toedrag
asked on
Group Policy - Windows XP Popup Blocker
Is it possible with windows 2003 server to use Group Policy in order to add a web server (our intranet server) to our windows xp SP2 client PCs list of site allowed to 'Pop Up". It would be a lot of work to go to each workstation and add the intranet server's IP address in, so I though there might be a better way. If anyone has any ideas or knows how to use group policy to do this, that would be great. Thanks
Sorry,
Just incase you dont have it installed:-
http://www.microsoft.com/downloads/details.aspx?familyid=7821c32f-da15-438d-8e48-45915cd2bc14&displaylang=en
Just incase you dont have it installed:-
http://www.microsoft.com/downloads/details.aspx?familyid=7821c32f-da15-438d-8e48-45915cd2bc14&displaylang=en
ASKER
This is probably something I should know, but I'm not sure what to with the ADM?
am adm files is a file that is used in Active directory for group policy settings.
You can import various ADM files that will add additional function for rules in Active directory group policy.
Example. I have scripted adm files to stop users using thier usb ports. Also i have imported the office adm files to remove pst files and force users to save to their H dirve etc.
If you see the location above i gave you see if you have this.
Create a new Linked Object called SP2 security settings
in there see if you can find the location of Computer Or User configuration / Admin templates / Internet Explorer /Security Features / Binary Behaviour security Restrictions
Do this from a windows XP machine with SP2 installed. install and run GPMC
You can import various ADM files that will add additional function for rules in Active directory group policy.
Example. I have scripted adm files to stop users using thier usb ports. Also i have imported the office adm files to remove pst files and force users to save to their H dirve etc.
If you see the location above i gave you see if you have this.
Create a new Linked Object called SP2 security settings
in there see if you can find the location of Computer Or User configuration / Admin templates / Internet Explorer /Security Features / Binary Behaviour security Restrictions
Do this from a windows XP machine with SP2 installed. install and run GPMC
ASKER
It saves as an excel spreadsheet, so I am not sure what to do with it after that.
also if I import this on my workstation that has sp2 installed, how do I get this to the server, so that I can make it domain wide?
also if I import this on my workstation that has sp2 installed, how do I get this to the server, so that I can make it domain wide?
The spread sheet shows all the new addons for sp2
When you create a new policy on a XP SP2 system it will load the default adm files from the %systemroot%\inf folder. These adm files (Administrative Templates) contain all the policies described in the spread sheet.
Once the policy has been created all the new settings will be uploaded, with the GP to the server (AD).
It is important to note that these updated templates are only available from the XP SP2 machine. There may be somewhere that has a download of the full SP2.ADM file, But i have not been able to find it yet.
Regards
Troops
When you create a new policy on a XP SP2 system it will load the default adm files from the %systemroot%\inf folder. These adm files (Administrative Templates) contain all the policies described in the spread sheet.
Once the policy has been created all the new settings will be uploaded, with the GP to the server (AD).
It is important to note that these updated templates are only available from the XP SP2 machine. There may be somewhere that has a download of the full SP2.ADM file, But i have not been able to find it yet.
Regards
Troops
ASKER
I don't know how to make the ADM file from the spreadsheet. It tried to export the setting I needed to a new file and then change the extension to .adm and then import, but that gave me an error. What do I need to do to import those new settings?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
You will need the SP2 ADM to make these changes
Computer Or User configuration / Admin templates / Internet Explorer /Security Features /
Binary Behaviour security Restrictions
Local Machine Zone Lockdown Security
There may be other places to add the intranet to but i have not tested to check. You will find that this location is where the security handling for popups can be changed,