Internet Explorer security zone settings
The following is the list of all the security zone settings required by the FactoryTalk Historian ME website.
Security setting | Value |
|---|---|
Download signed ActiveX controls | Prompt |
Download unsigned ActiveX controls | Disable |
Run ActiveX controls and plug-ins | Enable |
Initialize and script ActiveX controls not marked as safe for scripting | Enable |
Allow scripting of Microsoft web browser control | Enable |
URLACTION_ACTIVEX_OVERRIDE_REPURPOSEDETECTION | Enable |
Allow previously unused ActiveX controls to run without prompt (First run opt-in) | Enable |
Allow Scriptlets | Enable |
Display video and animation on a web page that uses a legacy media player | Disable |
Only allow approved domains to use ActiveX without prompt | Enable |
Allow active scripting | Enable |
Scripting of Java applets | Enable |
Script ActiveX controls marked safe for scripting | Enable |
Access data sources across domains | Prompt |
Allow programmatic clipboard access | Enable |
Allow cross-domain subframe resize | Enable |
Turn on Cross-Site Scripting (XSS) Filter | Disable |
URLACTION_SCRIPT_NAVIGATE | Enable |
Submit non-encrypted form data | Enable |
Allow font downloads | Enable |
Run Java (See 1C00) | Enable |
Userdata persistence | Enable |
Navigate windows and frames across different domains | Enable |
Allow META REFRESH | Enable |
Display mixed content | Prompt |
Include local directory path when uploading files to a server | Enable |
URLACTION_HTML_ALLOW_INJECTED_DYNAMIC_HTML | Enable |
Allow installation of desktop items | Prompt |
Allow drag and drop or copy and paste files | Enable |
Allow file downloads | Enable |
Launching applications and files in an IFRAME | Prompt |
Launching programs and files in webview | Enable |
Launching applications and unsafe files | Enable |
Launch moderate-risk file types | Enable |
Launch low-risk typically safe data file types | Enable |
Use Pop-up Blocker | Disable |
URLACTION_SHELL_RTF_OBJECTS_LOAD | Enable |
N/A (URLACTION_SHELL_EXTENSIONSECURITY) | Disable |
URLACTION_SHELL_SECURE_DRAGSOURCE | Enable |
Allow OpenSearch queries in Windows Explorer | Enable |
Allow previewing and custom thumbnails of OpenSearch query results in Windows Explorer | Enable |
Logon Options | Intranet-only |
Allow persistent cookies that are stored on your computer | Enable |
Allow per-session cookies (not stored) | Enable |
Do not prompt for client certificate selection when no certificates or only one certificate exists | Enable |
Allow 3rd party persistent cookies | Enable |
Allow 3rd party session cookies | Enable |
Privacy settings | Accept all cookies |
Java permissions | Med safety |
Allow binary and script behaviors | Enable |
Run .NET Framework-reliant components signed with Authenticode | Enable |
Run .NET Framework-reliant components not signed with Authenticode | Enable |
Run .NET UserControls | Enable |
Permissions for .NET Framework-reliant components with manifests | High safety |
Enable MIME Sniffing (Open files based on content, not file extension) | Enable |
Websites in less privileged web content zones can navigate into this zone | Enable |
Allow script-initiated windows without size or position constraints | Enable |
Allow status bar updates via script | Enable |
Allow websites to open windows without address or status bars | Enable |
Allow websites to prompt for information using scripted windows | Enable |
Automatic prompting for file downloads | Enable |
Automatic prompting for ActiveX controls | Enable |
Allow web pages to use restricted protocols for active content | Prompt |
Use Phishing Filter [IE7] / SmartScreen Filter [IE8+] | Disable |
Loose XAML files | Enable |
Turn on Protected Mode | Disable |
Disable .NET Framework setup | Enable |
InPrivate Filtering | Disable |
Allow ActiveX Filtering | Disable |
Enable dragging of content from different domains within a window | Disable |
Enable dragging of content from different domains across windows | Disable |
Render legacy filters | Enable |
Provide Feedback