Internet Explorer Settings in Policies

[AC]

I'm having a problem with apply group policies and Internet Explorer.
Basically, we want to secure IE against downloading ActiveX controls and the
like for ordinary users, but permitting it for the Administrative users who
will be apply fixes and the like.

I've set up the limited security settings in the default domain policy, and
then created an organizational unit containing the Domain Admin group, and
created a policy for that OU with more liberal settings. The problem is
that both the default domain policy and the admin policy pretty much
replicate each other's IE settings.

--
Aaron Clausen
(e-mail address removed)

WOODY: How's it going Mr. Peterson?
NORM : It's a dog eat dog world out there, Woody, and I'm wearing
milkbone underwear.

 

[AC]

I'm having a problem with apply group policies and Internet Explorer.
Basically, we want to secure IE against downloading ActiveX controls and the
like for ordinary users, but permitting it for the Administrative users who
will be apply fixes and the like.

I've set up the limited security settings in the default domain policy, and
then created an organizational unit containing the Domain Admin group, and
created a policy for that OU with more liberal settings. The problem is
that both the default domain policy and the admin policy pretty much
replicate each other's IE settings.

Any takers? Or should I abandon IE and get the staff running on Mozilla
Firefox?

--
Aaron Clausen
(e-mail address removed)

WOODY: How's it going Mr. Peterson?
NORM : It's a dog eat dog world out there, Woody, and I'm wearing
milkbone underwear.