How to deal with GPO in order to accept and install ActiveX without prompt ?

Hello,
We are looking for a solution - with GPO - that would accept and install activex from a list of choosen URL.

questions :  

1. is there a way to know if a GPO config needs to restart the machine, loggoff and loggin or that would be applied without any intervention not even an gpupdate as we already have notice in our tests.

2. what would be the changes to pass to GPO's ?
as an example : we would like to have activeX from microsoft installed on machines without prompt for accepting it.


thank you in advance for your help.

toshi
Erwin PombettAsked:
Who is Participating?
 
Praveen Kumar BonalaProgrammer AnalystCommented:
0
 
Praveen Kumar BonalaProgrammer AnalystCommented:
1. Navigate to Administrative Tools > Group Policy Management

2.Expand Forest: Domain > Domain > Domain name >Right-Click Default Domain Policy > Edit. Group Policy Management Editor will open.

3. Decide if you want your group policy to be a Computer or User policy. The policy exists on both.

Go to either User or Computer and navigate to Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\ (Then select the zone the webpage loads from: Local Machine, Trusted-Sites, Internet)

4. Find and enable the following:

a. Download Signed ActiveX Controls Enable (Don’t select Prompt)
b. Download UnSigned ActiveX Controls Enable
0
 
Erwin PombettAuthor Commented:
Hello Praveen
thank you for your reply.

i came across a post that did the same proposal.

I'm not confortable with the b. part of your proposal as i wuoldn't like to let the Unsigned  activex install without control. i'll be more confortable with adding domain to a list that would accept the activex.

Something that would let us add new web domains when necessary.

Do you know about a solution with sort of Whitelist ?

thank you in advance for further help.
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
Praveen Kumar BonalaProgrammer AnalystCommented:
You mean you want to add new web sites to trusted sites list.? correct me if I am wrong.
0
 
Erwin PombettAuthor Commented:
hello praveen.

yes, i'd like to add web sites (domains) to a level of security that wont ask when an activex need to be install.

If - as your example link - i add let say www.google.com to 1 which is intranet, the active x from google.com will be installed without prompting any question ?  is taht right ?

thx
toshi
0
 
Praveen Kumar BonalaProgrammer AnalystCommented:
Yes,
in my first answer only we have enabled to install the activex with out prompting for the trusted sites.
and in second ans. we have added sites to trusted sites.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.