Solved

Add a local path to IE Trusted sites

Posted on 2004-04-26
6
998 Views
Last Modified: 2012-05-04
I have a local xml /xsl webpage, which saves data to a backend system via an ActiveX element. The problem is that I always get the microsoft ActiveX security warning despite the page being on the local file system. Normally I would call the file with the path file:///C:/Programme/Mobile/zXML/XMLOutput.xml. However, if I try to add this path to the local intranet security settings (sites), IE won't allow me. Instead it want's me to correct the path to
file:\\localhost\Programme\Mobile\zXML\XMLOutput.xml (127.0.0.1)
but when I try to open this path in IE, it doesn't find it.

I have installed a certificate and signed the code but this hasn't made any difference.

Can anyone tell me where I'm going wrong??
0
Comment
Question by:jcamaorgan
  • 3
6 Comments
 
LVL 27

Expert Comment

by:Asta Cu
ID: 10919622
I'm swamped and at work but hope this will get you started.  Is WindowsUpdate c8urrent for all Microsoft products in use here?
http://www.microsoft.com/windows/ie/using/howto/security/settings.asp
http://www.microsoft.com/windows/ie/using/howto/security/setup.asp
http://search.microsoft.com/search/results.aspx?qu=intranet+xml+%2fxsl+&View=msdn&st=b&c=0&s=1&swc=0
Perhaps the HOSTS file is a solution if normal processes fail; perhaps a redirect from there or adding approved links will help.
http://www.accs-net.com/hosts/what_is_hosts.html
":0) Asta
0
 

Author Comment

by:jcamaorgan
ID: 10927134
This doesn't really help, but thanks anyway. What I've since discovered is that there is another 'hidden' security zone called 'Local Machine'. There it is possible in the registry to reset the URL Action URLACTION_ACTIVEX_OVERRIDE_OBJECT_SAFETY from URLPOLICY_QUERY to  URLPOLICY_ALLOW.

Details on the Security Zones are at:
http://msdn.microsoft.com/library/default.asp?url=/workshop/security/szone/overview/templates.asp

More info on change the registry settings are under:
http://support.microsoft.com/default.aspx?scid=833633

0
 
LVL 27

Expert Comment

by:Asta Cu
ID: 10929080
If you feel I didn't help you, ask Community Support for a PAQ and Refund, since you posted the solution you feel helped.  This is done via a Zero Point question in the Community Support topic area.
Happy you found what you needed, and sorry my help didn't do it for you.
Asta
0
 
LVL 27

Expert Comment

by:Asta Cu
ID: 10929194
I do hope you read all the cautions, etc.

This topic provides information about security considerations related to the URL security zones application programming interface (API). This topic doesn't provide all you need to know about security issues—instead, use it as a starting point and reference for this technology area.
Using the Default Implementation
Security Alerts
Related Topics
Using the Default Implementation and more considerations here:  Security Considerations: URL Security Zones API ... Security Alerts
The following table lists features that, if used incorrectly, can compromise the security of your applications (only a "few" concerns)
http://msdn.microsoft.com/library/default.asp?url=/workshop/security/szone/overview/templates.asp
Off to work, best wishes.
Asta

0
 

Accepted Solution

by:
CetusMOD earned 0 total points
ID: 11706292
PAQed, with points refunded (500)

CetusMOD
Community Support Moderator
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I annotated my article on ransomware somewhat extensively, but I keep adding new references and wanted to put a link to the reference library.  Despite all the reference tools I have on hand, it was not easy to find a way to do this easily. I finall…
SSL stands for “Secure Sockets Layer” and an SSL certificate is a critical component to keeping your website safe, secured, and compliant. Any ecommerce website must have an SSL certificate to ensure the safe handling of sensitive information like…
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question