Problem statement

SDS is based on internet technology (HTML, ActiveX). Internet Explorer 7 (IE7) is the new standard webbrowser within
Oc. When these two are combined, problems may arise during software download. These problems have been traced
back to the security settings in IE7, which conflict with the ActiveX components.

Suggested security settings

Internet Options | General | Temporary Internet Files | Check for newer versions of stored pages: Every time I
visit the webpage.
We suggest to add http://134.188.254.100 and http://oceservice to the Trusted Sites, and adjust the settings of
Trusted Sites to (* marks difference from default):
.NET Framework:
o Loose XAML: Enable
o XAML browser applications: Enable
o XPS document: Enable
.NET Framework reliant components:
o Run components not signed with Authenticode: Enable
o Run components signed with Authenticode: Enable
ActiveX controls and plug-ins:
Allow previously unused ActiveX controls to run without prompting: Enable (*)
Allow Scriptlets: Enable (*)
Automatic prompting for ActiveX controls: Enable (*)
Binry and script behaviors: Enable
Display video and animation on a webpage that does : Disable
Download signed ActiveX controls: Enable (*)
Download unsigned ActiveX controls: Enable (*)
Initialize and script ActiveX controls not marked: Enable (*)
Run ActiveX controls and plug-ins: Enable
Script ActiveX controls marked as safe for scripting: enable
Downloads:
Automatic prompting for file downloads: Enable (*)
File download: Enable
Font download: Enable
Enable .NET Framework setup: Enable
Miscellaneous:
Access data sources across domains: Enable (*)
Allow META REFRESH: Enable
Allow scripting of Internet Explorer Web browser control: Enable (*)
Allow script initiated windows without size or position constraints: Enable (*)
Allow web pages to use restricted protocols for active content: Prompt

Allow websites to open windows without address or status bars: Enable (*)
Display mixed content: Prompt
Don't prompt for client certificate selection when no: Enable
Drag and drop or copy and paste files: Enable
Include local directory path when uploading files to a server: Enable
Installation of desktop items: Enable
Launching applications and unsafe files: Enable (*)
Launching programs and files in an IFRAME: Enable (*)
Navigate sub-frames across different domains: Enable (*)
Open files based on content, not file extension: Enable
Software channel permissions: Low (*)
Submit non-encrypted form data: Enable
Use Phishing Filter: Disable (*)
Use Pop-up Blocker: Disable (*)
Userdata persistence: Enable
Web sites in less privileged web content zone can navigate: Prompt(*)

Scripting:
Active scripting: Enable
Allow Programmatic clipboard access: Enable (*)
Allow status bar updates via script: Enable (*)
Allow websites to prompt for information using scripted windows (*)
Scripting of Java applets: Enable
User authentication:
Logon: Automatic logon only in the Intranet zone