Windows Server 2012 and Internet Explorer 10

Feeling stressed lately, giving up, downloading Chrome on Windows Server 2012 to download tools in your Windows Server 2012 lab environment?
I know how you feel, it’s a bit frustrating when you try to download files in Internet Explorer, you add the page to trusted websites, lower the security levels for the internet zone, turn off protected mode and still you are presented by The big white

Caution: When downloading files from Internet Explorer you need to ask yourself – what am I downloading and Why, am I only installing Chrome because I want to download Acrobat Reader, why am I installing Acrobat Reader on A SERVER?

The Solution is Knowledge!

If Internet Explorer Enchanced Security is Enabled – File downloads from the Internet Zone is turned off.

But for Lab/Testing/Iwillnotusethisinproduction you can turn off Internet Explorer Enchanded Security:
Open Server Manager, go to Dashboard, click Configure this local server, and in the properties section next to IE Enhanced Security Configuration click the ON and select OFF.
If you want to read more about enchanced security features in Windows Server 2012 and IE visit this webpage and read it.
BUT if you follow the instructions on the mentioned page and open IEs default page to find out more about Internet Explorer Enhanced Security Configuration by clicking the link, you will most likely be presented with “This page can’t be displayed”.
Solution: Note the url res://ieframe.dll/IESecHelp.htm – if you change it to iesetup instead of ieframe.dll…etc you will access the correct help page.
Advertisements

Disable flash in Internet Explorer 10 / Inaktivera Flash i Internet Explorer 10

With Group policy you can disable Flash in Internet Explorer 10 by enabling the Group Policy “Turn off Adobe Flash in Internet Explorer and prevent applications from using Internet Explorer technology to instantiate Flash objects” located at User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on management

There are a few more great policies here such as Add-on List.
If you go to Internet Explorer, Tools and manage add-ons you can right click an add-on, choose properties and with the CSLID specified for the add-on Control which add-ons to run (1) or disable (0)
Then you can enable the policy “Deny all add-ons unless specifically allowed in the Add-on list”
Internet Explorer 10 FAQ

Med Group policy so kan du inaktivera Flash i Internet Explorer 10 genom Group policyn “Turn off Adobe Flash in Internet Explorer and prevent applications from using Internet Explorer technology to instantiate Flash objects” som finns via User Configuration\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on management

Det finns fler användbara policies här som möjligheten att begränsa add-ons.
Man öppnar Internet Explorer, verktyg och sedan väljer du Hantera tillägg.
Där högerklickar du på ett tillägg och noterar CSLID för detta.
Sedan använder du den informationen i Add-on list GPO:n och antingen tillåter (1) eller inaktiverar det (0).
Sedan kan du aktivera policyn “Deny all add-ons unless specifically allowed in the Add-on list”
Internet Explorer 10 FAQ