Keep MS autoupdates even when IE browsing disabled

Posted on 2006-05-12
Medium Priority
Last Modified: 2012-05-05
I need to disable internet browsing on several PCs on the network, but when I do, it also stops doing autoupdates from microsoft's web site.  How can I keep updating without allowing users to browse internet?
Question by:maharlika

Accepted Solution

disconnection earned 300 total points
ID: 16670783
If you add a fake proxy of and disable users from changing the proxy, it will not let them get to any websites yet still allow Microsoft updates.

If your one a domain controller you can apply a group policy to add these settings to the client PCs:

On your domain controller, right-click the organizational unit that contains your domain users, and select Properties.
On the Group Policy tab, click Edit.
Expand User Configuration to set restrictions on a per-user basis.
Expand Windows Settings, and expand Internet Explorer Maintenance.
Select Connection, and double-click Proxy Settings.
Select the Enable Proxy Settings check box, add to the HTTP entry, and click OK.
Expand Administrative Templates, and expand Windows Components.
Select Internet Explorer, and double-click Disable Changing Proxy Settings.
Select Enabled, and click OK.

Assisted Solution

kevinf40 earned 300 total points
ID: 16671332
Hi maharlika

See this Microsoft article for details on configuring automatic updates:


About two thirds of the way down the page are details for setting the proxy server via WPAD and the Proxycfg.exe tool - this tool just updates a registry key so this change would be easy to roll out via a logon script or group policy.

Using one of the above methods will ensure your automatic updates work even when you disable IE from browsing.



Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you put your credit card number into a website for an online transaction, surely you know to look for signs of a secure website such as the padlock icon in the web browser or the green address bar.  This is one way to protect yourself from oth…
Phishing emails are a popular malware delivery vehicle for attack.  While there are many ways for an attacker to increase the chances of success for their phishing emails, one of the most effective methods involves spoofing the message to appear to …
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

621 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question