Security Dialog Box

[Guest]

I have some software that is being served up off of a Windows 2003 Standard
Edition Server. The executable is ran directly from the share from the
server. Before the program runs, you will see the "Open File - Security
Warning Dialog Box" that says "The publisher could not be verified. Are you
sure you want to run this software? Run or Cancel" This did not happen when
the software was being hosted on a Windows 2000 Server. Is there anyway I
can suppress this box from appearing on my users workstations?

TIA
Dan

 

[Ramesh, MS-MVP]

Daniel,

See if this helps.

Open file - Security Warning appears when you run a file from network share:
http://windowsxp.mvps.org/networkfile.htm

--
Regards,

Ramesh Srinivasan, Microsoft MVP [Windows XP Shell/User]
Windows® XP Troubleshooting http://www.winhelponline.com


I have some software that is being served up off of a Windows 2003 Standard
Edition Server. The executable is ran directly from the share from the
server. Before the program runs, you will see the "Open File - Security
Warning Dialog Box" that says "The publisher could not be verified. Are you
sure you want to run this software? Run or Cancel" This did not happen when
the software was being hosted on a Windows 2000 Server. Is there anyway I
can suppress this box from appearing on my users workstations?

TIA
Dan

 

[Vincent Xu [MSFT]]

Hi Daniel ,

According to my research, this is a function of the Attachment Execution
Service presented in Internet Explorer Enhanced Security. This is a user
side security feature that prompts users of downloaded application if they
want to run this application. It presents the user with information about
the application including signature information to assist the consumer in
making an informed decision. This service only runs through the Explorer
Shell. Applications that run in the Command Shell will bypass this
functionality.

To work around this problem, you may removed Internet Explorer Enhanced
Security from Add/Remove Programs or add your network shares into the Local
intranet and domain name into the Trust sites. To do so:

1. Open Microsoft Internet Explorer.
2. Click Tools, and then click Internet Options.
3. In the Security tab, highlight "Local intranet", click Sites button.
4. Add your network shares or address to the list.
5. Uncheck "Require server verification (https for all sites in this
zone" and click Close.
6. In the Security tab, highlight "Trust sites", click Sites button.
7. Add your domain name (http://<domain>.com) to the list.
8. Click Close and reboot the server.

Hope this helps.

Best regards,

Vincent Xu
Microsoft Online Partner Support

======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no rights.
======================================================



--------------------

 

[Guest]

That fixes the problem except I have to do it for every user who logs on. Is
there anyway I can make the change global for all users?

TIA
Dan
--
Daniel P. Cayea
Capital Region BOCES NERIC
Peru Central School District

 

[Vincent Xu [MSFT]]

Hi,

Did you put all clients into a domain? If so, you can deploy the IE
settings in GPO. Otherwise, you have to do it manualy.

Check following information about GPO.

<http://technet2.microsoft.com/WindowsServer/en/Library/255ae89b-83c0-464d-a
42f-44795f1129641033.mspx?mfr=true>

Hope this helps.

Best regards,

Vincent Xu
Microsoft Online Partner Support

======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no rights.
======================================================



--------------------

 

[Guest]

I see this new Group Policy Management MMO, where do I download or install it
from?
--
Daniel P. Cayea
Capital Region BOCES NERIC
Peru Central School District

 

[Guest]

In the Group Policy editor, I have made the change in User
Configuration->Windows Settings->Internet Explorer Maintenance->Security,
I've added the IP of the server into the trust sites of the computer I am
importing settings from and have imported them into Group Policy. This has
been done at the root policy, shouldn't now the machines stop showing this
message? They are not in any OU and therefore they should get this
instruction, right?

TIA
Dan
--
Daniel P. Cayea
Capital Region BOCES NERIC
Peru Central School District

 

[Vincent Xu [MSFT]]

Hi Dan,

As you said, "This has been done at the root policy". Do you mean, you have
modified the "Default Domain Policy"? If so, I think the message shouldn't
appear any more. Let me know your current status.


Best regards,

Vincent Xu
Microsoft Online Partner Support

======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no rights.
======================================================



--------------------

 

[Guest]

I think it is solved, domain policy is pushing out the appropriate settings.

Thanks!
Dan
--
Daniel P. Cayea
Capital Region BOCES NERIC
Peru Central School District

 

[Vincent Xu [MSFT]]

Hi,

Glad to hear the problem was resolved.

Have a good day!


Best regards,

Vincent Xu
Microsoft Online Partner Support

======================================================
Get Secure! - www.microsoft.com/security
======================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others
may learn and benefit from this issue.
======================================================
This posting is provided "AS IS" with no warranties,and confers no rights.
======================================================



--------------------