RE: [ActiveDir] Working on policy for IE

[Cothern Jeff D. Team EITC]

Title: Message

 

I am Defining the policy on an XP machine.  The Domain Controllers are 2003. 

 

The Workstations I am trying to affect are XP.

 

---

From: Katrin Wilhelm [mailto:[EMAIL PROTECTED] On Behalf Of Katrin Wilhelm
Sent: Wednesday, September 28, 2005 6:22 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE

Hi Jeff,

 

what server is it on which you are defining the policy? server 2000 or 2003?

 

Cheers,

 

Kat

---

From: [EMAIL PROTECTED] on behalf of Cothern Jeff D. Team EITC
Sent: Thu 29/09/2005 3:37 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE

I verified in the policy that the box is NOT checked. Perhaps I am not doing something correctly.  So I will go thru the steps I did.

 

Created a new policy.  Went under IE maintenance.  THen Security.  Double clicked on Security Zones and Content Rating.

Checked import current settings then clicked on modify settings.  Once in modify settings I went to Trusted Sites \ settings and unchecked the Require Server verification.  I then entered *.domain.com and clicked Add.  Then hit OK out to the policy. Closed that and had it apply to the machine.

 

Logged into machine.  GPupdate \force then rebooted machine.  Logged in as standard user.  No change.  

 

Jeff

  

---

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CHIANESE, DAVID
Sent: Wednesday, September 28, 2005 1:21 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE

One thing I noticed in trusted sites GPO is that you should almost always uncheck https sites only, otherwise any non https site added in there invalidates the policy and it never applies, even though gpresult says it does apply.  I hope this helps.  It does work fine for us. 

 

 

Regards,

David Chianese RHCE, MCSE+I, CNE, CNA

 

 -----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC
Sent: Wednesday, September 28, 2005 1:12 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Working on policy for IE

At a lose here.. I setup a policy that added the trusted sites but it doesnt appear this is doing anything as the trusted sites are not being added.  The IEAK communite group is of no help.  Anyone had any success modifying the trusted sites thru policy?

 

Jeff

 

---

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC
Sent: Tuesday, September 27, 2005 9:31 AM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] Working on policy for IE

Gentlemen

 

    I need to come up with policy for IE I believe.  We have a Sharepoint portal running.  When initially the user goes their on a new drive the Digital Dashboard tries to install.  Currently with the security level that is set it wont install unless an admin logs into the machine and goes to the website.  My question is.  If I set the Portal web page as a trusted site which it is as its internal web site.  Would the Digital Dashboard install correctly with no further action needed.   Trusted sites security was not changed from its default settings.

 

Jeff

 

;Confidentiality:

The contents contain privileged and/or confidential information intended for the named recipient of this email.

CVGT does not warrant that the contents of any electronically transmitted information will remain confidential.

If the reader of this email is not the intended recipient you are hereby notified that any use, reproduction, disclosure or distribution of the information contained in the email is prohibited.

If you receive this email in error, please reply to us immediately and delete the document.

Viruses:

It is the recipient/client's duties to virus scan and otherwise test the information provided before loading onto any computer system.

No warranty is made that this material is free from computer virus or any other defect or error.

Any loss/damage incurred by using this material is not the sender's responsibility. CVGT’s entire liability will be limited to resupplying the material.

Please contact us at www.cvgt.com.au <http://www.cvgt.com.au> for further information regarding this disclaimer.