Prevent ignoring certificate errors

This policy setting prevents the user from ignoring Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificate errors that interrupt browsing (such as "expired", "revoked", or "name mismatch" errors) in Internet Explorer.

If you enable this policy setting, the user cannot continue browsing.

If you disable or do not configure this policy setting, the user can choose to ignore certificate errors and continue browsing.

Supported on: At least Internet Explorer 7.0

Registry Hive	HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry Path	Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
Value Name	PreventIgnoreCertErrors
Value Type	REG_DWORD
Enabled Value	1
Disabled Value	0

inetres.admx

Administrative Templates (Computers)

Control Panel
- Personalization
- Regional and Language Options
- User Accounts
  - Apply the default user logon picture to all users
- Allow Online Tips
- Settings Page Visibility
Network
Printers
Start Menu and Taskbar
System
Windows Components

Administrative Templates (Users)

Configuration Manager
- User State Management Client Side Extension
Control Panel
Desktop
Network
Shared Folders
- Allow DFS roots to be published
- Allow shared folders to be published
Start Menu and Taskbar
System
Windows Components
Enable auto-subscription