Category: At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1

This policy setting allows you to manage dynamic binary and script behaviors: components that encapsulate specific functionality for HTML elements to which they were attached. If you enable this policy setting binary and script behaviors are available. If you select Administrator approved in the drop-down box only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available. If you disable this policy setting binary and script behaviors are not available unless applications have implemented a custom security manager. If you do not configure this policy setting only behaviors listed in the Admin-approved Behaviors under Binary Behaviors Security Restriction policy are available.

This policy setting allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a link are not blocked. If you enable this policy setting most unwanted pop-up windows are prevented from appearing. If you disable this policy setting pop-up windows are not prevented from appearing. If you do not configure this policy setting pop-up windows are not prevented from appearing.

This policy setting allows you to manage whether users can display nonsecure items and manage whether users receive a security information message to display pages containing both secure and nonsecure items. If you enable this policy setting and the drop-down box is set to Enable the user does not receive a security information message (This page contains both secure and nonsecure items. Do you want to display the nonsecure items?) and nonsecure content can be displayed. If the drop-down box is set to Prompt the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content. If you disable this policy setting users cannot receive the security information message and nonsecure content cannot be displayed. If you do not configure this policy setting the user will receive the security information message on the Web pages that contain both secure (https://) and nonsecure (http://) content.

This policy setting allows you to manage whether users may download signed ActiveX controls from a page in the zone. If you enable this policy users can download signed controls without user intervention. If you select Prompt in the drop-down box users are queried whether to download controls signed by publishers who aren’t trusted. Code signed by trusted publishers is silently downloaded. If you disable the policy setting signed controls cannot be downloaded. If you do not configure this policy setting users can download signed controls without user intervention.

This policy setting allows you to manage whether Internet Explorer can access data from another security zone using the Microsoft XML Parser (MSXML) or ActiveX Data Objects (ADO). If you enable this policy setting users can load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you select Prompt in the drop-down box users are queried to choose whether to allow a page to be loaded in the zone that uses MSXML or ADO to access data from another site in the zone. If you disable this policy setting users cannot load a page in the zone that uses MSXML or ADO to access data from another site in the zone. If you do not configure this policy setting users can load a page in the zone that uses MSXML or ADO to access data from another site in the zone.