Server Gigabit Guide

Disable Enhanced Security Configuration for Internet Explorer in Windows Server 2019/2016

You are here:
Estimated reading time: 1 min

The Enhanced Security Configuration (IE ESC) is designed to protect a server against dangerous websites capable of malware infecting the system. To open all its content in IE you need to add a website to the Trusted sites zone. Enhanced Security Configuration on Windows Server 2019/2016 is supported by default in Internet Explorer. These security restrictions are genuinely beneficial in most situations. But in some cases, you might want to allow Internet Explorer to open all websites without adding them as trusted ones, including all third-party content. Here is how to deactivate enhanced security settings for Internet Explorer in Windows Server 2019/2016.

Here is just one example. When allowing Internet Explorer Enhanced Security Configuration, you will see this Start page when launching IE:

res://iesetup.dll/HardAdmin.htm

Windows Server-Internet Explorer-HardAdmin.htm

If you try to open a website, you will see a pop-up window that tells you the Content from the website listed below is being blocked by the IE ESC:

Windows Server-Internet Explorer-content of the website blocked IE ESC

You must either click Add to add the website to the Trusted sites zone or click Close to open in a restricted mode. A part of the content of the website (such as JavaScript or Web fonts) will not be available in the last case. As a result, most websites will lose some of their functionality.

How to disable Enhanced Security Configuration (IE ESC) of Internet Explorer on Windows Server 2019/2016

  1. Click the Start Button and Launch Server Manager:

Windows Server-Internet Explorer-Launch Server Manager

2. Head to Local Server.

3. Find IE Enhanced Security Configuration and click on On:

Windows Server-Internet Explorer-IE Enhanced Security Configuration

4. Turn off IE ESC for Administrators and/or for Users and click OK:

Windows Server-Internet Explorer-disable enhanced security configuration-IE ESC

5. Be sure to restart Internet Explorer!

  Now when you launch IE you will see soft configuration page telling you Internet Explorer Enhanced Security Configuration not enable:

res://iesetup.dll/SoftAdmin.htm

Windows Server-Internet Explorer-SoftAdmin.htm

You can visit all websites without adding them to the Trusted sites zone:

Windows Server-Internet Explorer-Trusted sites zone

 

 

 

Please refer to the following article to know more. 
Knowledge Base: How to hide my Windows 2003 server from the Microsoft Computer Browser service?

Was this article helpful?
Dislike 0
Views: 122