All Processes

Internet Explorer places restrictions on each Web page it opens. The restrictions are dependent upon the location of the Web page (Internet, Intranet, Local Machine zone, and so on). For example, Web pages on the local computer have the fewest security restrictions and reside in the Local Machine zone, making the Local Machine security zone a prime target for malicious users.

If you enable this policy setting, any zone can be protected from zone elevation for all processes.

If you disable or do not configure this policy setting, processes other than Internet Explorer or those listed in the Process List receive no such protection.

Supported on: At least Internet Explorer 6.0 in Windows XP with Service Pack 2 or Windows Server 2003 with Service Pack 1

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION
Value Name*
Value TypeREG_SZ
Enabled Value1
Disabled Value0

inetres.admx

Administrative Templates (Computers)

Administrative Templates (Users)