Microsoft-Windows-IE-ESC 组件指定有关 Internet Explorer 增强的安全配置 (ESC) 的详细信息。The Microsoft-Windows-IE-ESC component specifies details about Internet Explorer Enhanced Security Configuration (ESC). 当启用 Internet Explorer ESC 时,它会将服务器暴露给不属于本地 Intranet 区域或受信任的站点区域的网页中的潜在安全攻击。When Internet Explorer ESC is enabled, it reduces the exposure of your server to potential security attacks from Web pages that do not belong to the Local Intranet zone or the Trusted Sites zone.

可以指定:You can specify:

  • 对于启用了 ESC 的:仅限管理员;所有用户,管理员和所有用户;或二者都不是。For whom ESC is enabled: administrators only; all users, both administrators and all users; or neither.
  • 本地 intranet 站点和 Internet 站点,其内容可以由管理员和启用了 ESC 的用户信任。Local intranet sites and Internet sites whose content can be trusted by administrators and users for whom ESC is enabled. 有关详细信息,请参阅 LocalIntranetSitesTrustedSitesFor more information, see LocalIntranetSites and TrustedSites.

本节内容In This Section

设置Setting 说明Description
IEHardenAdminIEHardenAdmin 指定是否为计算机上的所有管理员启用了 ESC。Specifies whether ESC is enabled for all administrators on the computer.
IEHardenUserIEHardenUser 指定是否为计算机上的所有用户启用了 ESC。Specifies whether ESC is enabled for all users on the computer.

应用于Applies To

若要确定某个组件是否适用于你在构建的映像,请将你的映像加载到 Windows SIM 中并搜索组件或设置名称。To determine whether a component applies to the image you’re building, load your image into Windows SIM and search for the component or setting name. 有关如何查看组件和设置的信息,请参阅 在答案文件中配置组件和设置For information on how to view components and settings, see Configure Components and Settings in an Answer File.