Difference b/w Admin and User accounts when running IE

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

I have implemented several Group polices to secure a W2K Terminal server. I
used the basic and medium ADM templates (not the HI). Sorry I forgot the
exact names.
After I did this my users can not access certain web sites, such as
"www.yahoo.com" and "www.victrip.com.au". IE just locks up.
However, if I logon as the domain administrator or as a user that is a
domain admin I can access those sites.
Why is this so?
I have traced what is happening within IE and found that the sites it has
problems with are all redirected.
Can anyone point me to a registory key or policy that I can change to get it
working again? Thanks in advance.
 
If these were security templates and you can remember the names and where
you got them from then that may help. Sounds strange that a regular user
could not access Yahoo.com. It might be worth a try to put Yahoo.com in the
trusted web content zone to see if it makes a difference and also check
Event Viewer for any pertinent messages. -- Steve
 
I did that and it worked. The problem as I see it is that the initial site
"redirects" me to another site/url. For "www.yahoo.com" it takes me to
"au.yahoo.com". Just imagine how many entries I would need to put in the as
trusted.

I don't understand why it should work fine for an administrator as opposed
to a normal user. The security policies are applied to the server and not the
user. Is it an IE or Windows security problem? It appears as though I need to
set something like "allow redirect for all users". I tried setting security
to LOW as a test but it made effect.
 
Trying Hard said:
I did that and it worked. The problem as I see it is that the initial site
"redirects" me to another site/url. For "www.yahoo.com" it takes me to
"au.yahoo.com". Just imagine how many entries I would need to put in the as
trusted.
Click to expand...

I see what's going on - Yahoo's redirector is getting stopped by your
default settings for the Internet security zone. You can disable META
REFRESH in a zone's security settings. Re-enable this feature for the
Internet zone in your policy, and it should get fixed.
I don't understand why it should work fine for an administrator as opposed
to a normal user. The security policies are applied to the server and not the
user.
Click to expand...

I thought IE security policies were per-user policies, not per-computer
policies. If you have set it as a user policy, it should have taken effect
for all users on the computer, including the administrators, unless you just
set it for a specific user or group (or OU in a domain).
 
Back
Top