Policy

Prevent ignoring certificate errors

Microsoft Windows

Back to Internet Control PanelBack to main
Prevent ignoring certificate errors
Jump to overview

Policy overview

Key metadata and intent for this policy.

Category
Windows Components > Internet Explorer > Internet Control Panel
Supported on
At least Internet Explorer 7.0

This policy setting prevents the user from ignoring Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificate errors that interrupt browsing (such as "expired", "revoked", or "name mismatch" errors) in Internet Explorer. If you enable this policy setting, the user cannot continue browsing. If you disable or do not configure this policy setting, the user can choose to ignore certificate errors and continue browsing.

Internal name
NoCertError
Policy ID
cb89bf8db41d
Elements
0

Registry values

How enabled and disabled states update the registry.

ScopeRegistry locationTypeEnabled valueDisabled valueCopy
Path
Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
Value name
PreventIgnoreCertErrors
REG_DWORD
HKLM
1
HKCU
1
HKLM
0
HKCU
0
Registry location
Type REG_DWORD · Both
Path
Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
Value name
PreventIgnoreCertErrors
Hive
HKLM
Enabled value
1
Disabled value
0
Hive
HKCU
Enabled value
1
Disabled value
0

Policy elements

Inputs and configuration options exposed by this policy.

This policy has no additional user input fields.