Tag: User Configuration

This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy users can download signed controls without user intervention. If you select Prompt in the drop-down box users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded. If you disable the policy setting signed controls cannot be downloaded. If you do not configure this policy setting signed controls cannot be downloaded.

This policy setting allows you to manage whether users may download unsigned ActiveX controls from the zone. Such code is potentially harmful especially when coming from an untrusted zone. If you enable this policy setting users can run unsigned controls without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to allow the unsigned control to run. If you disable this policy setting users cannot run unsigned controls. If you do not configure this policy setting users cannot run unsigned controls.

This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO). If you enable this policy setting users can load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you select Prompt in the drop-down box users are queried to choose whether to allow a page to be loaded in the zone that uses MSXML or ADO to access data from another site in the zone. If you disable this policy setting users cannot load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you do not configure this policy setting users cannot load a page in the zone that uses MSXML or ADO to access data from another site in the zone.

This policy setting allows you to manage whether script code on pages in the zone is run. If you enable this policy setting script code on pages in the zone can run automatically. If you select Prompt in the drop-down box users are queried to choose whether to allow script code on pages in the zone to run. If you disable this policy setting script code on pages in the zone is prevented from running. If you do not configure this policy setting script code on pages in the zone is prevented from running.

This policy setting allows you to manage whether a user’s browser can be redirected to another Web page if the author of the Web page uses the Meta Refresh setting (tag) to redirect browsers to another Web page. If you enable this policy setting a user’s browser that loads a page containing an active Meta Refresh setting can be redirected to another Web page. If you disable this policy setting a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page. If you do not configure this policy setting a user’s browser that loads a page containing an active Meta Refresh setting cannot be redirected to another Web page.

This policy setting allows you to manage whether scripts can perform a clipboard operation (for example cut copy and paste) in a specified region. If you enable this policy setting a script can perform a clipboard operation. If you select Prompt in the drop-down box users are queried as to whether to perform clipboard operations. If you disable this policy setting a script cannot perform a clipboard operation. If you do not configure this policy setting a script cannot perform a clipboard operation.

This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting binary and script behaviors are available. If you select Administrator approved in the drop-down box only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available. If you disable this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager. If you do not configure this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager.