Internet Explorer security zone settings

The following is the list of all the security zone settings required by the FactoryTalk Historian ME website.
Security setting
Value
Download signed ActiveX controls
Prompt
Download unsigned ActiveX controls
Disable
Run ActiveX controls and plug-ins
Enable
Initialize and script ActiveX controls not marked as safe for scripting
Enable
Allow scripting of Microsoft web browser control
Enable
URLACTION_ACTIVEX_OVERRIDE_REPURPOSEDETECTION
Enable
Allow previously unused ActiveX controls to run without prompt (First run opt-in)
Enable
Allow Scriptlets
Enable
Display video and animation on a web page that uses a legacy media player
Disable
Only allow approved domains to use ActiveX without prompt
Enable
Allow active scripting
Enable
Scripting of Java applets
Enable
Script ActiveX controls marked safe for scripting
Enable
Access data sources across domains
Prompt
Allow programmatic clipboard access
Enable
Allow cross-domain subframe resize
Enable
Turn on Cross-Site Scripting (XSS) Filter
Disable
URLACTION_SCRIPT_NAVIGATE
Enable
Submit non-encrypted form data
Enable
Allow font downloads
Enable
Run Java (See 1C00)
Enable
Userdata persistence
Enable
Navigate windows and frames across different domains
Enable
Allow META REFRESH
Enable
Display mixed content
Prompt
Include local directory path when uploading files to a server
Enable
URLACTION_HTML_ALLOW_INJECTED_DYNAMIC_HTML
Enable
Allow installation of desktop items
Prompt
Allow drag and drop or copy and paste files
Enable
Allow file downloads
Enable
Launching applications and files in an IFRAME
Prompt
Launching programs and files in webview
Enable
Launching applications and unsafe files
Enable
Launch moderate-risk file types
Enable
Launch low-risk typically safe data file types
Enable
Use Pop-up Blocker
Disable
URLACTION_SHELL_RTF_OBJECTS_LOAD
Enable
N/A (URLACTION_SHELL_EXTENSIONSECURITY)
Disable
URLACTION_SHELL_SECURE_DRAGSOURCE
Enable
Allow OpenSearch queries in Windows Explorer
Enable
Allow previewing and custom thumbnails of OpenSearch query results in Windows Explorer
Enable
Logon Options
Intranet-only
Allow persistent cookies that are stored on your computer
Enable
Allow per-session cookies (not stored)
Enable
Do not prompt for client certificate selection when no certificates or only one certificate exists
Enable
Allow 3rd party persistent cookies
Enable
Allow 3rd party session cookies
Enable
Privacy settings
Accept all cookies
Java permissions
Med safety
Allow binary and script behaviors
Enable
Run .NET Framework-reliant components signed with Authenticode
Enable
Run .NET Framework-reliant components not signed with Authenticode
Enable
Run .NET UserControls
Enable
Permissions for .NET Framework-reliant components with manifests
High safety
Enable MIME Sniffing (Open files based on content, not file extension)
Enable
Websites in less privileged web content zones can navigate into this zone
Enable
Allow script-initiated windows without size or position constraints
Enable
Allow status bar updates via script
Enable
Allow websites to open windows without address or status bars
Enable
Allow websites to prompt for information using scripted windows
Enable
Automatic prompting for file downloads
Enable
Automatic prompting for ActiveX controls
Enable
Allow web pages to use restricted protocols for active content
Prompt
Use Phishing Filter [IE7] / SmartScreen Filter [IE8+]
Disable
Loose XAML files
Enable
Turn on Protected Mode
Disable
Disable .NET Framework setup
Enable
InPrivate Filtering
Disable
Allow ActiveX Filtering
Disable
Enable dragging of content from different domains within a window
Disable
Enable dragging of content from different domains across windows
Disable
Render legacy filters
Enable
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.
Normal