Where is the white/blacklist for Enhanced Protected Mode sites?
Solution 1
Open Internet Options in the Control Panel. Go to the Programs tab, select Manage add-ons. Click Silverlight in the list. In the bottom pane, there should be a link called "More information". This brings up a dialog with a list of sites you have allowed and banned the add-on on. Remove the one you accidentally denied from the list, go there and it should ask you again.
Solution 2
I will answer the question in the title, as I just accidentally disabled Enhanced Protected Mode on a site, and wanted to return to the more locked-down configuration.
The list of sites for which Enhanced Protected Mode has been disabled is stored in HKCU\Software\Microsoft\Internet Explorer\TabProcConfig. The domain is the name, and the value is some kind of DWORD value (in my case, 0x147b). Removing the value re-enabled EPM on the site.
I found only two references to this registry key on the entire Internet. One was Eric Lawrence, the author of Fiddler and a former IE Program Manager (2004-2012), states:
The exception list is not exposed in the UI anywhere, and you can only clear the entire list by using Delete Browser History. How it works under the covers is undocumented, but if you use Process Monitor, you can see how the EPM list is written in the registry. When you exempt a site using the Notification bar, you'll see a write of the domain to a key under HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\TabProcConfig. The value is a DWORD which has various (undocumented) flags about what type of process should be used when loading a site (e.g. its integrity level, and the strictness of its AppContainer).
Related videos on Youtube
00 : 37
03 : 27
07 : 13
10 : 54
02 : 59
Louis Waweru
Updated on September 18, 2022Comments
-
Louis Waweru over 1 year
I misunderstood this dialog and clicked Always ignore (I was thinking clicking Disable would disable Silverlight, not Enhanced Protected Mode).
I want to allow the dll to run because I think it's Silverlight.
Where can I see which sites are allowed or disallowed? Or, how can I undo my action?
-
Admin over 11 yearsIs this of any help? support.microsoft.com/kb/2406108?wa=wsignin1.0 -
Admin over 11 years@GuyThomas Yes, it helps me understand why I keep seeing the message. Thank you.
-
-
Kylos almost 11 yearsLooking through my Add-ons, it appears that only ActiveX controls display the list of allowed sites. If the plugin is of type "Browser Helper Object", the list does not appear but removing the DWORD re-enables EPM for the domain. If the offending plugin is still in place, you will still get the popup, however. In my case, it appears to have been an issue with only having 32 bit Java installed. Installing 64-bit Java and deleting the DWORD allowed the site to function properly.
