Microsoft-Windows-IE-ESC

The Microsoft-Windows-IE-ESC component specifies details about Internet Explorer Enhanced Security Configuration (ESC). When Internet Explorer ESC is enabled, it reduces the exposure of your server to potential security attacks from Web pages that do not belong to the Local Intranet zone or the Trusted Sites zone.

You can specify:

  • For whom ESC is enabled: administrators only; all users, both administrators and all users; or neither.
  • Local intranet sites and Internet sites whose content can be trusted by administrators and users for whom ESC is enabled. For more information, see LocalIntranetSites and TrustedSites.

In This Section

Setting Description
IEHardenAdmin Specifies whether ESC is enabled for all administrators on the computer.
IEHardenUser Specifies whether ESC is enabled for all users on the computer.

Applies To

To determine whether a component applies to the image you’re building, load your image into Windows SIM and search for the component or setting name. For information on how to view components and settings, see Configure Components and Settings in an Answer File.

LocalIntranetSites

TrustedSites

Components