[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 781
  • Last Modified:

IE - Add Trusted Site through gROUP pOLICY

I'm trying to add a trusted site to all pc's using Group Policy.  I already have existing sites being pushed to workstations with this policy.  When I view the Settings tab for my existing policy I see the current entries listed as:
"Sites in this zone" under
User Config\Policies\Win. Settings\IE Maint.\Sec/Security Zones and Ratings\Security Zones and Privacy\Trusted Sites (Security Level:Custom)

I've made a copy of this policy for testing.  When I attempt to edit the copy I do not see my current trusted sites entries.

I think this is related to IE ESC importing the current settings for the logged on user.  Is there a way to edit the GPO directly without importing?

I am administering on a Server 2008 R2 box.
0
Encinitas
Asked:
Encinitas
  • 5
  • 2
1 Solution
 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
I would suggest to use Computer configuration for Trusted sites setting instead of user conf.

Step in the link below
http://www.makeuseof.com/tag/configure-trusted-sites-internet-explorer-group-policy/

Regards,
Prem
0
 
EncinitasAuthor Commented:
Thanks Prem.  That method does seem to add sites into client browser's more comprhensively.  With this method though users are not able to add there own trusted sites.  Do you know if there is a seperate setting that would allow users to still edit those?
0
 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
Hi Encinitas,

I that case, you need to go for user configuration in GPO, as you mentioned in your question.

You can use with out importing. Use do not customize ratings.

refer this link:
http://sgwindowsgroup.org/blogs/bernard/archive/2010/03/03/adding-trusted-sites-to-internet-explorer-using-gpo.aspx

Regards,
Prem
0
Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

 
EncinitasAuthor Commented:
"You can use with out importing. Use do not customize ratings."

I'm not able to do this.  When "Do not customize security zones and privacy" is selected, the "Modify Settings" button is greyed out.

This is true with IE ESC both enabled and disabled.
0
 
EncinitasAuthor Commented:
I've also tried to administer GPO using a Win 7 box with RSAT installed.  Same limitation with greyed out Modify Settings button.
0
 
EncinitasAuthor Commented:
In the end, I configured the browser on the Windows7 w/ RSAT machine to have the settings that I wanted deployed via GPO.  Imported those into Group policy.  Not ideal for long term administration but did the trick.
0
 
EncinitasAuthor Commented:
Offered solutions did not provide resolution.  End result was based on my own further investigation and experimentation.
0

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

  • 5
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now