ENVIRONMENT: Winnt-2000-XP, Internet Explorer.
PROBLEM: Users assigned a normal user policy in Windows can't download and install ActiveX components.
As the administrator you have to go to the workstation, logon as an Administrator go to the webpage and let the ActiveX component install itself.
SOLUTION: To enable normal users to download and install ActiveX components from websites, just give read, write & execute rights to the "C:\WINNT\Downloaded Program Files" folder. This is the place where Internet Explorer downloads the .ocx etc.
In the ZENworks User Policy you can edit the Dynamic Local User policy and add the directory to the list and give the three rights to it.
To stop users from downloading all kinds of ActiveX spyware etc., components, just go in ZENworks to the Windows group policy editor and disable the possibility to download any ActiveX components from the "Internet Zone."
To enable the installing ActiveX from any webpage, just add them to the "Trusted site zone."
This way, with ZENworks you can easily control which webpages (intranet or internet) may install ActiveX components.
If you have any questions you may contact Dario at email@example.com
Disclaimer: As with everything else at Cool Solutions, this content is definitely not supported by Novell (so don't even think of calling Support if you try something and it blows up).
It was contributed by a community member and is published "as is." It seems to have worked for at least one person, and might work for you. But please be sure to test, test, test before you do anything drastic with it.