Category: At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1

This policy setting manages whether users will be automatically prompted for ActiveX control installations. If you enable this policy setting users will receive a prompt when a site instantiates an ActiveX control they do not have installed. If you disable this policy setting ActiveX control installations will be blocked using the Notification bar. Users can click on the Notification bar to allow the ActiveX control prompt. If you do not configure this policy setting ActiveX control installations will be blocked using the Notification bar. Users can click on the Notification bar to allow the ActiveX control prompt.

This policy setting determines whether users will be prompted for non user-initiated file downloads. Regardless of this setting users will receive file download dialogs for user-initiated downloads. If you enable this setting users will receive a file download dialog for automatic download attempts. If you disable or do not configure this setting file downloads that are not user-initiated will be blocked and users will see the Notification bar instead of the file download dialog. Users can then click the Notification bar to allow the file download prompt.

This policy setting allows you to manage whether ActiveX controls and plug-ins can be run on pages from the specified zone. If you enable this policy setting controls and plug-ins can run without user intervention. If you selected Prompt in the drop-down box users are asked to choose whether to allow the controls or plug-in to run. If you disable this policy setting controls and plug-ins are prevented from running. If you do not configure this policy setting controls and plug-ins are prevented from running.

This policy setting allows you to manage the opening of windows and frames and access of applications across different domains. If you enable this policy setting users can open windows and frames from othe domains and access applications from other domains. If you select Prompt in the drop-down box users are queried whether to allow windows and frames to access applications from other domains. If you disable this policy setting users cannot open windows and frames to access applications from different domains. If you do not configure this policy setting users can open windows and frames from othe domains and access applications from other domains.

This policy setting allows you to manage permissions for Java applets. If you enable this policy setting you can choose options from the drop-down box. Custom to control permissions settings individually. Low Safety enables applets to perform all operations. Medium Safety enables applets to run in their sandbox (an area in memory outside of which the program cannot make calls) plus capabilities like scratch space (a safe and secure storage area on the client computer) and user-controlled file I/O. High Safety enables applets to run in their sandbox. Disable Java to prevent any applets from running. If you disable this policy setting Java applets cannot run. If you do not configure this policy setting Java applets are disabled.

This policy setting allows you to manage whether applications may be run and files may be downloaded from an IFRAME reference in the HTML of the pages in this zone. If you enable this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention. If you select Prompt in the drop-down box users are queried to choose whether to run applications and download files from IFRAMEs on the pages in this zone. If you disable this policy setting users are prevented from running applications and downloading files from IFRAMEs on the pages in this zone. If you do not configure this policy setting users can run applications and download files from IFRAMEs on the pages in this zone without user intervention.