NET Framework is the next-generation platform for Windows. It uses the common language runtime and incorporates support from multiple developer tools. It includes the new managed code APIs for Windows. If you enable this policy setting . NET Framework Setup is turned off. The user cannot change this behavior. If you disable this policy setting . NET Framework Setup is turned on. The user cannot change this behavior. If you do not configure this policy setting . NET Framework Setup is turned on by default. The user can change this behavior.
Allow loading of XAML files
This policy setting allows you to manage the loading of Extensible Application Markup Language (XAML) files. XAML is an XML-based declarative markup language commonly used for creating rich user interfaces and graphics that take advantage of the Windows Presentation Foundation. If you enable this policy setting and set the drop-down box to Enable XAML files are automatically loaded inside Internet Explorer. The user cannot change this behavior. If you set the drop-down box to Prompt the user is prompted for loading XAML files. If you disable this policy setting XAML files are not loaded inside Internet Explorer. The user cannot change this behavior. If you do not configure this policy setting the user can decide whether to load XAML files inside Internet Explorer.
Allow loading of XPS files
This policy setting allows you to manage the loading of XPS files. These files contain a fixed-layout representation of paginated content and are portable across platforms devices and applications. If you enable this policy setting and set the drop-down box to Enable XPS files are automatically loaded inside Internet Explorer. The user cannot change this behavior. If you set the drop-down box to Prompt the user is prompted for loading XPS files. If you disable this policy setting XPS files are not loaded inside Internet Explorer. The user cannot change this behavior. If you do not configure this policy setting the user can decide whether to load XPS files inside Internet Explorer.
Access data sources across domains
This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO). If you enable this policy setting users can load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you select Prompt in the drop-down box users are queried to choose whether to allow a page to be loaded in the zone that uses MSXML or ADO to access data from another site in the zone. If you disable this policy setting users cannot load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you do not configure this policy setting users cannot load a page in the zone that uses MSXML or ADO to access data from another site in the zone.
Turn on Protected Mode
This policy setting allows you to turn on Protected Mode. Protected Mode helps protect Internet Explorer from exploited vulnerabilities by reducing the locations that Internet Explorer can write to in the registry and the file system. If you enable this policy setting Protected Mode is turned on. The user cannot turn off Protected Mode. If you disable this policy setting Protected Mode is turned off. The user cannot turn on Protected Mode. If you do not configure this policy setting the user can turn on or turn off Protected Mode.
Show security warning for potentially unsafe files
This policy setting controls whether or not the “Open File – Security Warning” message appears when the user tries to open executable files or other potentially unsafe files (from an intranet file share by using File Explorer for example). If you enable this policy setting and set the drop-down box to Enable these files open without a security warning. If you set the drop-down box to Prompt a security warning appears before the files open. If you disable this policy setting these files do not open. If you do not configure this policy setting the user can configure how the computer handles these files. By default these files are blocked in the Restricted zone enabled in the Intranet and Local Computer zones and set to prompt in the Internet and Trusted zones.