Enhanced Security Mode not active when two different proxy pac files are used
Edge enhanced security mode seems not to be active if you have different pac files in “Internet Settings” and Edge “ProxySettings” defined.
We configured Windows 11 to use a proxy pac file only for intranet applications.
HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsAutoConfigURL -> “https://server/intranet.pac”
Additionally we configured Edge to use a proxy pac file which allows internet access.
HKEY_CURRENT_USERSoftwarePoliciesMicrosoftEdgeProxySettings -> {“ProxyMode”: “pac_script”,”ProxyPacMandatory”: true,”ProxyPacUrl”: “https://server/internet.pac”}
We want to allow internet surfing only in Edge with enhanced security mode active. All other applications are only allowed to access intranet urls.
In generally the setup is working, but I am not sure if enhanced security mode is active.
The UI indicator for enhanced security mode is only seen, if there is only one proxy setting definend.
If I delete the ProxySettings value the indicator is available. If I do it the other way around, delete AutoConfigUrl within “Internet Settings” key and keep ProxySettings – the UI indicator is also visible.
With both values specified the indicator is not visible.
How to check if ESM ist turned on without the UI indicator?
Is it a bug or a feature that the UI indicator is in that case not available?
Edge enhanced security mode seems not to be active if you have different pac files in “Internet Settings” and Edge “ProxySettings” defined. We configured Windows 11 to use a proxy pac file only for intranet applications.HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionInternet SettingsAutoConfigURL -> “https://server/intranet.pac” Additionally we configured Edge to use a proxy pac file which allows internet access.HKEY_CURRENT_USERSoftwarePoliciesMicrosoftEdgeProxySettings -> {“ProxyMode”: “pac_script”,”ProxyPacMandatory”: true,”ProxyPacUrl”: “https://server/internet.pac”} We want to allow internet surfing only in Edge with enhanced security mode active. All other applications are only allowed to access intranet urls. In generally the setup is working, but I am not sure if enhanced security mode is active.The UI indicator for enhanced security mode is only seen, if there is only one proxy setting definend.If I delete the ProxySettings value the indicator is available. If I do it the other way around, delete AutoConfigUrl within “Internet Settings” key and keep ProxySettings – the UI indicator is also visible. With both values specified the indicator is not visible.How to check if ESM ist turned on without the UI indicator? Is it a bug or a feature that the UI indicator is in that case not available? Read More