Internet Explorer Enhanced Security Configuration for Non-Administrators

Issue

The Microsoft® Windows® Server 2003 Internet Explorer Enhanced Security Configuration component (also known as Microsoft Internet Explorer hardening) reduces a serverÆs vulnerability to attacks from Web content by applying more restrictive Internet Explorer security settings. Internet Explorer Enhanced Security Configuration places your server and Microsoft Internet Explorer in a configuration that decreases the exposure of your server to potential attacks that can occur through Web content and application scripts.

This server either does not have the Internet Explorer Enhanced Security Configuration installed or has it disabled for some users.

Solution

Install Internet Explorer Enhanced Security Configuration.

Instructions

To enable Internet Explorer Enhanced Security Configuration on computers running Windows Server 2003:

In Control Panel, click Add or Remove Programs.
Click Add/Remove Windows Components.
Click Internet Explorer Enhanced Security Configuration, and then click Details.
Select the For administrator groups check box, the For all other user groups check box, or both check boxes, and then click OK.

Notes

This change takes effect immediately for the Administrator who is currently logged on to the server; however, other users and Administrators who are logged on to the server must log off and then log on for the change to take effect. This is usually an issue only when you are using Terminal Server to host applications on a server, and both users and Administrators are simultaneously logged on, or when a server is managed remotely by more than one Administrator.

Refer to the "Managing Internet Explorer Enhanced Security Configuration" whitepaper linked below for ways to enable Internet Explorer Enhanced Security Configuration through startup scripts, group policy, and answer files.

Additional Information

Managing Internet Explorer Enhanced Security Configuration