Re: [ActiveDir] Working on policy for IE

[SysPro Support]

Jeff,

You could try looking at BrndLog.TXT under C:\Documents and 
Settings\xxxxxx\Application Data\Microsoft\Internet Explorer   (xxxxx is the 
username)

It gives a detailed log of the IE processing and might give you a hint of 
what is happening.

Alan Cuthbertson


Policy Management Software:-
http://www.sysprosoft.com/index.php?ref=activedir&f=pol_summary.shtml
ADM Template Editor:-
http://www.sysprosoft.com/index.php?ref=activedir&f=adm_summary.shtml
Policy Log Reporter(Free)
http://www.sysprosoft.com/index.php?ref=activedir&f=policyreporter.shtml




----- Original Message ----- 
From: <[EMAIL PROTECTED]>
To: <ActiveDir@mail.activedir.org>
Sent: Thursday, September 29, 2005 5:07 AM
Subject: RE: [ActiveDir] Working on policy for IE


Hi Jeff...

Might I suggest putting the sites you wish to be in the trusted sites on
your Internet Options on your administrative machine, then open the 
policy,
and tell it to import.  It works fine here doing it that way.

John





            "Cothern Jeff D.
            Team EITC"
            <[EMAIL PROTECTED]                                          To
            l>                        <ActiveDir@mail.activedir.org>
            Sent by:                                                   cc
            [EMAIL PROTECTED]
            ail.activedir.org                                     Subject
                                      RE: [ActiveDir] Working on policy
                                      for IE
            09/28/2005 01:56
            PM


            Please respond to
            [EMAIL PROTECTED]
               tivedir.org






Yes it says it is applied but when I go in and look it says no sites when 
I
am looking under trusted sites.


From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of CHIANESE, DAVID
Sent: Wednesday, September 28, 2005 2:06 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE

What does gpresult say?  Is it applying the policy?




David Chianese





-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D.
Team EITC
Sent: Wednesday, September 28, 2005 1:37 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE



     I verified in the policy that the box is NOT checked. Perhaps I am
     not doing something correctly.  So I will go thru the steps I did.

     Created a new policy.  Went under IE maintenance.  THen Security.
     Double clicked on Security Zones and Content Rating.
     Checked import current settings then clicked on modify settings.
     Once in modify settings I went to Trusted Sites \ settings and
     unchecked the Require Server verification.  I then entered
     *.domain.com and clicked Add.  Then hit OK out to the policy. Closed
     that and had it apply to the machine.

     Logged into machine.  GPupdate \force then rebooted machine.  Logged
     in as standard user.  No change.

     Jeff


     From: [EMAIL PROTECTED]
     [mailto:[EMAIL PROTECTED] On Behalf Of CHIANESE,
     DAVID
     Sent: Wednesday, September 28, 2005 1:21 PM
     To: ActiveDir@mail.activedir.org
     Subject: RE: [ActiveDir] Working on policy for IE

     One thing I noticed in trusted sites GPO is that you should almost
     always uncheck https sites only, otherwise any non https site added
     in there invalidates the policy and it never applies, even though
     gpresult says it does apply.  I hope this helps.  It does work fine
     for us.


     Regards,


     David Chianese RHCE, MCSE+I, CNE, CNA





      -----Original Message-----
     From: [EMAIL PROTECTED]
     [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff
     D. Team EITC
     Sent: Wednesday, September 28, 2005 1:12 PM
     To: ActiveDir@mail.activedir.org
     Subject: RE: [ActiveDir] Working on policy for IE



           At a lose here.. I setup a policy that added the trusted sites
           but it doesnt appear this is doing anything as the trusted
           sites are not being added.  The IEAK communite group is of no
           help.  Anyone had any success modifying the trusted sites thru
           policy?

           Jeff


           From: [EMAIL PROTECTED]
           [mailto:[EMAIL PROTECTED] On Behalf Of
           Cothern Jeff D. Team EITC
           Sent: Tuesday, September 27, 2005 9:31 AM
           To: ActiveDir@mail.activedir.org
           Subject: [ActiveDir] Working on policy for IE

           Gentlemen

               I need to come up with policy for IE I believe.  We have a
           Sharepoint portal running.  When initially the user goes their
           on a new drive the Digital Dashboard tries to install.
           Currently with the security level that is set it wont install
           unless an admin logs into the machine and goes to the website.
           My question is.  If I set the Portal web page as a trusted site
           which it is as its internal web site.  Would the Digital
           Dashboard install correctly with no further action needed.
           Trusted sites security was not changed from its default
           settings.

           Jeff


List info   : http://www.activedir.org/List.aspx
List FAQ    : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/



List info   : http://www.activedir.org/List.aspx
List FAQ    : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/