XP: Prevent Websites with Unauthorized Certificates from Installing Software

Posted March 4, 2006 by William_Wilson in Windows networking

Using this tutorial, you can keep websites with invalid certificates from installing software on your computer.


Most of us prefer to modify our computers and network with built-in GUIs and Windows-based fixes instead of playing with the registry. Here are a few tips using such a way.

Open Group Policy:
-Go to Start\Run and type gpedit.msc.
-Navigate to the path local computer policy\computer configuration\administrative components\windows components\internet explorer\internet control panel\advanced page.
-Double-click the icon to the right called Allow software to run or install even if the signature is invalid.
-Select disable from the radio buttons.

This will disable the ability to run OR install software from a website with an unwanted/unauthorized certificate, preventing some of the headaches associated with multi-user networks and malicious scripts.

*NOTE: This method only applies to the current computer. Therefore, this process either needs to be repeated on subsequent computers on the network, or you must have the setting of your network updated from the current computer.

Questions/Comments: [email protected]
-William. ยง (marvin_gohan)

The Conversation

Follow the reactions below and share your own thoughts.