ActiveX enablement through group policy


  • Environment details:

    Windows Server 2003 Enterprise SP2

    IE 6



    We have citrix application which runs on IE6. We are facing issue with activex controls when we try to run application through non admin user. However if the same application is run with administrator credentials, it loads successfully. 

    We have implemented group policy. The site is added as trusted site. The group policy is modified as follows:

    Default Domain Policy linked with OU> User Configuration> Windows Components> Internet Explorer Maintenance>Security > Security Zones and Content ratings > Security and Privacy Settings> Import Privacy Settings

    ActiveX has been enabled in the settings.

    When RSoP is done on target machine (in domain) it does not display exact configurations done in AD server. So first issue might be proper pushing of group policies. It may be noted machine from where URL is being accessed is in domain. 

    Second possibility of the issue might be any user permission that is not allowing activex to load. 

    Third, Any settings to be done in Citrix application to allow loading of ActiveX

    Request Help in the matter

    Monday, July 14, 2014 11:13 AM


  • Hi,

    Based on your description, we may package the ActiveX control as an Installer Package (.msi) file and push it to users via group policy.

    Regarding this point, the following article can be referred to as reference.

    How to Install ActiveX Controls in Internet Explorer Using the Active Directory

    Regarding how to push software via group policy, the following article can be referred to for more information.

    How to use Group Policy to remotely install software in Windows Server 2008 and in Windows Server 2003

    Best regards,

    Frank Shen
    Tuesday, July 15, 2014 2:08 AM