Default risk level for file attachments

This policy setting allows you to manage the default risk level for file types. To fully customize the risk level for file attachments, you may also need to configure the trust logic for file attachments.

High Risk: If the attachment is in the list of high-risk file types and is from the restricted zone, Windows blocks the user from accessing the file. If the file is from the Internet zone, Windows prompts the user before accessing the file.

Moderate Risk: If the attachment is in the list of moderate-risk file types and is from the restricted or Internet zone, Windows prompts the user before accessing the file.

Low Risk: If the attachment is in the list of low-risk file types, Windows will not prompt the user before accessing the file, regardless of the file's zone information.

If you enable this policy setting, you can specify the default risk level for file types.

If you disable this policy setting, Windows sets the default risk level to moderate.

If you do not configure this policy setting, Windows sets the default risk level to moderate.

Supported on: At least Windows XP Professional with SP2
Set the default risk level


  1. High Risk
    Registry HiveHKEY_CURRENT_USER
    Registry PathSoftware\Microsoft\Windows\CurrentVersion\Policies\Associations
    Value NameDefaultFileTypeRisk
    Value TypeREG_DWORD
    Value6150
  2. Moderate Risk
    Registry HiveHKEY_CURRENT_USER
    Registry PathSoftware\Microsoft\Windows\CurrentVersion\Policies\Associations
    Value NameDefaultFileTypeRisk
    Value TypeREG_DWORD
    Value6151
  3. Low Risk
    Registry HiveHKEY_CURRENT_USER
    Registry PathSoftware\Microsoft\Windows\CurrentVersion\Policies\Associations
    Value NameDefaultFileTypeRisk
    Value TypeREG_DWORD
    Value6152


attachmentmanager.admx

Administrative Templates (Computers)

Administrative Templates (Users)