4.4 SECZRSOP.INF Example
The INF file format is specified earlier in section 4.1.3. The following example demonstrates its use in describing the security zone settings for Internet Explorer through use of SECZRSOP.INF file. This file is placed according to the layout specified in section 2.2.1 on the remote storage location in a GPO path, such as "\\Redmond\Sysvol\Redmond\Policies\{GPO-GUID}\user\Microsoft\IEAK" as written by the administrative tool extension.
-
[Security Imports] Zones=5 IEESCEnabled=0 [Privacy] AdvancedSettings=0 FirstPartyType=3 ThirdPartyType=3 [Zone0_HKCU] DisplayName=Computer Description=Your computer Icon=explorer.exe#0100 CurrentLevel=0 Flags=33 Action0=1201:1 Action1=1200:0 Action2=1E05:196608 Action15=1C00:131072 Action18=1400:0 Action19=1405:0 [Zone1_HKCU] DisplayName=Local intranet Description=This zone is for all websites that are found on your intranet. Icon=shell32.dll#0018 MinLevel=65536 RecommendedLevel=66816 CurrentLevel=66816 Flags=323 Action0=1201:3 Action1=1200:0 Action2=1E05:131072 Action15=1C00:131072 Action18=1400:0 Action19=1405:0 Mapping0=ftp://144.16.2.1 [Zone2_HKLM] DisplayName=Trusted sites Description=This zone contains websites that you trust not to damage your computer or data. Icon=inetcpl.cpl#00004480 CurrentLevel=69632 Flags=71 Action0=1201:3 Action1=1200:0 Action2=1E05:131072 Action5=1A00:131072 Action15=1C00:65536 Action16=1402:0 Action18=1400:0 Action23=1804:1 Mapping0=www.contoso.com