Internet Explorer Enhanced Security Configuration adjusts the security levels for the existing security zones. The following table describes how each zone is affected.
|Internet zone||High||This zone has the same security settings as the Restricted sites zone. All Internet and intranet sites are assigned to this zone by default.
Web pages may not display in Internet Explorer as expected and applications that require the browser may not work correctly because scripts, Microsoft ActiveX controls, the Microsoft virtual machine (Microsoft VM) for HTML content, and file downloads have been disabled. If you trust an Internet site and need it to be functional, you can add that site to the Trusted sites zone in Internet Explorer.
Access to scripts, executable files, and other files on Universal Naming Convention (UNC) shares is restricted unless the share is added to the Local intranet zone explicitly.
|Local intranet zone||Medium-Low||
When visiting intranet sites, you may be repeatedly prompted for credentials (your user name and password) as a result of the enhanced security configuration. In the past, Internet Explorer automatically passed your credentials to intranet sites. The enhanced security configuration disables the automatic detection of intranet sites. If you want your credentials to be passed automatically to certain intranet sites, add those sites to the Local intranet zone.
Do not add Internet sites to the Local intranet zone, because your credentials will be passed automatically to the site if they are requested.
|Trusted sites zone||Medium||This zone is for the Internet sites whose content you trust.|
|Restricted sites zone||High||
This zone contains sites you don’t trust, such as sites that may damage your computer or data if you attempt to download or run files from them.