Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Question
Wednesday, August 8, 2018 3:12 PM
Hello Everyone,
I have one Active Directory structure and recently I add some sites to trusted site intranet zone on the Company policies.
When my customers trying to access one of the sites in the list the message, "the current webpage is trying to open a site in your trusted site list. do you want to allow this?", appears as pop-up.
I've set the 'Websites in less privileged web content zone can navigate into this zone' as enable, but the message still pop.
Have I missed something?
Thanks
All replies (8)
Wednesday, August 15, 2018 7:15 AM ✅Answered | 1 vote
Hi Lima,
From my test, the reason why you get the warning is because the web sites from less privileged zones can't open new windows in trusted zone. Please try to configure the gpo
Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Trusted Sites Zone
Web sites in less privileged Web content zones can navigate into this zone
Computer Configuration\Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\Locked-Down Trusted Sites Zone
Web sites in less privileged Web content zones can navigate into this zone
If it helps, it is appreciated that you can mark it as an answer.
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Thursday, August 9, 2018 1:45 AM
I shall suggest you to reset IE first.
Reboot.
Now reconfigure again:
In Internet Explorer, click Tools > Internet Options.
Click the Security Tab.
Click Trusted Sites.
Click Custom Level.
Scroll down to where it says Websites in less privileged web content zone can navigate into this zone.
Put a checkmark beside Enable.
S.Sengupta,Microsoft MVP Windows and Devices for IT, Windows Insider MVP
Thursday, August 9, 2018 5:53 AM
Hi,
Did other domain joined machine have the same issue?
Here is what I configured:
1. Open group policy management, and locate at
User Settings -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page
In the right pane, double click the policy "site to zone assignment list"
Value name = https://www.bing.com
value = 2
Then deploy the policy to domain client. From my test the security message has not pop up. Is it possible that policy conflict or the value name you configured will be blocked? If you install any 3-party software, please uninstall it. If it is convenient, you can reset IE on one client machine , and try again
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Thursday, August 9, 2018 8:26 AM
I shall suggest you to reset IE first.
Reboot.
Now reconfigure again:
In Internet Explorer, click Tools > Internet Options.
Click the Security Tab.
Click Trusted Sites.
Click Custom Level.
Scroll down to where it says Websites in less privileged web content zone can navigate into this zone.
Put a checkmark beside Enable.S.Sengupta,Microsoft MVP Windows and Devices for IT, Windows Insider MVP
Thanks for your suggestion @S.Sengupta but I'm working with GPO.
Friday, August 10, 2018 8:03 AM
Hi @vivian_zhou
I've tried that. For test propose.
I added the website login.microsoftonline.com to the trusted sites, then I tried navigate to that website, the result is that:
Thanks
Monday, August 13, 2018 2:29 AM
Hi,
So all the domain users have the same problem, I am thinking that it may be affected with the policy conflict. Since from my test, I create a gpo, which contains only one policy and deploy to client machine, it works successfully.
So it is suggested that you can create a new domain account, with no other domain policy linked, then link it to the IE policy, checking the result.
Please remember to mark the replies as answers if they help.
If you have feedback for TechNet Subscriber Support, contact [email protected].
Tuesday, August 14, 2018 8:02 AM
Hi @vivian_zhou,
That is what I did. I created a new GPO on a OU who are not covered by other gpo.
On the test above, if I insert the https://www.office.com, the message don't pop, the thing is, If every time a message pop I need to insert the website on the trusted sites, I will became insane.
Thursday, September 6, 2018 9:59 AM
After a deep inspection over my policies I found a policy who had a template active. That policy for some reason was not listed when I try a GPResult. On this template the Web sites in less privileged Web content zones can navigate into this zone is setup to prompt.
So that's the problem.
Thanks for your help.