G
Guest
I work for a company that provides web-based apps. Our application's login
web page downloads an OCX file that needs to be registered. If the user that
is logged in to the computer (Win2k, WinXP) has power user or administrative
rights, the OCX file registers fine and the AcitveX control is visible on the
page. Some of our customers who are concerned with security have a problem
granting these access rights to users, and rightly so. When someone with
normal user rights accesses this web page, the ActiveX control is not
visible. (Red X where the control should be)
How can I get a user with non-administrative rights to be able to register
this OCX file? I've tracked what is added to the registry when our page is
accessed, and granted permission to these registry keys using AD Group
Policy. I've even granted permission to HKLM\Classes, HKLM\Users and
HKLM\Machine, the highelst level that can be assigned under AD Group Policy,
and made sure that the rights propagate down.
Can anyone shed some light on this?
TIA,
Ken
web page downloads an OCX file that needs to be registered. If the user that
is logged in to the computer (Win2k, WinXP) has power user or administrative
rights, the OCX file registers fine and the AcitveX control is visible on the
page. Some of our customers who are concerned with security have a problem
granting these access rights to users, and rightly so. When someone with
normal user rights accesses this web page, the ActiveX control is not
visible. (Red X where the control should be)
How can I get a user with non-administrative rights to be able to register
this OCX file? I've tracked what is added to the registry when our page is
accessed, and granted permission to these registry keys using AD Group
Policy. I've even granted permission to HKLM\Classes, HKLM\Users and
HKLM\Machine, the highelst level that can be assigned under AD Group Policy,
and made sure that the rights propagate down.
Can anyone shed some light on this?
TIA,
Ken