Allow software to run or install even if the signature is invalid

This policy setting allows you to manage whether software, such as ActiveX controls and file downloads, can be installed or run by the user even though the signature is invalid. An invalid signature might indicate that someone has tampered with the file.

If you enable this policy setting, users will be prompted to install or run files with an invalid signature.

If you disable this policy setting, users cannot run or install files with an invalid signature.

If you do not configure this policy, users can choose to run or install files with an invalid signature.

Supported on: At least Internet Explorer 6.0 in Windows XP Service Pack 2 or Windows Server 2003 Service Pack 1

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Internet Explorer\Download
Value NameRunInvalidSignatures
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

inetres.admx

Administrative Templates (Computers)

Administrative Templates (Users)