Allow active content over restricted protocols to access my computer
Jump to overview

Policy overview

Key metadata and intent for this policy.

Category
Windows Components > Internet Explorer > Internet Control Panel > Security Page > Local Machine Zone
Supported on
At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1

Supported OS tags: Windows10, Windows10RT, Windows11, Windows7, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2003, WindowsServer2008, WindowsServer2012, WindowsServer2012R2, WindowsServer2016, WindowsVista, WindowsXP

This policy setting allows you to manage whether a resource hosted on an admin-restricted protocol in the Intranet Zone can run active content such as script, ActiveX, Java and Binary Behaviors. The list of restricted protocols may be set in the Intranet Zone Restricted Protocols section under Network Protocol Lockdown policy. If you enable this policy setting, no Intranet Zone content accessed is affected, even for protocols on the restricted list. If you select Prompt from the drop-down box, the Notification bar will appear to allow control over questionable content accessed over any restricted protocols; content over other protocols is unaffected. If you disable this policy setting, all attempts to access such content over the restricted protocols is blocked. If you do not configure this policy setting, the Notification bar will appear to allow control over questionable content accessed over any restricted protocols when the Network Protocol Lockdown security feature is enabled.

Internal name
IZ_PolicyNetworkProtocolLockdown_5
Policy ID
3fc5a35e1bd6
Elements
1

Registry values

How enabled and disabled states update the registry.

No explicit registry values are set for enabled or disabled states.

Policy elements

Inputs and configuration options exposed by this policy.

ScopeElementTypeRegistry mappingConstraints & behaviorCopy
Allow active content over restricted protocols to access my computer
ID IZ_Partname2300
enum
Path
Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
Value name
2300
Type
REG_DWORD
Options: Enable (0), Disable (3), Prompt (1)
Allow active content over restricted protocols to access my computer
Both · Type enum
Registry mapping
Path
Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
Value name
2300
Type
REG_DWORD
Details
Options: Enable (0), Disable (3), Prompt (1)