locked
IE9 Group Policy Add-on list blocking Javascript RRS feed

  • Question

  • I am trying to configure the two Internet Explorer policy settings 'Add-on List', and 'Deny all add-ons unless specifically allowed in the Add-on List'.  I've been through and specified a whole stack of add-ons and ActiveX controls I want to run, and the list is applying successfully.

    The problem now is that any page that relies on JavaScript is not loading.  I did a bit of digging around, and found that I needed to add the CLSID for JavaScript to the list.  I've gone and done this, but even after adding these entries, pages which use JavaScript fail to load properly.  

    I'm certain there are no other security settings that are causing issues - I can cause the fault to occur immediately by enabling 'Deny all add-ons unless specifically allowed in the Add-on List', and I can fix it by turning that setting off.

    Running IE9 (32-bit) in Windows 7 Enterprise.

    Monday, September 1, 2014 4:41 AM

All replies

  • Hi,

    I think you mean Java RTE or scripting of java applets.

    javascript (active Scripting) does not have a CLSID. see Tools>Manage addons>Show all addons... click on an item to display its properties and obtain it's CLSID value.

    Active Scripting and scripting of ActiveX and Applets is controlled from the IE Security Zone templates. You should ensure that the client is accepting the default security zone templates... click "Reset all zones to default" button on the Security tab of internet options.

    Active Scripting is disabled by default only for domains in the Restricted Sites list.

    To avoid confusion please include links to any websites you are having problems with your questions.

    Regards.


    Rob^_^

    Tuesday, September 2, 2014 12:40 AM
  • Hi,

    I think you mean Java RTE or scripting of java applets.

    javascript (active Scripting) does not have a CLSID. see Tools>Manage addons>Show all addons... click on an item to display its properties and obtain it's CLSID value.

    Active Scripting and scripting of ActiveX and Applets is controlled from the IE Security Zone templates. You should ensure that the client is accepting the default security zone templates... click "Reset all zones to default" button on the Security tab of internet options.

    Active Scripting is disabled by default only for domains in the Restricted Sites list.

    To avoid confusion please include links to any websites you are having problems with your questions.

    Regards.


    Rob^_^

    Thanks for the reply Rob.  Unfortunately, the websites I know of that cause me issues are an internal collaboration portal (IBM Lotus Connections), and another page where a user can download a copy of their superannuation statement after logging in - neither of which will be available for anyone else to look at.

    It's possible that I'm on the wrong track here, but something just isn't making sense.  The only change I make is enabling the 'Deny unless in the add-on list' policy.  With that setting enabled, the pages do not load.  With it disabled, they do.  No zone settings are modified by changing these settings, and even if I go and set all zones to their lowest possible security setting, the page still will not load if I'm attempting to manage add-ons.

    I have loaded the page with the policy setting disabled, and double checked that all add-ons that show as loaded once I have successfully loaded the page are in the add-on list, and they are all correctly there.  I'm pretty stuck on this one :(

    Tuesday, September 2, 2014 2:18 AM