Group Policy Management
body { font-size:68%;font-family:MS Shell Dlg; margin:0px,0px,0px,0px; border: 1px solid #666666; background:#F6F6F6; width:100%; word-break:normal; word-wrap:break-word; } .head { font-weight:bold; font-size:160%; font-family:MS Shell Dlg; width:100%; color:#6587DC; background:#E3EAF9; border:1px solid #5582D2; padding-left:8px; height:24px; } .path { margin-left: 10px; margin-top: 10px; margin-bottom:5px;width:100%; } .info { padding-left:10px;width:100%; } table { font-size:100%; width:100%; border:1px solid #999999; } th { border-bottom:1px solid #999999; text-align:left; padding-left:10px; height:24px; } td { background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; } .btn { width:100%; text-align:right; margin-top:16px; } .hdr { font-weight:bold; border:1px solid #999999; text-align:left; padding-top: 4px; padding-left:10px; height:24px; margin-bottom:-1px; width:100%; } .bdy { width:100%; height:182px; display:block; overflow:scroll; z-index:2; background:#FFFFFF; padding-left:10px; padding-bottom:10px; padding-top:10px; border:1px solid #999999; } button { width:6.9em; height:2.1em; font-size:100%; font-family:MS Shell Dlg; margin-right:15px; } @media print { .bdy { display:block; overflow:visible; } button { display:none; } .head { color:#000000; background:#FFFFFF; border:1px solid #000000; } }
Setting Path:
Explanation
No explanation is available for this setting.
Supported On:
Not available
TNBEA-PO-SEC-U-SFR-IE_Global_Security
Data collected on: 2-9-2025 09:28:50
General
Details
Domainemea.tpg.ads
OwnerEMEA\poincon.7-adm
Created26-6-2019 14:36:10
Modified19-10-2023 14:41:20
User Revisions1 (AD), 1 (SYSVOL)
Computer Revisions1 (AD), 1 (SYSVOL)
Unique ID{b0e7f19f-cd33-4a61-8752-27425aec5d98}
GPO StatusComputer settings disabled
Links
LocationEnforcedLink StatusPath
TNNoEnabledemea.tpg.ads/TN

This list only includes links in the domain of the GPO.
Security Filtering
The settings in this GPO can only apply to the following groups, users, and computers:
Name
EMEA\TNBEA-G-ORG-SFR-IE_Global_Security
Delegation
These groups and users have the specified permission for this GPO
NameAllowed PermissionsInherited
EMEA\Domain AdminsEdit settings, delete, modify securityNo
EMEA\poincon.7-admEdit settings, delete, modify securityNo
EMEA\TNBEA-G-ORG-SFR-IE_Global_SecurityRead (from Security Filtering)No
EMEA\TN-G-ORG-OU AdminsEdit settings, delete, modify securityNo
EMEA\TN-L-SEC-Delegation Modify Group Policy Settings AccessEdit settings, delete, modify securityNo
NT AUTHORITY\Authenticated UsersReadNo
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERSReadNo
NT AUTHORITY\SYSTEMEdit settings, delete, modify securityNo
ROOT\Enterprise AdminsEdit settings, delete, modify securityNo
Computer Configuration (Disabled)
Policies
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
System/Group Policy
PolicySettingComment
Configure Internet Explorer Maintenance policy processingEnabled
Allow processing across a slow network connectionEnabled
Do not apply during periodic background processingDisabled
Process even if the Group Policy objects have not changedEnabled
User Configuration (Enabled)
Policies
Windows Settings
Internet Explorer Maintenance
Browser User Interface/Customized Title Bar
Title Bar Text
Groupe Numericable - SFR
Security/Security Zones and Content Ratings
Security Zones and Privacy
These settings will not apply to users that log on to computers that have the Internet Explorer Enhanced Security Configuration (ESC) enabled. To create settings for users on computers that have ESC enabled, create a new GPO and edit that GPO on a computer where ESC is enabled.
Internet (Security Level: Medium-high)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsHigh safety
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesPrompt
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsDisable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptPrompt
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Local intranet (Security Level: Medium-low)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsMedium safety
Miscellaneous
Access data sources across domainsPrompt
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsEnable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesEnable
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsEnable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptEnable
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Sites
Require server verification (https:) for all sites in this zoneDisabled
Include all local (intranet) sites not listed in other zonesDisabled
Include all sites that bypass the proxy serverDisabled
Include all network paths (UNCs)Disabled
Sites in this zone
None
Trusted sites (Security Level: Medium)
.NET Framework-reliant components
Run components not signed with AuthenticodeEnable
Run components signed with AuthenticodeEnable
ActiveX controls and plug-ins
Download signed ActiveX controlsPrompt
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insEnable
Script ActiveX controls marked safe for scriptingEnable
Downloads
File downloadEnable
Font downloadEnable
Microsoft VM
Java permissionsHigh safety
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHEnable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesEnable
Installation of desktop itemsPrompt
Launching applications and unsafe filesPrompt
Launching programs and files in an IFRAMEPrompt
Navigate sub-frames across different domainsDisable
Software channel permissionsMedium safety
Submit nonencrypted form dataEnable
Userdata persistenceEnable
Scripting
Active scriptingEnable
Allow paste operations via scriptPrompt
Scripting of Java appletsEnable
User Authentication
LogonAutomatic logon only in Intranet zone
Sites
Require server verification (https:) for all sites in this zoneEnabled
Sites in this zone
None
Restricted sites (Security Level: High)
.NET Framework-reliant components
Run components not signed with AuthenticodeDisable
Run components signed with AuthenticodeDisable
ActiveX controls and plug-ins
Download signed ActiveX controlsDisable
Download unsigned ActiveX controlsDisable
Initialize and script ActiveX controls not marked as safeDisable
Run ActiveX controls and plug-insDisable
Script ActiveX controls marked safe for scriptingDisable
Downloads
File downloadDisable
Font downloadDisable
Microsoft VM
Java permissionsDisable Java
Miscellaneous
Access data sources across domainsDisable
Allow META REFRESHDisable
Display mixed contentPrompt
Don't prompt for client certificate selection when no certificates or only one certificate existsDisable
Drag and drop or copy and paste filesPrompt
Installation of desktop itemsDisable
Launching applications and unsafe filesDisable
Launching programs and files in an IFRAMEDisable
Navigate sub-frames across different domainsDisable
Software channel permissionsHigh safety
Submit nonencrypted form dataPrompt
Userdata persistenceDisable
Scripting
Active scriptingDisable
Allow paste operations via scriptDisable
Scripting of Java appletsDisable
User Authentication
LogonPrompt for user name and password
Sites
Sites in this zone
None
Privacy
Privacy LevelMedium
Web Sites
Always allowNone
Always blockNone
Administrative Templates
Policy definitions (ADMX files) retrieved from the central store.
Windows Components/Internet Explorer
PolicySettingComment
Disable external branding of Internet ExplorerEnabled
Disable Internet Connection wizardEnabled
Prevent bypassing SmartScreen Filter warningsDisabled
Prevent participation in the Customer Experience Improvement ProgramEnabled
Prevent running First Run wizardEnabled
Select your choiceGo directly to home page
PolicySettingComment
Set tab process growthDisabled
Specify use of ActiveX Installer Service for installation of ActiveX controlsEnabled
Turn off suggestions for all user-installed providersDisabled
Turn off the Security Settings Check featureEnabled
Windows Components/Internet Explorer/Browser menus
PolicySettingComment
Help menu: Remove 'For Netscape Users' menu optionEnabled
Help menu: Remove 'Send Feedback' menu optionEnabled
Windows Components/Internet Explorer/Internet Control Panel/Advanced Page
PolicySettingComment
Allow active content from CDs to run on user machinesEnabled
Check for server certificate revocationDisabled
Do not allow resetting Internet Explorer settingsEnabled
Do not save encrypted pages to diskDisabled
Turn off ClearTypeEnabled
Use HTTP 1.1Enabled
Windows Components/Internet Explorer/Internet Control Panel/Security Page
PolicySettingComment
Intranet Sites: Include all local (intranet) sites not listed in other zonesEnabled
Intranet Sites: Include all network paths (UNCs)Enabled
Intranet Sites: Include all sites that bypass the proxy serverEnabled
Locked-Down Local Machine Zone TemplateEnabled
Locked-Down Local Machine ZoneHigh
PolicySettingComment
Restricted Sites Zone TemplateEnabled
Restricted SitesHigh
PolicySettingComment
Site to Zone Assignment ListEnabled
Enter the zone assignments here. 
*.completel.fr1
*.connectassistance.fr2
*.dev.wsf.ads2
*.encara.local.ads2
*.groupvu.com1
*.ldcom.ad2
*.ldcom.ld2
*.local.ads2
*.mysfr.com2
*.ncnumericable.com2
*.neuf.fr2
*.neuf.ld2
*.neufcegetel.ld2
*.numericable.com2
*.numericable.fr2
*.numericable.int2
*.pack1
*.private.sfr.com2
*.prod1
*.prod.wsf.ads2
*.reseaux-et-canalisations.ineris.fr2
*.salesforce.com2
*.sfr.com1
*.sfr.fr2
*.sfrbusinessteam.fr2
*.sfr-sh.fr2
*.univers.cegetel.fr1
10.*.*.*2
10.38.253.173
164.*.*.*1
172.*.*.*1
aramis-bench.services.pack2
emploi.numericable.com2
espaceservices.123ce.net2
hermes.connecassistance.fr2
http://*.chronotrace.com2
http://*.encara.local.ads2
http://*.intranet.prod2
http://10.*.*.*2
http://10.1.18.86/2
http://10.17.223.262
http://apifera2
http://aris2
http://barra2
http://belcher2
http://bonnaire2
http://ccpv1.sfd.sfr-sh.fr2
http://croatan2
http://elysium2
http://ep.sap.intranet.prod/2
http://fimprt0012
http://gdr.intranet.prod 2
http://ha.iadvize.com/2
http://icar2
http://infomobiles.univers.cegetel.fr2
http://intra-aemweb2
http://intra-antivol2
http://intra-k22
http://intra-k2.phys.pack2
http://intra-monprofil-lacarte2
http://intra-pushrt2
http://intra-sesame2
http://intra-spider2
http://intra-vif2
http://intra-vpc2
http://itprod3
http://itprod.completel.fr3
http://link/2
http://localhost2
http://mib2
http://niceapp1/2
http://nr0u0018.cbv.it.ld2
http://nr0u07192
http://portailcompletel.intranet.nc.fr/2
http://rfdm2
http://safir2
http://safir_report2
http://safir-formation2
http://su101512
http://supportclient.neuf.ld2
http://vcweb/2
http://vcweb4/2
http://wig/2
http://www.reseaux-et-canalisations.ineris.fr2
http://www.sfrmultimedia.com2
http://www.sfrspeed.com2
http://yellow.prod.neufcegetel.ld:8080/2
https://*.encara.local.ads2
https://*.hubtotal.net2
https://*.mysfr.com2
https://*.mytem360.com2
https://10.*.*.*2
https://adrms.encara.local.ads1
https://applicollab.mysfr.com2
https://corporate.sfr.com2
https://intranetvs.prod.ld2
https://numericable.wacd.atosworldline.com2
https://numericable.wacd-sfr.atosworldline.com2
https://numericable.wacd-tlv.atosworldline.com2
https://services.certeurope.fr2
https://sigma.prod.ld:84432
https://www.3skey.com 2
https://www.lekangourou.net2
https://www.reseaux-et-canalisations.ineris.fr2
https://www.salesforce.com/services/Soap/2
igepv0*2
in.intelcia.com2
interviewer.private.sfr.com2
intranet.numericable.com2
intranetv42
ixinsight.telecom.pt 2
ixtools.telecom.pt2
ixtools-staging.telecom.pt2
mms://intranetvs.prod.ld2
mysfrv22
oauth.intelcia.com2
prod.ldcom.fr2
relationnel.sfrbusinessteam.fr2
safir.sfr.com2
sfr-altice.canalchat.fr2
starna.pack.private.sfr.com2
sw11132.phys.prod2
www.lekangourou.net2
yellow.prod.neufcegetel.ld2
globaltelko.sharepoint.com2
globaltelko-my.sharepoint.com2
https://device.login.microsoftonline.com1
microsoftazuread-sso.com2
device.microsoft.com2
https://autologon.microsoftazuread-sso.com1
https://aadg.windows.net.nsatc.net1
http://10.125.138.422
ingest-videosfrcom.pfd.sfr.net2
ingest-communication.pfd.sfr.net2
communication.altice.net2
*.altice.net2
web.microsoftstream.com2
meeting.sfr.com2
*.people-doc.com2
PolicySettingComment
Turn on certificate address mismatch warningEnabled
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Internet Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsPrompt
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerPrompt
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsPrompt
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow only approved domains to use ActiveX controls without promptEnabled
Only allow approved domains to use ActiveX controls without promptEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsDisable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentEnable
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Disable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsPrompt
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsDisable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingEnable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeDisable
PolicySettingComment
Java permissionsEnabled
Java permissionsHigh safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEPrompt
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon only in Intranet zone
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsMedium safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Turn on Cross-Site Scripting FilterEnabled
Turn on Cross-Site Scripting (XSS) FilterEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerEnable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneEnable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Intranet Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerEnable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsEnable
PolicySettingComment
Allow updates to status bar via scriptEnabled
Status bar updates via scriptEnable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentEnable
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsPrompt
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingEnable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safePrompt
PolicySettingComment
Java permissionsEnabled
Java permissionsLow safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneEnable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Locked-Down Local Machine Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingPrompt
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsAdministrator approved
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptPrompt
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow loading of XAML Browser ApplicationsEnabled
XAML browser applicationsEnable
PolicySettingComment
Allow loading of XAML filesEnabled
XAML FilesEnable
PolicySettingComment
Allow loading of XPS filesEnabled
XPS documentsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow scripting of Internet Explorer WebBrowser controlsEnabled
Internet Explorer web browser controlEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsDisable
PolicySettingComment
Allow scriptletsEnabled
ScriptletsDisable
PolicySettingComment
Allow updates to status bar via scriptEnabled
Status bar updates via scriptDisable
PolicySettingComment
Allow video and animation on a webpage that uses an older media playerEnabled
Allow video and animation on a Web page that uses a legacy media playerDisable
PolicySettingComment
Allow websites to open windows without status bar or Address barEnabled
Open windows without address or status barsDisable
PolicySettingComment
Allow websites to prompt for information by using scripted windowsEnabled
Prompt for information using scripted windowsDisable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsDisable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsDisable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Disable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsDisable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsDisable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingDisable
PolicySettingComment
Include local path when user is uploading files to a serverEnabled
Include local directory path when uploading files to a serverDisable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeDisable
PolicySettingComment
Java permissionsEnabled
Java permissionsDisable Java
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeDisable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeDisable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsDisable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Turn off .NET Framework SetupEnabled
.NET Framework SetupDisable
PolicySettingComment
Turn off first-run promptEnabled
First-Run Opt-InDisable
PolicySettingComment
Turn on Protected ModeEnabled
Protected ModeDisable
PolicySettingComment
Turn on SmartScreen Filter scanEnabled
Use SmartScreen FilterDisable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerDisable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Restricted Sites Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsDisable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerDisable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingDisable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsDisable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptDisable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesPrompt
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsDisable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsPrompt
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsDisable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHDisable
PolicySettingComment
Allow only approved domains to use ActiveX controls without promptEnabled
Only allow approved domains to use ActiveX controls without promptEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsDisable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsDisable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsDisable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentPrompt
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Disable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsDisable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsDisable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingDisable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeDisable
PolicySettingComment
Java permissionsEnabled
Java permissionsDisable Java
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEDisable
PolicySettingComment
Logon optionsEnabled
Logon optionsPrompt for user name and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsDisable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeDisable
PolicySettingComment
Run .NET Framework-reliant components signed with AuthenticodeEnabled
Run .NET Framework-reliant components signed with AuthenticodeDisable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsDisable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingDisable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsDisable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsHigh safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataPrompt
PolicySettingComment
Turn on Cross-Site Scripting FilterEnabled
Turn on Cross-Site Scripting (XSS) FilterEnable
PolicySettingComment
Use Pop-up BlockerEnabled
Use Pop-up BlockerEnable
PolicySettingComment
Userdata persistenceEnabled
Userdata persistenceDisable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneDisable
Windows Components/Internet Explorer/Internet Control Panel/Security Page/Trusted Sites Zone
PolicySettingComment
Access data sources across domainsEnabled
Access data sources across domainsEnable
PolicySettingComment
Allow active content over restricted protocols to access my computerEnabled
Allow active content over restricted protocols to access my computerEnable
PolicySettingComment
Allow active scriptingEnabled
Allow active scriptingEnable
PolicySettingComment
Allow binary and script behaviorsEnabled
Allow Binary and Script BehaviorsEnable
PolicySettingComment
Allow cut, copy or paste operations from the clipboard via scriptEnabled
Allow paste operations via scriptEnable
PolicySettingComment
Allow drag and drop or copy and paste filesEnabled
Allow drag and drop or copy and paste filesEnable
PolicySettingComment
Allow file downloadsEnabled
Allow file downloadsEnable
PolicySettingComment
Allow font downloadsEnabled
Allow font downloadsEnable
PolicySettingComment
Allow installation of desktop itemsEnabled
Allow installation of desktop itemsEnable
PolicySettingComment
Allow loading of XAML Browser ApplicationsEnabled
XAML browser applicationsEnable
PolicySettingComment
Allow loading of XAML filesEnabled
XAML FilesEnable
PolicySettingComment
Allow loading of XPS filesEnabled
XPS documentsEnable
PolicySettingComment
Allow META REFRESHEnabled
Allow META REFRESHEnable
PolicySettingComment
Allow only approved domains to use ActiveX controls without promptDisabled
Allow only approved domains to use the TDC ActiveX controlEnabled
Only allow approved domains to use the TDC ActiveX controlEnable
PolicySettingComment
Allow scripting of Internet Explorer WebBrowser controlsEnabled
Internet Explorer web browser controlEnable
PolicySettingComment
Allow script-initiated windows without size or position constraintsEnabled
Allow script-initiated windows without size or position constraintsEnable
PolicySettingComment
Allow scriptletsEnabled
ScriptletsEnable
PolicySettingComment
Allow updates to status bar via scriptEnabled
Status bar updates via scriptEnable
PolicySettingComment
Allow video and animation on a webpage that uses an older media playerEnabled
Allow video and animation on a Web page that uses a legacy media playerEnable
PolicySettingComment
Allow websites to open windows without status bar or Address barEnabled
Open windows without address or status barsEnable
PolicySettingComment
Allow websites to prompt for information by using scripted windowsEnabled
Prompt for information using scripted windowsEnable
PolicySettingComment
Automatic prompting for ActiveX controlsEnabled
Automatic prompting for ActiveX controlsEnable
PolicySettingComment
Automatic prompting for file downloadsEnabled
Automatic prompting for file downloadsEnable
PolicySettingComment
Display mixed contentEnabled
Display mixed contentEnable
PolicySettingComment
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enabled
Do not prompt for client certificate selection when no certificates or only one certificate exists.Enable
PolicySettingComment
Don't run antimalware programs against ActiveX controlsEnabled
Don't run antimalware programs against ActiveX controlsDisable
PolicySettingComment
Download signed ActiveX controlsEnabled
Download signed ActiveX controlsEnable
PolicySettingComment
Download unsigned ActiveX controlsEnabled
Download unsigned ActiveX controlsEnable
PolicySettingComment
Enable dragging of content from different domains across windowsEnabled
Enable dragging of content from different domains across windowsEnable
PolicySettingComment
Enable dragging of content from different domains within a windowEnabled
Enable dragging of content from different domains within a windowEnable
PolicySettingComment
Enable MIME SniffingEnabled
Enable MIME SniffingDisable
PolicySettingComment
Initialize and script ActiveX controls not marked as safeEnabled
Initialize and script ActiveX controls not marked as safeEnable
PolicySettingComment
Java permissionsEnabled
Java permissionsLow safety
PolicySettingComment
Launching applications and files in an IFRAMEEnabled
Launching applications and files in an IFRAMEEnable
PolicySettingComment
Logon optionsEnabled
Logon optionsAutomatic logon with current username and password
PolicySettingComment
Navigate windows and frames across different domainsEnabled
Navigate windows and frames across different domainsEnable
PolicySettingComment
Run .NET Framework-reliant components not signed with AuthenticodeEnabled
Run .NET Framework-reliant components not signed with AuthenticodeEnable
PolicySettingComment
Run ActiveX controls and pluginsEnabled
Run ActiveX controls and pluginsEnable
PolicySettingComment
Script ActiveX controls marked safe for scriptingEnabled
Script ActiveX controls marked safe for scriptingEnable
PolicySettingComment
Scripting of Java appletsEnabled
Scripting of Java appletsEnable
PolicySettingComment
Show security warning for potentially unsafe filesEnabled
Launching programs and unsafe filesEnable
PolicySettingComment
Software channel permissionsEnabled
Software channel permissionsLow safety
PolicySettingComment
Submit non-encrypted form dataEnabled
Submit non-encrypted form dataEnable
PolicySettingComment
Turn on Cross-Site Scripting FilterEnabled
Turn on Cross-Site Scripting (XSS) FilterDisable
PolicySettingComment
Turn on Protected ModeDisabled
Turn on SmartScreen Filter scanDisabled
Use Pop-up BlockerDisabled
Userdata persistenceEnabled
Userdata persistenceEnable
PolicySettingComment
Web sites in less privileged Web content zones can navigate into this zoneEnabled
Web sites in less privileged Web content zones can navigate into this zoneEnable
Windows Components/Internet Explorer/Internet Settings/Advanced settings/Internet Connection Wizard Settings
PolicySettingComment
Start the Internet Connection Wizard automaticallyDisabled
Windows Components/Internet Explorer/Privacy
PolicySettingComment
Prevent the computer from loading toolbars and Browser Helper Objects when InPrivate Browsing startsDisabled
Turn off collection of InPrivate Filtering dataDisabled
Turn off InPrivate BrowsingDisabled
Windows Components/Internet Explorer/Security Features/AJAX
PolicySettingComment
Allow native XMLHTTP supportEnabled
Windows Components/Internet Explorer/Security Features/Binary Behavior Security Restriction
PolicySettingComment
Internet Explorer ProcessesDisabled
Windows Components/Internet Explorer/Security Features/Local Machine Zone Lockdown Security
PolicySettingComment
All ProcessesDisabled
Internet Explorer ProcessesDisabled
Windows Components/Internet Explorer/Security Features/MK Protocol Security Restriction
PolicySettingComment
Internet Explorer ProcessesDisabled
Windows Components/Internet Explorer/Security Features/Network Protocol Lockdown
PolicySettingComment
Internet Explorer ProcessesEnabled
Windows Components/Internet Explorer/Security Features/Network Protocol Lockdown/Restricted Protocols Per Security Zone
PolicySettingComment
Intranet Zone Restricted ProtocolsDisabled
Local Machine Zone Restricted ProtocolsDisabled
Trusted Sites Zone Restricted ProtocolsDisabled
Windows Components/RSS Feeds
PolicySettingComment
Turn on Basic feed authentication over HTTPEnabled
Extra Registry Settings
Display names for some settings cannot be found. You might be able to resolve this issue by updating the .ADM files used by Group Policy Management.

SettingState
Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN\iexplore.exe0