Setting the value of this per-machine system policy to "1" prevents nonadministrative users from using a Browse Dialog to locate sources of managed applications stored on media, such as CD-ROM. The "Use feature from:" combo box for direct input is locked and the "Browse..." button is disabled. For more details on source browsing, see source resiliency.

DisableBrowse overrides AllowLockdownBrowse and prevents browsing even if AllowLockdownBrowse is set.

Registry Key


Data Type



In some cases with DisableBrowse set, a nonadministrative user may still be capable of installing managed applications from sources on correctly labeled media. Setting the DisableBrowse policy only disables the capability to browse to sources. It can be used to prevent a nonadministrative user from browsing to a new source during an install-on-demand installation, reinstallation, or repair. If AllowLockdownMedia is set, the nonadministrative user could still install a managed application from correctly labeled media.

DisableBrowse prevents the nonadministrative user from browsing to a new media location or any other source location. For details of how to secure media sources of managed applications see Source Resiliency.

For information about the interaction of this policy with installation sources, see Managing Installation Sources.