Prevent ignoring certificate errors

This policy setting prevents the user from ignoring Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificate errors that interrupt browsing (such as "expired", "revoked", or "name mismatch" errors) in Internet Explorer.

If you enable this policy setting, the user cannot continue browsing.

If you disable or do not configure this policy setting, the user can choose to ignore certificate errors and continue browsing.

Supported on: At least Internet Explorer 7.0
Registry HiveHKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry PathSoftware\Policies\Microsoft\Windows\CurrentVersion\Internet Settings
Value NamePreventIgnoreCertErrors
Value TypeREG_DWORD
Enabled Value1
Disabled Value0

inetres.admx

Administrative Templates (Computers)

Administrative Templates (Users)