Group Policy Settings for Internet Explorer Security applying, but not taking affect

I have a GP setup to import my servers IE security settings and apply them to users. When I use gpresult, I see that it indicates that the policy is applying and should be taking affect, but the Explorer settings are not actually taking affect - What I am trying to do is prevent users from downloading.
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

How long ago did you add that?  Did you log users off, then log back in to update the gp on their machines?
Are there any other GPOs that could be conflicting with this one and overwriting the settings? Windows 2k or 2k3 DCs?
Hi ainselyb there is probably a good logical reason or some small error why these GP are not taking effect, this may not even be related but I thought you might like to know.. and  after reading this you may wonder.
extract:.There is more below on the link.
Circumventing Group Policy as a Limited User
That means that users can alter the code or data of their own processes, including Explorer and Internet Explorer, and by manipulating the code or data related to Group Policy enforcement they can bypass Group Policy settings.

Software Restriction Policies (SRP) are another example of Group Policy settings that can be subverted by limited users if you allow them to run an arbitrary executable – in other words, if you don’t apply SRP correctly by using it to define the executables users can run (whitelisting) instead of simply singling out executables that you don’t want them to run (blacklisting). When a user launches a process it’s the parent process that checks SRP to see if the execution of the child should be allowed or blocked, allowing the owner of the parent process to manipulate the process into bypassing or negating SRP processing.

how are you going to prevent users from downloading???  Please explain, I would like to know this one.
Hi ainselyb any success yet,Just a note to have all the group polocies active every has to reboot, including the server.
In group policy edit or gpedit.msc  expand computer Configuration/User configuration/administrative templates/expand network/then click on the network conections. Look on the right side you shoudl a large list of options.

I came across this recently and thought of your situation,
This reg edit is for changing how many downloads allowed for internet explorer6, so I thought maybe you could use it to modify it to zero. It maybe worth looking at.
Please back up the regestry keys before changing them that way you can restore them easy.

Use Registry Editor at your own risk.
To comply with current Internet standards Internet Explorer limits the number of simultaneous downloads to two downloads, plus one queued download. This configuration is a function of the browser. However, as connection speeds increase, and the number of total connections that are allowed to Internet servers increase, the two-connection limit may be restrictive.
To increase the number of simultaneous connections that are allowed to 10, <<< you may wish to change this to (o) see if it works.

follow these steps:1. Start Registry Editor (Regedt32.exe).  from run type in regedit press enter.
2. Locate the following key in the registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings  
3. On the Edit menu, point to New click DWORD Value, and then add the following registry values:
Value name: MaxConnectionsPer1_0Server
Value data: 10<<<<<------------------------------------Put it to zero.
Base: Decimal

Value Name: MaxConnectionsPerServer
Value data: 10<<<<<<<<<<<<<------------------------Zero
Base: Decimal
4. Quit Registry Editor.
This procedure is for informational purposes only. Changing the maximum number of connections beyond two is a violation of Internet standards; Microsoft does not recommend this procedure for use outside closed networks.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Operating Systems

From novice to tech pro — start learning today.