• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 148
  • Last Modified:

How to deal with GPO in order to accept and install ActiveX without prompt ?

Hello,
We are looking for a solution - with GPO - that would accept and install activex from a list of choosen URL.

questions :  

1. is there a way to know if a GPO config needs to restart the machine, loggoff and loggin or that would be applied without any intervention not even an gpupdate as we already have notice in our tests.

2. what would be the changes to pass to GPO's ?
as an example : we would like to have activeX from microsoft installed on machines without prompt for accepting it.


thank you in advance for your help.

toshi
0
toshi_
Asked:
toshi_
  • 4
  • 2
1 Solution
 
Praveen Kumar BonalaProgrammer AnalystCommented:
1. Navigate to Administrative Tools > Group Policy Management

2.Expand Forest: Domain > Domain > Domain name >Right-Click Default Domain Policy > Edit. Group Policy Management Editor will open.

3. Decide if you want your group policy to be a Computer or User policy. The policy exists on both.

Go to either User or Computer and navigate to Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\ (Then select the zone the webpage loads from: Local Machine, Trusted-Sites, Internet)

4. Find and enable the following:

a. Download Signed ActiveX Controls Enable (Don’t select Prompt)
b. Download UnSigned ActiveX Controls Enable
0
 
toshi_Author Commented:
Hello Praveen
thank you for your reply.

i came across a post that did the same proposal.

I'm not confortable with the b. part of your proposal as i wuoldn't like to let the Unsigned  activex install without control. i'll be more confortable with adding domain to a list that would accept the activex.

Something that would let us add new web domains when necessary.

Do you know about a solution with sort of Whitelist ?

thank you in advance for further help.
0
 
Praveen Kumar BonalaProgrammer AnalystCommented:
You mean you want to add new web sites to trusted sites list.? correct me if I am wrong.
0
Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

 
Praveen Kumar BonalaProgrammer AnalystCommented:
0
 
toshi_Author Commented:
hello praveen.

yes, i'd like to add web sites (domains) to a level of security that wont ask when an activex need to be install.

If - as your example link - i add let say www.google.com to 1 which is intranet, the active x from google.com will be installed without prompting any question ?  is taht right ?

thx
toshi
0
 
Praveen Kumar BonalaProgrammer AnalystCommented:
Yes,
in my first answer only we have enabled to install the activex with out prompting for the trusted sites.
and in second ans. we have added sites to trusted sites.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now