Link to home
Start Free TrialLog in
Avatar of BLACK THANOS
BLACK THANOSFlag for United States of America

asked on

How do I use Group Policy to Control Trusted Sites and https verification in internet explorer

In my organization, we have a domain level group policy that disallows adding trusted websites in internet explorer. Additionally," the requires server verification (https;) for all sites in this zone", is checked. We have a group in our organization that needs this setting to go away. How do I create a sub group policy  that take precedence over the domain level group policy. I will include some screen shots about what I am talking about as to give you guys a better idea of what I am trying to achieve.

I would appreciate a step by step if possible.
screen1.bmp
screen2.bmp
screen3.bmp
screen4.bmp
ASKER CERTIFIED SOLUTION
Avatar of Mike Kline
Mike Kline
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of BLACK THANOS
BLACK THANOS
Flag of United States of America image

ASKER

If I use security filtering, then you are saying that the group policy that I create, must be above the default domain policy>??
Avatar of BLACK THANOS
BLACK THANOS
Flag of United States of America image

ASKER

also, based upon the screen shots I attached, where are the gpo locations for them.
Avatar of BLACK THANOS
BLACK THANOS
Flag of United States of America image

ASKER

okay mkline71,

I am tentatively leaning towards giving all the points to you since you have come he closest to answering my questions (actually, you are the only one), but could you view my last two posts and help just a little bit more
Avatar of Mike Kline
Mike Kline
Flag of United States of America image
can't tell about the location from the screenshots.  I'll take some screenshots from my lab later today and post them for you.
Thanks
Mike
Avatar of BLACK THANOS
BLACK THANOS
Flag of United States of America image

ASKER

I am most interested in how to uncheck the "Require server verification (https) for all sites in this zone"check box
Avatar of Mike Kline
Mike Kline
Flag of United States of America image
When you set the new policy the precedence has to be higher.  In the screenshot I have an "original" trusted sites GPO.  Notice how the new one has been moved link order 2 so it will take precedence, in your case it will only apply to that group because you are going to filter.
I'm not sure if you import a new trusted sites GPO if that will uncheck that box.  I haven't tested that part out.
 

GPO-Processing.jpg
Avatar of BLACK THANOS
BLACK THANOS
Flag of United States of America image

ASKER

kudos mkline71