I'm the new default domain admin now at a high school and we've upgraded from IE9. We had most GPO settings configured using the deprecated IEM settings. I've configured those setting in Polices now.
I've tested the SCM Baseline for Internet Explorer 11 & the CIS version with default settings. A lot a stuff is blocked and disabled with these settings. I don't want to inhibit users from preforming tasks but also I don't want to leave security wide open.
For example, I've turned off Enhanced Protection Mode as it blocked 32-bit Add-Ons & unchecked Do not save encrypted pages to disk as users weren't able to open documents in the browser.
What settings should I enable that aren't defaults? Should I locked down the Security tab?
Thanks
Level 1 Support Technician in an Educational Environmant
I've tested the SCM Baseline for Internet Explorer 11 & the CIS version with default settings. A lot a stuff is blocked and disabled with these settings. I don't want to inhibit users from preforming tasks but also I don't want to leave security wide open.
For example, I've turned off Enhanced Protection Mode as it blocked 32-bit Add-Ons & unchecked Do not save encrypted pages to disk as users weren't able to open documents in the browser.
What settings should I enable that aren't defaults? Should I locked down the Security tab?
Thanks
Level 1 Support Technician in an Educational Environmant
