Tadwick

In my Outlook add-in I have a windows form with a webbrowser control that loads an html page with an embedded activex control. On both my development machine and client test machine I am running XP SP2 w/IE7 and I have the IE7 advanced options set to allow active content to run in files on my computer.

On the development machine I get no information bar warning in IE7 or my webbrowser control. However, on the client test machine I get the warning message below even though when I load the page in IE7 I get no warning.

"To help protect your security, Internet Explorer has restricted this file from showing active content that could access your computer. Click here for options."

Do I somehow need to grant trust within the .Net framework configuration to prevent the warning message. Can this be done in the SetSecurity project

Tx, Tad



Re: Visual Studio Tools for Office CAS Policy Issue in Oulook add-in? WebBrowser Control not allowing active content w/out approval each time

Tadwick

Ok so this appears to be related to the local machine zone lockdown and can be apparently circumvented by using the Mark of the Web (add this comment <!-- saved from url=(0013)about:internet --> to first line of host HTML page loaded into the webbrowser control or by modifying the registry key

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN

and setting a DWORD value for Outlook.exe to 0 to disable the lockdown policy.

I tried the Mark of the Web but it didn't help and while the registry setting did work it seems a brutal fix and, more importantly, rather broad in its applicability. I don't particularly want to be responsible for having users expose the entire Outlook application to local machine vulnerabilities. I feel more comfortable allowing it for my add-in only because at least I have control on which pages are loaded through the browser control. In addition, when I read the documentation for the webbrowser control I thought that adding Full Trust to my add-in would be sufficient.

Does anyone know of a more granular way to disable the local machine lockdown for an outlook add-in, say the DLL or someother way.

Thanks, Tad





Re: Visual Studio Tools for Office CAS Policy Issue in Oulook add-in? WebBrowser Control not allowing active content w/out approval each time

Tadwick

A more granular way method seems to be the CoInternetSetFeatureEnabled function but I don't know how to code this in C#.



Re: Visual Studio Tools for Office CAS Policy Issue in Oulook add-in? WebBrowser Control not allowing active content w/out approval each time