This policy setting determines which ActiveX installation sites standard users in your organization can use to install ActiveX controls on their computers. When this setting is enabled, the administrator can create a list of approved Activex Install sites specified by host URL.
If you enable this setting, the administrator can create a list of approved ActiveX Install sites specified by host URL.
If you disable or do not configure this policy setting, ActiveX controls prompt the user for administrative credentials before installation.
Note: Wild card characters cannot be used when specifying the host URLs.
Contains policy for the host URL.
The value for each Host URL is four settings in CSV format.
Which represents "TPSSignedControl,SignedControl,UnsignedControl,ServerCertificatePolicy
The three left most values in the policy control the installation of ActiveX controls based on their signature.
They can be one of the following.
0: ActiveX control will not be installed
1: Prompt the user to install ActiveX control
2: ActiveX control will be silently installed
Controls signed by certificates in trusted publisher store will be silently installed
Silent installation for unsigned controls is not supported
The right most value in the policy is a bitmasked flag
The flags are used for ignoring https certificate errors.
The default value is 0.
Which means that the https connections must pass all security checks
Use the combination of the following values
to ignore invalid certificate errors
0x00000100 Ignore Unknown CA
0x00001000 Ignore invalid CN
0x00002000 Ignore invalid certificate date
0x00000200 Ignore wrong certificate usage