Microsoft KB Archive/171142

= Safety Error During Internet Explorer Enrollment =

Article ID: 171142

Article Last Modified on 6/23/2005

-

APPLIES TO


 * Microsoft Internet Information Server 3.0
 * Microsoft Certificate Server 1.0

-



This article was previously published under Q171142



We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx



SYMPTOM
When you connect to the Microsoft Internet Explorer Enrollment Form, you will get the following warning dialog box:

Potential safety violation avoided

This page contains active content that is not verifiably safe to display. To protect your computer, this content will not be displayed.

Chose Help to find how you can change your safety settings so you can view potentially unsafe content.



CAUSE
The safety level is set to High in of Microsoft Internet Explorer.



RESOLUTION
To enable the Enrollment Form to function, do the following:


 * 1) In Microsoft Internet Explorer, click Options on the View menu.
 * 2) Click the Security tab.
 * 3) Select the Safety level button.
 * 4) Set the safety level to Medium or None.



MORE INFORMATION
The Microsoft Internet Explorer Enrollment Form uses an ActiveX Control (Certenr3.dll) to create client certificates for Microsoft Internet Explorer. It has been demonstrated that ActiveX controls can cause a security risk when used improperly. Therefore, Microsoft Internet Explorer contains configurable security settings that allow you to disable the "active" content on web pages. When you set the security to High, you disable the functionality of the Certenr3.dll file.

Keywords: kberrmsg kbprb KB171142

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.