Check for signatures on downloaded programs

This policy setting allows you to manage whether Internet Explorer checks for digital signatures (which identifies the publisher of signed software and verifies it hasn't been modified or tampered with) on user computers before downloading executable programs. If you enable this policy setting, Internet Explorer will check the digital signatures of executable programs and display their identities before downloading them to user computers. If you disable this policy setting, Internet Explorer will not check the digital signatures of executable programs or display their identities before downloading them to user computers. If you do not configure this policy, Internet Explorer will not check the digital signatures of executable programs or display their identities before downloading them to user computers.

This policy has no additional user input fields.

• ComputerUser
  Allow active content from CDs to run on user machines

  At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1
• ComputerUser
  Allow Install On Demand (except Internet Explorer)

  Only Internet Explorer 6.0 in Windows 2003 Service Pack 1
• ComputerUser
  Allow Install On Demand (Internet Explorer)

  Only Internet Explorer 6.0 in Windows 2003 Service Pack 1
• ComputerUser
  Allow Internet Explorer to use the HTTP2 network protocol

  At least Internet Explorer 11.0 on Windows 10
• ComputerUser
  Allow Internet Explorer to use the SPDY/3 network protocol

  Only Internet Explorer 11.0 on Windows 8.1
• ComputerUser
  Allow software to run or install even if the signature is invalid

  At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1
• ComputerUser
  Allow third-party browser extensions

  At least Internet Explorer 6.0 in Windows 2003 Service Pack 1