Hi,\n\nMy organization task me with defining Policies for Internet Explorer 7 on\nVista. The goal was to make it even more secure than the defaults provided\nby Microsoft. On the other hand, I was a bit more relax on the Intranet side.\n\nOne of the feature I would really like to take advantage is the Protected\nMode. By default it's on, but on the Intranet side, I turned it OFF to take\ncare of some issues around SharePoint (explorer view in SharePoint was not\nworking). I suspect that there would be more functions/features that would\nnot work if Protected Mode is ON. This is just an assumption.\n\nA lot of people are complaining because it open a second instance of IE when\nchanging zones. Now, they want it OFF or ON in all zones so they won't have\nto hear people complaining at the Call Center.\n\nI guess I have problem communicating the reason why we should NOT turn it\nOFF. Would someone give me some sample exxplanation why we should NOT turn\nit OFF and leave it ON on the Internet Zone and OFF in the Intrannet Zone?\n\nMy reasons for Intranet zone at OFF is because we would like to make some\nscript through a web page in our Intranet zone that would query the system\nregistry, maybe copy files, or execute scripts right from a web page. Do you\nsee any other advantage to set it to OFF in the Intranet zone? What kind of\nstuff would I have problem with if it was set to ON?\n\nCan someone help me?