I have come to discover that many financial services organizations as well as other businesses in general have started migrating their software to web based solutions. This is great because this means that tech does not have to spend a lot of time installing and configuring software on end users PCs. However, there is a new challenge that must be addressed and that is when the web based software in question needs to have an ActiveX update applied. When this happens the user is required to click the yellow bar at the top of the Internet Explorer window to allow the ActiveX control to install. This doesn’t sound like a major deal, but when dealing with hundreds of end users who apparently suffer from yellow color blindness, they simple pick up the phone and start calling tech support when their fancy web application isn’t working anymore.
There is good news however, if your users are part of an Active Directory domain, you can configure a Group Policy Object to have the ActiveX control automatically accepted, downloaded, and installed. To accomplish this, create a new or modify an existing Group Policy on your domain controller and add the following:
In both the Computer Configuration and User Configuration containers under –
Administrative Templates\Windows Components\Internet Explorer\Internet Control Panel\Security Page\ (Then select the zone the webpage loads from: Local Machine, Trusted-Sites, Internet)
Find and enable the following:
1. Download Signed ActiveX Controls Enable (Don’t select Prompt)
2. Download UnSigned ActiveX Controls Enable
Save the Group Policy and then run gpupdate on the client computer to test. Once the end users reboot their PCs, the next ActiveX update they receive will automatically be downloaded and installed.