RE: [ActiveDir] Working on policy for IE

[John Shukovsky Jr]

Title: Message

I have had this issue as well and is a known issue with MS. The work around was to set the policy on the pdc itself, using the gpmc from an xp machine did not work. Only difference was I am using 2000 domain. You will have to set the security zone settings on your pdc then go in and import those settings to the appropriate gpo from the pdc itself. I was reluctant of configuring my browser on my pdc at first but was only solution that worked.   HTH   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC Sent: Thursday, September 29, 2005 8:07 AM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Working on policy for IE     I am Defining the policy on an XP machine.  The Domain Controllers are 2003.    The Workstations I am trying to affect are XP.     From: Katrin Wilhelm [mailto:[EMAIL PROTECTED] On Behalf Of Katrin Wilhelm Sent: Wednesday, September 28, 2005 6:22 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Working on policy for IE Hi Jeff,   what server is it on which you are defining the policy? server 2000 or 2003?   Cheers,   Kat   From: [EMAIL PROTECTED] on behalf of Cothern Jeff D. Team EITC Sent: Thu 29/09/2005 3:37 AM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Working on policy for IE I verified in the policy that the box is NOT checked. Perhaps I am not doing something correctly.  So I will go thru the steps I did.   Created a new policy.  Went under IE maintenance.  THen Security.  Double clicked on Security Zones and Content Rating. Checked import current settings then clicked on modify settings.  Once in modify settings I went to Trusted Sites \ settings and unchecked the Require Server verification.  I then entered *.domain.com and clicked Add.  Then hit OK out to the policy. Closed that and had it apply to the machine.   Logged into machine.  GPupdate \force then rebooted machine.  Logged in as standard user.  No change.     Jeff      From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of CHIANESE, DAVID Sent: Wednesday, September 28, 2005 1:21 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Working on policy for IE One thing I noticed in trusted sites GPO is that you should almost always uncheck https sites only, otherwise any non https site added in there invalidates the policy and it never applies, even though gpresult says it does apply.  I hope this helps.  It does work fine for us.      Regards, David Chianese RHCE, MCSE+I, CNE, CNA    -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC Sent: Wednesday, September 28, 2005 1:12 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Working on policy for IE At a lose here.. I setup a policy that added the trusted sites but it doesnt appear this is doing anything as the trusted sites are not being added.  The IEAK communite group is of no help.  Anyone had any success modifying the trusted sites thru policy?   Jeff     From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Cothern Jeff D. Team EITC Sent: Tuesday, September 27, 2005 9:31 AM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Working on policy for IE Gentlemen       I need to come up with policy for IE I believe.  We have a Sharepoint portal running.  When initially the user goes their on a new drive the Digital Dashboard tries to install.  Currently with the security level that is set it wont install unless an admin logs into the machine and goes to the website.  My question is.  If I set the Portal web page as a trusted site which it is as its internal web site.  Would the Digital Dashboard install correctly with no further action needed.   Trusted sites security was not changed from its default settings.   Jeff   ;Confidentiality: The contents contain privileged and/or confidential information intended for the named recipient of this email. CVGT does not warrant that the contents of any electronically transmitted information will remain confidential. If the reader of this email is not the intended recipient you are hereby notified that any use, reproduction, disclosure or distribution of the information contained in the email is prohibited. If you receive this email in error, please reply to us immediately and delete the document.   Viruses:   It is the recipient/client's duties to virus scan and otherwise test the information provided before loading onto any computer system. No warranty is made that this material is free from computer virus or any other defect or error. Any loss/damage incurred by using this material is not the sender's responsibility. CVGT’s entire liability will be limited to resupplying the material.   Please contact us at www.cvgt.com.au <http://www.cvgt.com.au> for further information regarding this disclaimer.

This E-mail, including any attachments, may be intended solely for the personal 
and confidential use of the sender and recipient(s) named above. This message 
may include advisory, consultative and/or deliberative material and, as such, 
would be privileged and confidential and not a public document. Any Information 
in this e-mail identifying a client of the Department of Human Services is 
confidential. If you have received this e-mail in error, you must not review, 
transmit, convert to hard copy, copy, use or disseminate this e-mail or any 
attachments to it and you must delete this message. You are requested to notify 
the sender by return e-mail.