Group Policy configuration for BrowserCheck

Document created by agentQ on Mar 13, 2013
Version 1Show Document
  • View in full screen mode

The following group policy configuration is a one time setup and does not need to be changed for every BrowserCheck MSI update. Using these recommended steps administrators can pre-configure BrowserCheck in domain based group policy environments.

 

 

* Suppress user interaction to allow Qualys BrowserCheck IE Add-ons:

 

    1. In the Group PolicyEditor double click ‘Add-on List’ under ComputerConfiguration/Administrative Templates/Windows Components/InternetExplorer/Security Features/Add-on Management
    2. Select Radio button Enabled (if not already) in the Add-On List dialog
    3. Show…button to enter Add-on IDs for BrowserCheck
    4. {7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} for Value name and 1 for Value
    5. {7D2FB79E-E58C-4DB5-A36F-AC1C73967FA5} for Value name and 1 for Value

     

 

* Add site into IE Trusted zone to enable advanced scan:

 

Use the following urls to add https://browsercheck.qualys.com into IE trusted sites:
http://support.microsoft.com/kb/816703

http://community.spiceworks.com/how_to/show/325-deploy-ie-trusted-sites-through-group-policy-2008

 

* BrowserCheck Chrome Extension:


If you are using Administrator Policy Templates for chrome, use
ExtensionInstallForcelist (http://dev.chromium.org/administrators/policy-list-3#ExtensionInstallForcelist) to add the following for BrowserCheck:

 

ejhnkognlohdkpjkjongioociddgoibk;https://clients2.google.com/service/update2/crx

 

 

 


 

 

 

 

Attachments

    Outcomes