Group Policy on Window 2008 / 2012

Posted on 2014-07-18
Medium Priority
Last Modified: 2014-07-23
Where can I setup the two IE setting in my Group ? Tks
Question by:AXISHK
  • 2

Accepted Solution

Mitchell Milligan earned 2000 total points
ID: 40205837
Hello, the location in Group Policy for adding trusted sites is: Computer Configuration -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page -> Site to Zone Assignment List.
For more details on this look here: http://www.makeuseof.com/tag/configure-trusted-sites-internet-explorer-group-policy/

For the setting to use current username and password:
Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Internet Zone\

 This policy setting Allows you to manage settings for logon options.

 If you enable this policy setting, you can choose from the following  logon options.

 Anonymous logon to disable HTTP authentication and use the guest account only for the Common Internet File System (CIFS) protocol.

 Prompt for user name and  password to query users for user IDs  and passwords. After a user is queried, these values can be used silently for the remainder of the session.

Automatic  logon only in Intranet zone to query users for user IDs  and passwords in other zones. After a user is queried, these values can be used silently for the remainder of the session.

Automatic  logon with  current user name and  password to attempt logon using Windows NT Challenge Response (also known as NTLM authentication). If Windows NT Challenge Response is supported by the server, the logon uses the user´s network user name and  password for logon. If Windows NT Challenge Response is not supported by the server, the user is queried to provide the user name and  password.

 If you disable this policy setting, logon is set to Automatic  logon only in Intranet zone.

 If you do not configure this policy setting,  logon is set to Automatic  logon only in Intranet zone.

More Info Here: http://social.technet.microsoft.com/Forums/windowsserver/en-US/76ad800d-183b-44ed-8635-3f2feec3a223/gpo-to-modify-ie-security-settings-using-registry-editor?forum=winserverGP

Author Closing Comment

ID: 40210878

Expert Comment

by:Mitchell Milligan
ID: 40214295
No Problem!  Hope it helped!

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article explains how to install and use the NTBackup utility that comes with Windows Server.
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question