Sign in
 
HomeWindows Server 2012Windows Server 2008 R2Windows Server 2003LibraryForums
Windows Server TechCenter >
How to allow non-admin users to install ActiveX and Add-ons while applocker policy applied?

Unanswered How to allow non-admin users to install ActiveX and Add-ons while applocker policy applied?

  • Tuesday, January 22, 2013 6:32 AM
     
     
    Sign In to Vote
    0

    Hi All,

    We would like to deploy applocker in our org.  -- we would like to allow users to install ActiveX and Add-ons from IE.

    Could somebody guide me how can I achive this using applocker rules.

    Note: We are not interested to create path based rules.

    Thanks

    Thanks, Sunil Gupta Sunilgupta@sunilgupta.com

     

All Replies

  • Tuesday, January 22, 2013 12:29 PM
     
     
    Sign In to Vote
    0

     Hi,

    Please run GPO with following steps.

    Computer Configuration and User Configuration containers under -

    Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\ (Then select the zone the webpage loads from: Local Machine, Trusted-Sites, Internet)

    Find and enable the following:

    1. Download Signed ActiveX Controls Enable (Don’t select Prompt)

    2. Download UnSigned ActiveX Controls Enable

    Regards,

    MD Disclaimer: The opinion expressed herein are my own knowledge. Deploy this at your own risk. Whenever you see a helpful reply, just click on “Propose As Answer” / “Marked As Answer” and do "VOTE".

     
  • Wednesday, January 23, 2013 7:24 AM
     
     
    Sign In to Vote
    0

    Thanks for your reply Mubasshir..

    The GPO will allow to install ActiveX, how it can work with Applocker. What kind for rule I need to create to allow Active X.

    Thanks,

    Thanks, Sunil Gupta Sunilgupta@sunilgupta.com