当在Windows Sever 2008 R2中运动IE8的时候会发现默认情况下IE启用了增强的安全配置,为了方便而且是在内网的情况下我们可以关闭IE8的增强安全配置,操作很简单如下步骤。

一,以本机管理员或是域管理员的身份登陆系统,在“开始”菜单-->“管理工具”-->“服务器管理器”,如下图:(或者点击任务栏上的服务器管理器图标即可)


二,或者在“开始”菜单-->“运行”中输入“servermanager.msc”回车即可,如下图:

三,在打开的服务器管理器窗口中选中“服务器管理器”,然后单右边窗口中的“配置 IE ESC”如下图:


在接下来打开的新窗口中,分别选中“管理员”-->“禁用”,“用户”-->“禁用”。默认情况是开启的,这里全部禁用即可,如下图:

PowerShell 本地化脚本:

Disable-InternetExplorerESC.ps1
function Disable-InternetExplorerESC {

    $AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"

    $UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"

    Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value

    Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value

    Stop-Process -Name Explorer

    Write-Host "IE Enhanced Security Configuration (ESC) has been disabled." -ForegroundColor Green

}

Disable-InternetExplorerESC
Enable-InternetExplorerESC.ps1
function Enable-InternetExplorerESC {

    $AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"

    $UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"

    Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value

    Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value

    Stop-Process -Name Explorer

    Write-Host "IE Enhanced Security Configuration (ESC) has been enabled." -ForegroundColor Green

}

Enable-InternetExplorerESC

PowerShell 远程脚本:

Disable-IEESC.PS1
<#

    .Synopsis

        Disables Internet Explorer Enhanced Security(IE ESC).

    .Description

        This script disables IE ESC on list of given Windows  servers

    .Parameter ComputerName

        Computer name(s) for which you want to disable IE ESC.

    .Parameter OutputToLogs

        This option allows you to save the failed and successful computer names to text files in

        c:\ drive. The successful computer will be avialable in c:\successcomps.txt file and the

        failed computers will be in c:\failedcomps.txt

    .Example

        Disable-IEESC.PS1 -ComputerName Comp1, Comp2

        Disables IE ESC on Comp1 and Comp2

    .Example

        Disable-IEESC.PS1 -ComputerName Comp1, Comp2 -OutputToLogs

        Disables IE ESC and stores output in logfiles located in c:\ 

    .Example

        Get-Content c:\servers.txt | Disable-IEESC.PS1 -OutputToLogs

        Disables IE ESC on computers listed in servers.txt and saves success and failed computers list to c:\    

    .Notes

        NAME:      Disable-IEESC.PS1

        AUTHOR:    Sitaram Pamarthi

        WEBSITE:   http://techibee.com

#>

[cmdletbinding()]

param(

    [parameter(ValueFromPipeline=$true,ValueFromPipelineByPropertyName=$true)]

    [string[]]$ComputerName = $env:computername,

    [switch]$OutputToLogs

)

begin {

    $AdministratorsKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"

    $UsersKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"

    $SuccessComps =@();

    $FailedComps = @();

}

process {

    foreach($Computer in $ComputerName) {

        if(!(Test-Connection -Computer $Computer -count  -ea )) {

            Write-Host "$Computer NOT REACHABLE"

            $FailedComps += $Computer

            continue

        }

        Write-Host "Working on $Computer"

        try {

            $BaseKey = [Microsoft.Win32.RegistryKey]::OpenRemoteBaseKey("LocalMachine",$Computer)

            $SubKey = $BaseKey.OpenSubKey($AdministratorsKey,$true)

            $SubKey.SetValue("IsInstalled",,[Microsoft.Win32.RegistryValueKind]::DWORD)

            $SubKey = $BaseKey.OpenSubKey($UsersKey,$true)

            $SubKey.SetValue("IsInstalled",,[Microsoft.Win32.RegistryValueKind]::DWORD)

            Write-Host "Successfully disabled IE ESC on $Computer"

            $SuccessComps += $Computer

        }

        catch {

            Write-Host "Failed to disable IE ESC on $Computer"

            $FailedComps += $Computer

        }

    }

}

end{

    if($OutputToLogs) {

        $SuccessComps | Out-File "c:\successcomps.txt"

        $FailedComps | Out-File "c:\failedcomps.txt"

    }

}

Enable-IEESC.PS1
<#

    .Synopsis

        Enables Internet Explorer Enhanced Security(IE ESC).

    .Description

        This script enables IE ESC on list of given Windows  servers

    .Parameter ComputerName

        Computer name(s) for which you want to enable IE ESC.

    .Parameter OutputToLogs

        This option allows you to save the failed and successful computer names to text files in

        c:\ drive. The successful computer will be avialable in c:\successcomps.txt file and the

        failed computers will be in c:\failedcomps.txt

    .Example

        Enable-IEESC.PS1 -ComputerName Comp1, Comp2

        Enables IE ESC on Comp1 and Comp2

    .Example

        Enable-IEESC.PS1 -ComputerName Comp1, Comp2 -OutputToLogs

        Enables IE ESC and stores output in logfiles located in c:\ 

    .Example

        Get-Content c:\servers.txt | Enable-IEESC.PS1 -OutputToLogs

        Enables IE ESC on computers listed in servers.txt and saves success and failed computers list to c:\    

    .Notes

        NAME:      Enable-IEESC.PS1

        AUTHOR:    Sitaram Pamarthi

        WEBSITE:   http://techibee.com

#>

[cmdletbinding()]

param(

    [parameter(ValueFromPipeline=$true,ValueFromPipelineByPropertyName=$true)]

    [string[]]$ComputerName = $env:computername,

    [switch]$OutputToLogs

)

begin {

    $AdministratorsKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"

    $UsersKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"

    $SuccessComps =@();

    $FailedComps = @();

}

process {

    foreach($Computer in $ComputerName) {

        if(!(Test-Connection -Computer $Computer -count  -ea )) {

            Write-Host "$Computer NOT REACHABLE"

            $FailedComps += $Computer

            continue

        }

        Write-Host "Working on $Computer"

        try {

            $BaseKey = [Microsoft.Win32.RegistryKey]::OpenRemoteBaseKey("LocalMachine",$Computer)

            $SubKey = $BaseKey.OpenSubKey($AdministratorsKey,$true)

            $SubKey.SetValue("IsInstalled",,[Microsoft.Win32.RegistryValueKind]::DWORD)

            $SubKey = $BaseKey.OpenSubKey($UsersKey,$true)

            $SubKey.SetValue("IsInstalled",,[Microsoft.Win32.RegistryValueKind]::DWORD)

            Write-Host "Successfully enabled IE ESC on $Computer"

            $SuccessComps += $Computer

        }

        catch {

            Write-Host "Failed to enable IE ESC on $Computer"

            $FailedComps += $Computer

        }

    }

}

end{

    if($OutputToLogs) {

        $SuccessComps | Out-File "c:\successcomps.txt"

        $FailedComps | Out-File "c:\failedcomps.txt"

    }

}

Windows Server 2008 R2中关闭“IE增强的安全配置”的更多相关文章

  1. 在系统启动时,Windows Vista 中、 在 Windows 7 中,Windows Server 2008 中和在 Windows Server 2008 R2 中的 497 天后未关闭 TIME_WAIT 状态的所有 TCP/IP 端口

    在系统启动时,Windows Vista 中. 在 Windows 7 中,Windows Server 2008 中和在 Windows Server 2008 R2 中的 497 天后未关闭 TI ...

  2. Windows Server 2008 R2中的ASP.NET环境架设

    .NET Framework的部分功能在Windows Server 2008 R2得到支持,包括:.NET 2/3/3.5的子集和ASP.NET.另外,PowerShell也在Server Core ...

  3. 在Windows Server 2008 R2中使用web方式修改域用户账户密码

    在Windows的domain环境下,加域的客户端修改账户密码是一件很easy的事情:即使没有加域的客户端如果组织中,使用Exchange邮件系统,借助Exchange的owa也可以轻松修改账户密码. ...

  4. Windows server 2008 R2中安装MySQL !

    我今天打算在Windows server 2008 R2中安装MySQL,可是总是发现ODBC连接器安装错误,无论我采用MySQL的整体安装包,还是单独的ODBC连接器安装文件!! 最后上网搜索了很久 ...

  5. Windows Server 2008 R2中IIS7.5配置完网站权限不足问题的解决办法:

    Windows Server 2008 R2中IIS7.5配置完网站权限不足问题的解决办法:常见问题:HTTP 错误 500.0 - Internal Server Error无法显示页面,因为发生内 ...

  6. windows server 2008 R2中建立ftp站点

    在windows server 2008 R2中建立ftp站点,要遵循以下步骤: (1) 开启IIS中的ftp服务: (2) 在IIS中建立ftp站点. 具体过程如下: (1) 开启IIS中的ftp服 ...

  7. 如何在Windows Server 2008 R2中更改桌面图标

    如何在Windows Server 2008 R2中更改桌面图标 Windows Server 2008 R2 已经在 MSDN 和 TechNet Plus 订阅上公布,gOxiA 在第一时间下载并 ...

  8. Windows Server 2008 R2中无法使用360免费Wifi的解决方案

    为了使主机和虚拟机在同一个无线网络中,而虚拟机的系统是Windows Server 2008 R2 64位的,使用360免费wifi,始终无法开启.在网上查找解决方案,终于找到了原因:Windows ...

  9. 在Windows Server 2008 R2中删除网桥

    How to remove a network bridge in Windows Server 2008 R2 症状: 删除网桥的时候,按理说应该在“网络连接”中选择要被删除的网桥,右键点击,然后选 ...

随机推荐

  1. 更改JENKINS主目录

    在部署时,发现直接启动WAR包没办法改主目录,而此主目录空间太小, 唯有安装TOMCAT之后进行更改... 参考文档: 工作中,由于Jenkins默认的主目录空间太小,导致需要将Jenkins默认的主 ...

  2. PHP 判断是表单否有这个参数,如果没有则设置默认值

    <?php @$name = $_GET["name"]; if(isset($name)) { echo "name = " .$name; } els ...

  3. UVA 1513 Movie collection

    #include<stdio.h> #include<string.h> #include<stdlib.h> #define N 200010 #define l ...

  4. [转贴]gsoap使用心得!

    最近换了个工作环境,现在在大望路这边上班,呵,刚上班接到的任务就是熟悉gsoap!废话少说,现在开始gSoap学习! gSOAP是一个夸平台的,用于开发Web Service服务端和客户端的工具,在W ...

  5. TF卡的Class4/Class6/Class10

    TF卡全称TransFlash卡,即T-Flash又称MicroSD,随设备微型化的需要,TF卡用途越来越广,速度也越来越快,从最初的Class2早已发展到目前主流的Class10,TF卡体积为15m ...

  6. 【Xamarin挖墙脚系列:Xamarin的核心】

    原文:[Xamarin挖墙脚系列:Xamarin的核心] Xamarin 包含两个商业产品 :Xamarin.IOS, Xamarin.Android.他们都是通过开源的基于.Net的Mono项目构建 ...

  7. git使用的常见命令(一)

    .查看当前有哪些branch git branch 其中有*选中的分支是你的当前使用的分支 .新建一个分支 git branch dev_xiaoming .切换到一个分支 git checkout ...

  8. C# 验证码识别基础方法及源码

    先说说写这个的背景 最近有朋友在搞一个东西,已经做的挺不错了,最后想再完美一点,于是乎就提议把这种验证码给K.O.了,于是乎就K.O.了这个验证码.达到单个图片识别时间小于200ms,500个样本人工 ...

  9. xamarin for vs2013

    安装需求(下载的包及版本) 先安装VS2013 然后到官网下Xamarin,运行后会自动下载以下文件 这是下载的详细列表 jdk-6u39-windows-i586.exe(69.73M) Andro ...

  10. WebTable 扩展

    # coding:utf-8 """ 页面 table处理 """ from selenium import webdriver from ...