IE8 IEAK默认安全设置(可信/内部网站点) [英] IE8 IEAK Default Security Setings (Trusted/Intranet Sites)
问题描述
我有两个问题
1)当我创建自定义包时,我在向导中导入了一组默认设置来创建MSI(例如: 启用scriplets)群组。当我部署时,大多数设置都已设置,包括我们在GPO中设置的少数设置,其他设置如
我启用了scriplets,设置为禁用。 我无法接受我部署的任何机器。 我们检查GPO并且没有为此设置任何内容。
2)如果某人已经拥有IE8并且我想要发送默认的自定义安装,那么它似乎不需要任何受信任或Intranet站点中的默认设置。 是否有需要发送的特定命令?
请注意,我现在无法在GPO中设置许多这些设置,因为一个应用程序需要启用而另一个需要禁用(例如XSS过滤器) )。
任何信息都会很棒。 谢谢。
< span style ="font-size:small"> 审查这里的主题是研究的重点:
a。 &NBSP;&NBSP;&NBSP;&NBSP;&NBSP;
您似乎正在使用IEAK自定义来传播Internet Explorer品牌设置
b。
此外,定制软件包还包含IE8安装,因此在已经安装了IE8的计算机上部署软件包无效
这里有问题的可能解决方案:
a 。
首先解决方案是,如果计算机是域的一部分,则使用Internet Explorer维护GPO部署这些设置
b。
如果您已经在使用Internet Explorer维护,那么他们必须考虑审核KB 2029043,其中讨论了两者之间的优先顺序
c。
如果你必须使用IEAK然后创建一个不应该包含IE8设置的品牌包,IE8可以单独部署在机器上,而不需要
品牌
收集日志:
a。 &nbs磷;
从问题机器上的以下位置收集brandlog.txt:
$
WinXP和Server 2003:
%USERPROFILE%\本地设置\Application Data \ Microsoft &\\Internet Explorer
Windows Vista及更高版本:
%USERPROFILE%\ AppData \ Local \ microsoftoft \Internet Explorer
要审核的链接:
< p style ="margin:0in 0in 0pt">
·
< span lang ="EN-IN"style =""> IEAK安装包中定义的自定义Internet Explorer设置覆盖定义的设置在Internet Explorer维护策略中
http://support.microsoft.com/kb/2029043/es
&NBSP;
I have two questions
1) When I created the customization package, I imported a default set of settings into the wizard to create the MSI (example: Enable scriplets). When I deploy, most of the settings are set, including the few we set in GPO, other settings like I enabled scriplets, are set to disabled yet. I cannot get that to take on any machine I deploy to. We check GPO and nothing is set for this either.
2) If someone already has IE8 and I want to send down the default customization install, it doesn't seem to take any of the default settings in trusted or intranet sites. Is there a specific command that I need to send down?
Note that there are many of these settings I cannot set in GPO now because one application needs enabled and one needs disabled (example XSS filter).
Any info would be great. Thanks.
Upon review of the thread here are the key points of research:
a. It seems you are using IEAK customization to propagate Internet Explorer Branding settings
b. Also the customized package contains IE8 install due to which the deployment of the package is ineffective on machines already with IE8 on them
Here are the possible solution the issue:
a. First solution is, if the machine is a part of the domain then use Internet Explorer Maintenance GPO to deploy these settings
b. If you are already using Internet Explorer Maintenance then they must consider reviewed KB 2029043 which talks about precedence between the two
c. If you have to use IEAK then create a branding only package which should not contain the IE8 setup, IE8 can be deployed on machines separately without branding
Logs to collect:
a. Collect the brandlog.txt from the following location on the problem machine:
WinXP and Server 2003:%USERPROFILE%\Local Settings\Application Data\Microsoft\Internet Explorer
Windows Vista and later:%USERPROFILE%\AppData\Local\Microsoft\Internet Explorer
Links to review:
· Customized Internet Explorer settings defined in an IEAK installation package override settings defined in Internet Explorer Maintenance Policy
http://support.microsoft.com/kb/2029043/es
这篇关于IE8 IEAK默认安全设置(可信/内部网站点)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
