IE - Add Trusted Site through gROUP pOLICY

I'm trying to add a trusted site to all pc's using Group Policy.  I already have existing sites being pushed to workstations with this policy.  When I view the Settings tab for my existing policy I see the current entries listed as:
"Sites in this zone" under
User Config\Policies\Win. Settings\IE Maint.\Sec/Security Zones and Ratings\Security Zones and Privacy\Trusted Sites (Security Level:Custom)

I've made a copy of this policy for testing.  When I attempt to edit the copy I do not see my current trusted sites entries.

I think this is related to IE ESC importing the current settings for the logged on user.  Is there a way to edit the GPO directly without importing?

I am administering on a Server 2008 R2 box.
EncinitasAsked:
Who is Participating?
 
EncinitasAuthor Commented:
In the end, I configured the browser on the Windows7 w/ RSAT machine to have the settings that I wanted deployed via GPO.  Imported those into Group policy.  Not ideal for long term administration but did the trick.
0
 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
I would suggest to use Computer configuration for Trusted sites setting instead of user conf.

Step in the link below
http://www.makeuseof.com/tag/configure-trusted-sites-internet-explorer-group-policy/

Regards,
Prem
0
 
EncinitasAuthor Commented:
Thanks Prem.  That method does seem to add sites into client browser's more comprhensively.  With this method though users are not able to add there own trusted sites.  Do you know if there is a seperate setting that would allow users to still edit those?
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
Premkumar YogeswaranAnalyst II - System AdministratorCommented:
Hi Encinitas,

I that case, you need to go for user configuration in GPO, as you mentioned in your question.

You can use with out importing. Use do not customize ratings.

refer this link:
http://sgwindowsgroup.org/blogs/bernard/archive/2010/03/03/adding-trusted-sites-to-internet-explorer-using-gpo.aspx

Regards,
Prem
0
 
EncinitasAuthor Commented:
"You can use with out importing. Use do not customize ratings."

I'm not able to do this.  When "Do not customize security zones and privacy" is selected, the "Modify Settings" button is greyed out.

This is true with IE ESC both enabled and disabled.
0
 
EncinitasAuthor Commented:
I've also tried to administer GPO using a Win 7 box with RSAT installed.  Same limitation with greyed out Modify Settings button.
0
 
EncinitasAuthor Commented:
Offered solutions did not provide resolution.  End result was based on my own further investigation and experimentation.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.