RE: [ActiveDir] Blocking IE7

[Laura A. Robinson]

You might want to re-read the page that you linked to below, since it answers all of your questions.   1. That toolkit is *not* designed to block WSUS deployments. With WSUS, you would simply not approve the update. 2. That toolkit *is* designed to block both the executable and automatic update installations.   Laura From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lucas, Bryan Sent: Thursday, October 19, 2006 12:55 PM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Blocking IE7 I see how to block IE7 from deploying through WSUS, but what I don’t see is a way to block a user from manually installing it.   (http://www.microsoft.com/downloads/details.aspx?FamilyID=4516A6F7-5D44-482B-9DBD-869B4A90159C&displaylang=en)   Our users are 90% XP SP2 and managed through GP.  What about building a restricted software GPO that has a hash of iesetup7.exe (if that even exists)?   I want to restrict them from getting it through microsoftupdate.com as well.   Bryan Lucas Server Administrator Texas Christian University