Deploy Java Security level change via Server 2008 R2 Group Policy for IE10.

After installing the latest update for Java on our Xenapp 6.5 hosts (server 2008 R2), we are finding all Java sites now prompt users with the following error:

To resolve the issue, we change the Java security Level from High to Medium

The next time the user visits the Java site, they are prompted about if they want to run the application or not and the user can continue on and use the Java site.

I want to deploy this registry change to all users via group policy, however the setting I am assuming is the correct one is not changing anything

User Config\Windows Components/Internet Explorer/Internet Control Panel/Security Page/Internet Zone/Java Permissions - Enabled - Medium Safety

User Config\Windows Components/Internet Explorer/Internet Control Panel/Security Page/Intranet Zone/Java Permissions - Enabled - Medium Safety

I have also tried the same setting but under Computer config. Neither seem to work for me.
Who is Participating?
David Johnson, CD, MVPConnect With a Mentor OwnerCommented:
It has nothing to do with internet explorer and is a JAVA setting.  A fairly complete solution is located here  This page explains the deployment configuration needed .. you will want to change the very high parameter to medium.
HowzattAuthor Commented:
Thanks for that. It looks like a lot of work just to change that 1 setting. But I'll give it a go though.

Does the setting not deploy from the Java Permissions setting from GP on Svr 2008 R2 hosts anymore?
The GP setting does apply on our Server 2003 hosts.
David Johnson, CD, MVPOwnerCommented:
Microsoft discontinued updating the msjvm a long time ago
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

HowzattAuthor Commented:
I haven't had a chance to test the solution yet. However I do have 1 question. If a user changes the security level manually from High to medium, why would it revert back to High when the users log back in the next day? Wouldn't that suggest there is a setting in place that is making it revert back?
David Johnson, CD, MVPOwnerCommented:
It would imply that to me as well
Dirk KotteSECommented:
the Java security Settings would revert back because the Settings are not synchronized with the roaming user profile.
The registry settings are not the only one. There are different config files at the user and device-level also.
I try to centralize the settings some hours … without success.
HowzattAuthor Commented:
Worked perfect
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.