Govardhan Gunnala

On Server Side: Enable IIS Web Page Debug Logging:

1. Enable Debug Mode in web.Config
2. Disable CustomErrors Mode in web.Config

 

On Client Side: Enable Detailed IIS Logging (i.e., disable “show Friendly HTTP error messages”):

 

Playing around with Web Servers and Web Sites Configuration Files (Web.Config):

In the IIS Manager select the Web site and Click on “Configuration editor”

Use “Search Configuration” button which launches a Wizard that shows the changes in effect for that selected web site on the IIS server.

 

 

Verify the web site bindings (Default web site binding should look like below):

Scenario: I wanted to set a default custom view for all users connecting to our XA sessions so that users at every logon will have their outlook views reset and configured the custom view defined by me.

 

I know that Outlook views are saved to Exchange server mailboxes, however I’ve tried below couple of things to see if they help achieving this from a client side changes but in vain.

 

Exchange Server’s mdbvu32.exe tool reveals where Outlook stores its folder views. If you use mdbvu32.exe to open the root folder of the mailbox Information Store (IS), you see the IPM_COMMON_VIEWS folder. It contains two types of objects: IPM.Microsoft .FolderDesign.NamedView and IPM.Microsoft.FolderDesign.FormsDescription. In other words, these objects are folder views and Outlook forms—in particular, forms published to your Personal Forms library.

Reference: Where does Outlook store its view settings?

 

Managing via Outlook.xml file:

Navigation Pane settings (.xml)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook\Outlook.xml

 

Source: Navigation Pane settings (.xml)

Managing via OUTCMD.DAT file:

Outlook Default Settings CMD file (OUTCMD.DAT)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook\OUTCMD.DAT

Source: How to restore the Outlook default installation, toolbars and settings

The following is a list of data store and configuration files used by Microsoft Outlook. Some of the folders might be hidden folders. To view them, do one of the following:

Windows XP

1. Click Start, and then click My Computer.
2. On the Tools menu, click Folder Options, click the View tab, and then click the Show hidden files and folder option.

Windows 2000

1. Double-click My Computer on your desktop.
2. On the Tools menu, click Folder Options, click the View tab, and then click the Show hidden files and folder option.

Your configuration may not include all of the following files. Some files are created only when you customize Outlook features.

Outlook data files (.pst)

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Outlook

Offline Folders file (.ost)

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Outlook

Personal Address Book (.pab)

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Outlook

Offline Address Books (.oab)

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Outlook

Command bar and menu customizations (.dat)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook

Navigation Pane settings (.xml)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook\Outlook.xml

This file includes Shortcuts, Calendar, and Contact links.

Registered Microsoft Exchange extensions (.dat)

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Outlook

Outlook contacts nicknames (.nk2)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook

Rules (.rwz)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook

If you upgraded from a version of Outlook prior to Outlook 2002, you may have a .rwz file on your computer hard disk drive. The file is no longer needed and the rules information is now kept on the server for Microsoft Exchange e-mail accounts, and within the personal folders file (.pst) (Personal Folders file (.pst): Data file that stores your messages and other items on your computer. You can assign a .pst file to be the default delivery location for e-mail messages. You can use a .pst to organize and back up items for safekeeping.) for POP3 and IMAP e-mail accounts. You can delete the file.

If you use the rules import or export feature, the default location for .rwz files is drive:\Documents and Settings\<user>\My Documents.

Print styles (Outlprnt with no extension)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook

Signatures (.rtf, .txt, .htm)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Signatures

Stationary (.htm)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Stationary

Custom forms

drive:\Documents and Settings\<user>\Local Settings\Application Data\Microsoft\Forms

Dictionary (.dic)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Proof

Templates (.oft)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Templates

Send/Receive settings (.srs)

drive:\Documents and Settings\<user>\Application Data\Microsoft\Outlook

Message (.msg, .htm, .rtf)

drive:\Documents and Settings\<user>\My Documents

 

 

Source: Outlook file locations – Outlook – Office.com

Scenario: When you install a bunch of new applications from Android Market, you find that your Android phone not doing any good other than constantly rebooting at every few minutes (say five minutes in my case). 

 

You don’t know which application is that  causing the reboots and you don’t have any idea as what’s going on with your Android. Moreover, your Android doesn’t let you do any activity on the phone as it remains busy getting rebooted all times.

 

Troubleshooting:

-1.   It’s quite possible that your Android applications configuration files residing on your SD card got corrupted. Try moving folder named “Android” and let your phone have it created then the Android  should start up all just fine.

0. Disable internet access from your phone to avoid any of the online updates that’s causing your Android to constantly reboot.

1. Use Android process explorer to view which applications constantly running on the system and their CPU and Memory usage.

 

2. Use Dalvik Debug Monitor to see what actions going on on the phone. What kind of errors, warnings and information events taking place.

Based on these observations, guess what application could be causing the reboots issue and then start uninstalling all such suspicious applications.

3. Ensure that there is at least 33% of your phone internal memory is available free for it to be able to launch the applications successfully.

 

4. Unmount your SD card for a while and let the phone be relaxed from it’s constant reboot issues.

 

5. Let your Android processor be cooled down and then bring the android up without mounting the SD card

6.  Observe the Android performance for couple of minutes (say #10) and then if it all behaves well then

7.  Mount the SD card and let the Android to come up

 

Cause:

1. System ran low on internal RAM resources and couldn’t launch the auto startups of newly installed applications
2. One of the rouge application caused your system to go into reboot mode
3. SD Card access might got broken due to constantly IO activity with the reboots
4. Android config files on your SD Card got corrupted, please have them recreated

 

Fix: Uninstall couple of Apps and make sure you have at least 33% of phone internal memory available free for your Android to operate. Avoid installing apps like dual SD mount, Apps2SD, etc.,. Have the “Android” folder on your SD Card recreated by the android by removing/renaming the existing folder.

SPECIAL HIRE DETAILS

S.No.	Type of Service	Tariff per KM
		Spl Hire Tariff (Rs/Km)
1	Ordinary	32.00
2.	City Ordinary *	31.00
3.	Express	35.00
4.	Deluxe	3200
5.	Super Luxury (Non / Ac)	33.00
6.	Metro Express *	32.00
7.	Metro Liner/Metro Deluxe *	32.00
8.	Garuda (Volvo)	66.00
9	City Sheetal	62.00
10	Ordinary-Mini (36 & 42 S. C)	29.00

(a)	APSRTC does not take responsibility for any delay/damages caused by breakdowns, accidents, mechanical failures etc., when a bus is given on hire.
(b)	A reservation fee of Rs.500/- shall be collected in advance together with the estimated charges from the hirer.
(c)	No over load shall be allowed on the bus given for hire. In case of any over loading, it shall be charged with ticket fare for each of the passenger based upon the type of the service..
(d)	If any hire contract is not tacken by the hirer, the reservation fee of R.s 500/- shall be for feited in addition to the admissible cost involved.
(e)	The additional expenses like local tax or taxes levied by the other states shall be borne by the hirer.
(f)	The permit fee shall be borne by the hirer.
(g)	The hirer shall be responsible in guiding the driver on the route.
(h)	The hirer should claim the amount refundable within 3 months from the date of contract.
(i)	The hirer shall not in turn hire out the bus to others.
(j)	The KMs operated by the hire buses will be taken into account from the Depot and back to the Depot .
(k)	A fraction of an hour shalll be treated as one full hour for the purpose of calculation of time/charges.
(l)	A concession of 10% in total hire charges be allowed for the educational tours of the students studying in Govt., Govt. recognised institutions.
(m)	The timings shall be reckoned from the time of the vehicle goes out of the Depot till it reaches back to the Depot

 

Source:  De’Longhi Heaters

DESCRIPTION
Starts one or more processes on the local computer.  To specify the program that runs in the process, enter an executable file or script file, or a file that can be opened by using a program on the computer. If you specify a non-executable file, Start-Process starts the program that is associated with the file, much like the Invoke-Item cmdlet.
    
You can use the parameters of Start-Process to specify options, such as loading a user profile, starting the process in a new window, or using alternate credentials.

SYNTAX

Start-Process [-FilePath] <string> [[-ArgumentList] <string[]>] [-PassThru] [-Verb <string>] [-Wait] [-WindowStyle {Normal | Hidden | Minimized | Maximiz
ed}] [-WorkingDirectory <string>] [<CommonParameters>]

 

Example: To launch Outlook in Maximized Window mode automatically

Start Outlook -WindowStyle Maximized

Prompt Window:

 

Disable Via Registry:

 

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"IE8RunOnceLastShown"=dword:00000001
"IE8RunOnceLastShown_TIMESTAMP"=hex:68,2d,96,3d,b7,ce,cc,01
"IE8TourShown"=dword:00000001
"IE8TourShownTime"=hex:58,6d,47,3f,b7,ce,cc,01

Internet Explorer Enhanced Security Configuration

Overview

Internet Explorer Enhanced Security Configuration places your server and Internet Explorer in a configuration that decreases the exposure of your server to potential attacks that can occur through Web content and application scripts. As a result, some Web sites may not display or perform as expected.

This topic contains the following information:

· Internet Explorer security zones

· How to browse when Internet Explorer Enhanced Security Configuration is enabled

· Effects of Internet Explorer Enhanced Security Configuration

· Internet Explorer Enhanced Security Configuration and Terminal Services

· Effects of Internet Explorer Enhanced Security Configuration on the Internet Explorer user experience

· Managing Internet Explorer Enhanced Security Configuration

· Add sites to the Trusted sites zone

· Add sites to the Local intranet zone

· Apply Internet Explorer Enhanced Security Configuration to specific users

· Strengthen Internet Explorer security settings manually on your server

· Upgrading from previous versions

· Browser security best practices

Internet Explorer security zones

In Internet Explorer, you can configure security settings for several built-in security zones: the Internet zone, the Local intranet zone, the Trusted sites zone, and the Restricted sites zone. Internet Explorer Enhanced Security Configuration assigns security levels to these zones as follows:

· For the Internet zone, the security level is set to High.

· For the Trusted sites zone, the security level is set to Medium, which allows browsing of many Internet sites.

· For the Local intranet zone, the security level is set to Medium-low, which allows your user credentials (user name and password) to be sent automatically to sites and applications that need them.

· For the Restricted sites zone, the security level is set to High.

· All Internet and intranet sites are assigned to the Internet zone by default. Intranet sites are not part of the Local intranet zone unless you explicitly add them to this zone.

How to browse when Internet Explorer Enhanced Security Configuration is enabled

Enhanced Security Configuration increases the level of security on your server, but it may also affect Internet browsing in the following ways:

· Because ActiveX controls and scripting are disabled, Internet sites may not display in Internet Explorer as expected and applications that use the Internet may not work correctly. If you trust an Internet site and need it to be functional, you can add that site to the Trusted sites zone in Internet Explorer. If you attempt to browse an Internet site that uses scripting or ActiveX controls, Internet Explorer will prompt you to consider adding the site to the Trusted sites zone. You should add the site to the Trusted sites zone only if you are completely confident that the site is trustworthy and that the URL to be added is indeed the correct one. For more information, see Add sites to the Trusted sites zone.

· Access to intranet sites, Web-based applications that run over a local intranet, and other files on network shares may be restricted. If you trust an intranet site or share and need it to be functional, you can add it to the Local intranet zone. For more information, see Add sites to the Local intranet zone.

Effects of Internet Explorer Enhanced Security Configuration

Internet Explorer Enhanced Security Configuration adjusts the security levels for the existing security zones. The following table describes how each zone is affected.

Zone	Security level	Result
Internet	High	This zone has the same security settings as the Restricted sites zone. All Internet and intranet sites are assigned to this zone by default. Web pages may not display in Internet Explorer as expected and applications that require the browser may not work correctly because scripts, ActiveX controls, and file downloads have been disabled. If you trust an Internet site and need it to be functional, you can add that site to the Trusted sites zone in Internet Explorer. For more information, see Add sites to the Trusted sites zone. Access to scripts, executable files, and other files on Universal Naming Convention (UNC) shares is restricted unless the share is added to the Local intranet zone explicitly. For more information, see Add sites to the Local intranet zone.
Local intranet	Medium-low	When visiting intranet sites, you may be repeatedly prompted for credentials (your user name and password) as a result of Enhanced Security Configuration. Enhanced Security Configuration disables the automatic detection of intranet sites. If you want your credentials to be sent automatically to certain intranet sites, add those sites to the Local intranet zone. For more information, see Add sites to the Local intranet zone. Do not add Internet sites to the Local intranet zone because your credentials will be sent automatically to the site if they are requested.
Trusted sites	Medium	This zone is for the Internet sites whose content you trust. For more information, see Add sites to the Trusted sites zone.
Restricted sites	High	This zone contains sites you do not trust, such as sites that may damage your computer or data if you attempt to download or run files from them.

Enhanced Security Configuration also adjusts the Internet Explorer extensibility and security settings to further reduce exposure to possible future security threats. These settings can be found on the Advanced tab of the Internet Options dialog box in Internet Explorer. The following table describes the settings that are affected.

Name	Default setting	Description
Enable third-party browser extensions	Off	Disables features you installed for use with Internet Explorer that may have been created by companies other than Microsoft.
Play sounds in Web pages	Off	Disables music and other sounds.
Play animations in Web pages	Off	Disables animations.
Check for server certificate revocation	On	Automatically checks a Web site’s certificate to see whether it has been revoked before accepting it as valid.
Do not save encrypted pages to disk	On	Disables saving secured information in your Temporary Internet Files folder.
Empty Temporary Internet Files folder when browser is closed	On	Automatically clears the Temporary Internet Files folder when you close the browser.
Warn if changing between secure and not secure mode	On	Displays a warning that the browser is redirecting from a secure Web site to a non-secure Web site.
Enable memory protection to help mitigate online attacks	Off	Enables Data Execution Prevention (DEP) to help mitigate online attacks. This option applies to Windows Server 2008 only.

These changes reduce the functionality in Web pages, Web-based applications, local network resources, and applications that use a browser to display Help, support, and general user assistance.

For more information about using the Local intranet or Trusted sites zones’ inclusion lists, see Managing Internet Explorer Enhanced Security Configuration.

When Internet Explorer Enhanced Security Configuration is enabled:

· The Microsoft Update Web site is added to the Trusted sites zone. This allows you to continue to get important updates for your operating system.

· The Windows error reporting site is added to the Trusted sites zone. This allows you to report problems encountered with your operating system and search for fixes.

· Several local computer sites (such as http://localhost, https://localhost, and hcp://system) are added to the Local intranet zone. This allows applications and code to work locally so that you can complete common administrative tasks.

· The Platform for Privacy Preferences (P3P) level is set to Medium for the Trusted sites zone. If you want to change the P3P level for any zone other than the Internet zone, go to the Privacy tab of the Internet Options dialog box, and click Import to apply a custom privacy policy. For sample privacy policies, see How to Create a Customized Privacy Import File (http://go.microsoft.com/fwlink/?LinkID=12939).

Internet Explorer Enhanced Security Configuration and Terminal Services

Enhanced Security Configuration applies to different user accounts according to the type of installation. The following table describes how the users are affected.

Type of installation	Enhanced Security Configuration is applied to Administrators	Enhanced Security Configuration is applied to Power Users	Enhanced Security Configuration is applied to Limited Users	Enhanced Security Configuration is applied to Restricted Users
Upgrade of the operating system	Yes	Yes	No	No
Unattended installation of the operating system	Yes	Yes	No	No
Manual installation of Terminal Services	Yes	Yes	Yes	Yes

Note

During the manual Terminal Services installation, you are prompted to disable Internet Explorer Enhanced Security Configuration for users. This allows users to run a terminal server session without restrictions.

For a better experience when Terminal Services is enabled, you should remove Enhanced Security Configuration from members of the Users group. These users have fewer privileges on the server, so they present a lower level of risk if they are victims of an attack. For more information about applying Enhanced Security Configuration, see Apply Internet Explorer Enhanced Security Configuration to specific users.

Effects of Internet Explorer Enhanced Security Configuration on the Internet Explorer user experience

The following table describes how Internet Explorer Enhanced Security Configuration affects each user’s experience with Internet Explorer.

Task	Can be completed by Administrators	Can be completed by Power Users	Can be completed by Limited Users	Can be completed by Restricted Users
Turn on or off Internet Explorer Enhanced Security Configuration	Yes	No	No	No
Adjust the security level for a particular zone in Internet Explorer	Yes	Yes, on computers running Windows Server 2003 No, on computers running Windows Server 2008	No	No
Add sites to the Trusted sites zone	Yes	Yes	Yes	Yes
Add sites to the Local intranet zone	Yes	Yes	Yes	Yes

All other Internet Explorer tasks can be completed by all user groups unless you choose to restrict user access further.

Return to top

Managing Internet Explorer Enhanced Security Configuration

Internet Explorer Enhanced Security Configuration is designed to reduce your server’s exposure to security threats. To ensure that you get the most benefit from Enhanced Security Configuration, consider these browser management recommendations:

· All Internet and intranet sites are assigned to the Internet zone by default. If you trust an Internet or intranet site and need it to be functional, add the Internet site to the Trusted sites zone, and add the intranet site to the Local intranet zone. For more information about the security levels for each zone, see Effects of Internet Explorer Enhanced Security Configuration.

· If you want to run a browser-based client application over the Internet, you should add the Web page that hosts the application to the Trusted sites zone. For more information, see Add sites to the Trusted sites zone.

· If you want to run a browser-based client application over a protected and secure local intranet, you should add the Web page that hosts the application to the Local intranet zone. For more information, see Add sites to the Local intranet zone.

· Add internal sites and local servers to the Local intranet zone to make sure you have access to, and can run, applications from your servers.

· Use unattend.txt to add intranet sites and UNC servers to the Local intranet zone inclusion list as part of the installation process. For more information, see the Readme file in Deploy.cab on the Windows Server 2003 product CD.

· Use client computers to download drivers, service packs, and other updates. Avoid any browsing from servers.

· If you use disk imaging to install operating systems on your servers, add the intranet sites and UNC servers you trust to the Local intranet zone, and add the Internet sites that you trust to the Trusted sites zone on the base image. You can then change the list on images for different server types and needs.

Add sites to the Trusted sites zone

When Internet Explorer Enhanced Security Configuration is enabled on your server, the security settings for all Internet sites are set to High. If you trust a Web page and need it to be functional, you can add that page to the Trusted sites zone in Internet Explorer.

1. Navigate to the site that you want to add.

2. On the status bar, double-click the security zone name (such as Internet) to open the Internet Security dialog box.

3. Click Trusted sites, and then click Sites.

4. In the Trusted sites dialog box, click Add to add the site to the list, and then click Close.

5. Refresh the page to view the site from its new zone.

6. Check the status bar of the browser to confirm that the site is in the Trusted sites zone.

Notes

· If an Internet site tries to use scripting or ActiveX controls, a dialog box will prompt you to add the Internet site to the Trusted sites zone. If you have disabled this dialog box, you can re-enable it in Internet Explorer. On the Tools menu, click Internet Options. On the Advanced tab, select Display enhanced security configuration dialog.

· A Web page can be part of only one zone at a time. You cannot add a page to both the Trusted sites zone and the Local intranet zone.

· When you add a Web page to the Trusted sites zone, you are adding the domain for that page. Therefore, all pages within that domain are also added. For example, if you add http://www.microsoft.com/windows/ to your Trusted sites zone, you are adding http://www.microsoft.com. If you then want to view the Help and Support site, you will have to add http://support.microsoft.com separately, because the Help and Support site is a separate domain.

· Internet Explorer maintains two different lists of sites for the Trusted sites zone. One list is in effect when Enhanced Security Configuration is enabled, and a separate list is in effect when Enhanced Security Configuration is disabled. When you add a Web page to the Trusted sites zone, you are adding it only to the list that is currently in effect.

· You can use wildcard characters to add all subdomains for a given domain. For example, you can add *.microsoft.com to the list, which adds both www.microsoft.com and support.microsoft.com.

· Many Internet sites use more than one domain to host their content. You may have to add several domains to the Trusted sites zone to have full functionality for one site.

· During installation, you can add many sites at one time to the Trusted sites zone by using certain settings in unattend.txt. For more information, see the Readme file in Deploy.cab on the Windows Server 2003 product CD. You can also use Group Policy to add and manage multiple sites. For more information, see the Microsoft Windows Server 2003 Deployment Kit (http://go.microsoft.com/fwlink/?LinkID=4298).

Add sites to the Local intranet zone

When Internet Explorer Enhanced Security Configuration is enabled, the security settings for all intranet sites are set to High. As a result, you are prompted for your credentials (your user name and password) each time you visit intranet sites that have not been added to the Local intranet zone. If you routinely use intranet sites and you know those sites are trustworthy, you can add them to the Local intranet zone in Internet Explorer.

1. Navigate to the local intranet site that you want to add.

2. On the status bar, double-click the security zone name (such as Internet) to open the Internet Security dialog box.

3. Click Local intranet, and then click Sites.

4. In the Local intranet dialog box, click Add to add the site to the list, and then click Close.

5. Refresh the page to view the site from its new zone.

6. Check the status bar of the browser to confirm that the site is in the Local intranet zone.

Notes

· Do not add Internet sites to the Local intranet zone because your credentials are sent automatically to the site if they are requested.

· A Web page can be part of only one zone at a time. You cannot add a page to both the Trusted sites zone and the Local intranet zone.

· Enhanced Security Configuration also restricts access to scripts, executable files, and other potentially unsafe files on a UNC path unless it is added to the Local intranet zone explicitly. For example, if you want to access \\server\share\setup.exe, you must add \\server to the Local intranet zone.

· When you add a Web page to the Trusted sites zone, you are adding the domain for that page. Therefore, all pages within that domain are also added. For example, if you add http://www.microsoft.com/windows/ to your Trusted sites zone, you are adding http://www.microsoft.com. If you then want to view the Help and Support site, you will have to add http://support.microsoft.com separately, because the Help and Support site is a separate domain.

· Internet Explorer maintains two different lists of sites for the Local intranet zone. One list is in effect when Enhanced Security Configuration is enabled, and a separate list is in effect when Enhanced Security Configuration is disabled. When you add a Web site to the Local intranet zone, you are adding it only to the list that is currently in effect.

· During installation you can add many sites at one time to the Local intranet zone by using certain settings in unattend.txt. For more information, see the Readme file in Deploy.cab on the Windows Server 2003 product CD. You can also use Group Policy to add and manage multiple sites. For more information, see the Microsoft Windows Server 2003 Deployment Kit. (http://go.microsoft.com/fwlink/?LinkID=4298).

Apply Internet Explorer Enhanced Security Configuration to specific users

Internet Explorer Enhanced Security Configuration allows you to control the level of Internet Explorer access allowed to certain user groups on your server. The steps for applying Enhanced Security Configuration to specific users are different for Windows Server 2003 and Windows Server 2008.

To apply Enhanced Security Configuration to specific users by using a computer running Windows Server 2003

1. Log on to the computer with a user account that is a member of the local Administrators group.

2. Click Start, and then click Control Panel.

3. Click Add or Remove Programs, and then click Add/Remove Windows Components.

4. Select the Internet Explorer Enhanced Security Configuration check box, and then click Details.

5. Select the user group or groups that you want to apply Enhanced Security Configuration to (Administrators group or All other user groups), and then click OK.

6. Click Next, and then click Finish.

7. Restart Internet Explorer to apply Enhanced Security Configuration.

To apply Enhanced Security Configuration to specific users by using a computer running Windows Server 2008

1. Log on to the computer with a user account that is a member of the local Administrators group.

2. Click Start, point to Administrative Tools, and then click Server Manager.

3. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.

4. Under Security Summary, click Configure IE ESC.

5. Under Administrators, click On (Recommended) or Off, depending on your desired configuration.

6. Under Users, click On (Recommended) or Off, depending on your desired configuration.

7. Click OK.

8. Restart Internet Explorer to apply Enhanced Security Configuration.

Notes

· When you apply Internet Explorer Enhanced Security Configuration to the Administrators group, the settings are applied to administrators. For Windows Server 2003, when you apply Internet Explorer Enhanced Security Configuration to All other user groups, the settings are applied to all groups except for the Administrators group. For Windows Server 2008, when you apply Internet Explorer Enhanced Security Configuration to Users, the settings are applied to all groups except for the Administrators group.

· For more information about Internet Explorer security zones, see About URL Security Zone Templates (http://go.microsoft.com/fwlink/?LinkID=12658).

· When you apply Internet Explorer Enhanced Security Configuration to any user group while Internet Explorer is open, you must exit Internet Explorer and restart it for the changes to take effect.

Apply Internet Explorer security settings manually on your server

If you do not use Internet Explorer Enhanced Security Configuration in your environment, you can use the Internet Options dialog box in Internet Explorer to manually apply the security settings on your server.

To manually apply Internet Explorer security settings

1. Open Internet Explorer.

2. Click Tools, and then click Internet Options.

3. On the Security tab, select the zone that you want to adjust: Internet, Local intranet, Trusted sites, or Restricted sites.

4. Under Security level for this zone, click Default level to use the default security level for the zone, or click Custom level and then select the settings you want.

5. Click OK to close the Internet Options dialog box.

Notes

· For Restricted sites, click Custom level, and then click a level in the Reset to list.

· For more information about Internet Explorer security zones, see About URL Security Zone Templates (http://go.microsoft.com/fwlink/?LinkId=12658).

Upgrading from previous versions of Internet Explorer

When upgrading to a later version of Internet Explorer, the settings from the previous version are retained. If Internet Explorer is using Enhanced Security Configuration and is upgraded to a later version, it will continue to use Enhanced Security Configuration. If Internet Explorer is not using Enhanced Security Configuration and is upgraded to a later version, it will not have this feature turned on during the upgrade.

Notes

· Browser customizations are always retained during an Internet Explorer upgrade. If Internet Explorer was using Enhanced Security Configuration and you made a configuration change, the Internet Explorer upgrade would retain that change.

· If you remove a version of Internet Explorer that is using Enhanced Security Configuration, the previous version will continue to use Enhanced Security Configuration. This is true when removing a version of Internet Explorer that is not using Enhanced Security Configuration. As with the Internet Explorer upgrade, any customizations to it will be retained in the uninstallation scenario as well.

Return to top

Browser security best practices

Using servers for Internet browsing does not adhere to sound security practices because Internet browsing increases the exposure of your server to potential security attacks. Regardless of the browser you use, you should restrict browsing on your server.

To reduce the risk to your server of potential attacks from malicious Web-based content:

· Do not use servers for browsing general Web content.

· Use client computers to download drivers, service packs, and other updates.

· Do not view Web sites that you cannot confirm are secure.

· Use a limited user account instead of an administrator account for general Web browsing.

· Use Group Policy to keep unauthorized users from making inappropriate changes to browser security settings.

---

Source: Internet Explorer Enhanced Security Configuration

All of sudden my Android started “No Network Connection” Please verify your network settings.

I’ve had both

1. Use Packet Data
2. Access Point Names

Configured and enabled. My Access Point Names was showing up below configuration after resetting it to defaults:

 

Name: TATA DOCOMO INTERNET

APN: TATA.DOCOMO.INTERNET

MCC: 405

MNC: 025

APN type: internet

 

After connecting my mobile to my PC, there was a for firmware upgrade. I did firmware upgrade. Reset my APN to default. Waited for sometime then it started working fine.