?
Solved

Adding Intranet through Group Policy

Posted on 2008-10-08
4
Medium Priority
?
1,689 Views
Last Modified: 2012-08-13
We are trying to add local intranet sites through Group Policy.  When we set it up though it does not allow currect https:// sites to remain in the users' trusted sites and it will not allow the user to add any other sites to the https:// location.

What we would like to do is add local intranet sites to trusted sites for all of the employees machines through Group Policy while still allowing them to add their own sites as well.

Any ideas?
0
Comment
Question by:letotad
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 1

Accepted Solution

by:
ifmtech earned 500 total points
ID: 22670451
There are 2 ways that you can add trusted sites through Group Policy.  You can import the settings from your computer under User Configuration\Windows Settings\Internet Explorer Maintenance\Security\Security Zones and Content Ratings.
The other way to import the Sites is to go into Administrative Templates\Windows Components\Internet Control Panel\Security Page  and enter them in the policy "Site to Zone Assignment List".

I cannot recall which one, but one of these methods does not overwrite the existing sites.  Do you know which one you are using?
0
 

Author Comment

by:letotad
ID: 22670489
We are using the Administrative Templates\Windows Components\Internet Control Panel\Security Page  and enter them in the policy "Site to Zone Assignment List".  However, when we add the sites there and give them a rating of 2 it removes any sites that the user had added and does not allow any other sites to be added.  I will try the first option that you suggested and see if that resolves the issue.  I'll let you know.
0
 
LVL 1

Expert Comment

by:ifmtech
ID: 22670550
I checked our policy settings and we are using the first method and our users are able to add sites.  Just make sure that you remove the old settings in the Administrative Template ;).
0
 

Author Comment

by:letotad
ID: 22670944
That worked like a charm.  I can now add anything that I need to in all of the security settings and it will propigate down to the users machine while maintaining what they currently have set in their trusted site.  Thank you for the excellent solution.
0

Featured Post

Office 365 Training for Admins - 7 Day Trial

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question