Disabling the Internet Explorer Enhanced Security Configuration on Windows 

 

In Internet Explorer on the windows server is being locked down for guarding it against the browser-based attacks on the production servers. However, if the instance is configured which is not yet in the production or if you have been using the instance for demonstration, development or for testing purposes these security settings can make the internet explorer more difficult to use.

Using the Server Manager

The below instruction works on the windows virtual server 2012

If you are looking to disable the IEESC on the local server, you can go to the server manager and then choose the “Local Server” from the sidebar menu. Now in the properties section, the 3rd option of the 4th column is the "IE Enhanced Security Configuration". Now by clicking on ”On” which represents the status, you will be able to set it up for the Administrators as well as the users.

If you are looking for administrators to be able to turn off the IEESC, then choose the “Off” for administrators; same applies to the users as well. If you are looking to turn off the IEESC, then you need to click on “Off”. This will turn the IEESC turn on or off.

If you are looking to enable the IEESC after disabling it then you need to follow the same steps but you simply need to change the choice of administrators as well as users.


By Modifying the Registry

By Creating the registry file

Connect to your server and open a text editor such as Notepad. Paste in the following:

Windows Registry Editor Version 5.00

;Start admin section.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\]
"IsInstalled"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}]
"IsInstalled"=dword:00000000
;end admin section.
;Start user section.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\]
"IsInstalled"=dword:00000000
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}]
"IsInstalled"=dword:00000000
;End user section.

 

If you are wishing to disable the enhanced security configuration for all the users, then there is no need for modifying the registry file. For disabling for users only, remove; Start admin section., ; End admin section., and everything in between. When finished, save the file with a .reg extension.

Now you need to find and open the registry file which you have created. Answer “yes” when the windows prompt to import the registry values.

For applying the changes you need to reboot the server or kill explorer.exe using Command Prompt, task manager or any other process management utility.