Category: At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1
Logon options
This policy setting allows you to manage settings for logon options. If you enable this policy setting you can choose from the following logon options. Anonymous logon to disable HTTP authentication and use the guest account only for the Common Internet File System (CIFS) protocol. Prompt for user name and password to query users for user IDs and passwords. After a user is queried these values can be used silently for the remainder of the session. Automatic logon only in Intranet zone to query users for user IDs and passwords in other zones. After a user is queried these values can be used silently for the remainder of the session. Automatic logon with current user name and password to attempt logon using Windows NT Challenge Response (also known as NTLM authentication). If Windows NT Challenge Response is supported by the server the logon uses the user’s network user name and password for logon. If Windows NT Challenge Response is not supported by the server the user is queried to provide the user name and password. If you disable this policy setting logon is set to Automatic logon only in Intranet zone. If you do not configure this policy setting logon is set to Automatic logon with current username and password.
Logon options
This policy setting allows you to manage settings for logon options. If you enable this policy setting you can choose from the following logon options. Anonymous logon to disable HTTP authentication and use the guest account only for the Common Internet File System (CIFS) protocol. Prompt for user name and password to query users for user IDs and passwords. After a user is queried these values can be used silently for the remainder of the session. Automatic logon only in Intranet zone to query users for user IDs and passwords in other zones. After a user is queried these values can be used silently for the remainder of the session. Automatic logon with current user name and password to attempt logon using Windows NT Challenge Response (also known as NTLM authentication). If Windows NT Challenge Response is supported by the server the logon uses the user’s network user name and password for logon. If Windows NT Challenge Response is not supported by the server the user is queried to provide the user name and password. If you disable this policy setting logon is set to Automatic logon only in Intranet zone. If you do not configure this policy setting logon is set to Automatic logon with current username and password.
Launching applications and files in an IFRAME
This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone. If you enable this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to run applications and download files from IFRAMEs on the pages in this zone. If you disable this policy setting users are prevented from running applications and downloading files from IFRAMEs on the pages in this zone. If you do not configure this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention.
Launching applications and files in an IFRAME
This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone. If you enable this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to run applications and download files from IFRAMEs on the pages in this zone. If you disable this policy setting users are prevented from running applications and downloading files from IFRAMEs on the pages in this zone. If you do not configure this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention.
Java permissions
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting you can choose options from the drop-down box. Custom to control permissions settings individually. Low Safety enables applets to perform all operations. Medium Safety enables applets to run in their sandbox (an area in memory outside of which the program cannot make calls) plus capabilities like scratch space (a safe and secure storage area on the client computer) and user-controlled file I/O. High Safety enables applets to run in their sandbox. Disable Java to prevent any applets from running. If you disable this policy setting Java applets cannot run. If you do not configure this policy setting the permission is set to Low Safety.
Java permissions
This policy setting allows you to manage permissions for Java applets. If you enable this policy setting you can choose options from the drop-down box. Custom to control permissions settings individually. Low Safety enables applets to perform all operations. Medium Safety enables applets to run in their sandbox (an area in memory outside of which the program cannot make calls) plus capabilities like scratch space (a safe and secure storage area on the client computer) and user-controlled file I/O. High Safety enables applets to run in their sandbox. Disable Java to prevent any applets from running. If you disable this policy setting Java applets cannot run. If you do not configure this policy setting the permission is set to Low Safety.
Allow font downloads
This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.
Allow font downloads
This policy setting allows you to manage whether pages of the zone may download HTML fonts. If you enable this policy setting HTML fonts can be downloaded automatically. If you enable this policy setting and Prompt is selected in the drop-down box users are queried whether to allow HTML fonts to download. If you disable this policy setting HTML fonts are prevented from downloading. If you do not configure this policy setting HTML fonts can be downloaded automatically.
Allow file downloads
This policy setting allows you to manage whether file downloads are permitted from the zone. This option is determined by the zone of the page with the link causing the download not the zone from which the file is delivered. If you enable this policy setting files can be downloaded from the zone. If you disable this policy setting files are prevented from being downloaded from the zone. If you do not configure this policy setting files can be downloaded from the zone.
Allow drag and drop or copy and paste files
This policy setting allows you to manage whether users can drag files or copy and paste files from a source within the zone. If you enable this policy setting users can drag files or copy and paste files from this zone automatically. If you select Prompt in the drop-down box users are queried to choose whether to drag or copy files from this zone. If you disable this policy setting users are prevented from dragging files or copying and pasting files from this zone. If you do not configure this policy setting users can drag files or copy and paste files from this zone automatically.