login vsi company logo login vsi company logo 250x40

 

Get the best possible VDI performance, density and availability with Login VSI
Our Solutions

  • Home
  • Blog
  • Login VSI
  • User account control impact on automating Internet Explorer during a Login VSI test

User account control impact on automating Internet Explorer during a Login VSI test

User account control impact on automating Internet Explorer during a Login VSI test

If you’ve been in touch with our Login VSI support department regarding an Internet Explorer issue, we may have asked you to enable protected mode. We usually ask to enable Protected Mode in cases where we cannot interact with the web page. That seems strange. Why would adding additional protection allow us to interact with the web page after all? The answer is a set of security features commonly known as user account control.

Protected mode is part of that set of security features. Protected Mode prevents a malicious website from being able to compromise the security of your system by running Internet Explorer with a lower so- called integrity level. Integrity levels control which level of application can talk to each other programmatically.

user account control impact on automating internet explorer during a login vsi test enable protected mode

To enable Protected Mode in IE, go to Internet Options, select the Security tab, and check the Enable Protected Mode box.

Three integrity levels

There are 3 integrity levels: Low, Medium and High. High integrity level processes are typically processes running with administrator rights or even system level rights. Medium is the default normal level and Low is for untrusted processes. A process can talk to processes down the chain. High can talk to Medium and Low, for example. But you cannot go up the chain. This feature was introduced to combat so called shatter attacks.

Impact on Internet Explorer

Internet Explorer runs with the Low integrity level by default. Internet Explorer will switch to a higher integrity level where needed. An Intranet website, where protected mode is disabled, will run with the Medium level integrity level, for example. This switch is where the problem lies. When you start Internet Explorer programmatically, you get a reference to the newly started Internet Explorer process. That process starts with the Low integrity level.

If the website is located in an Intranet zone, then Internet Explorer will start a second process that runs with the Medium integrity level. But the program still has a reference to the old, Low integrity level process. This is why you might see CTXConnect being unable to interact with a website, or the Login VSI engine failing to be able to interact with an instance of Internet Explorer. When Protected Mode is enabled, a website is always run with the Low integrity level. The program retains the ability to control the application, as there is no need for a second process.

user account control impact on automating internet explorer during a login vsi test launcher

Login VSI has encountered an unexpected error and cannot initiate a session.

Conclusion: Why enable Protected Mode?

When you start Internet Explorer (IE) programmatically, IE runs with the Low integrity level but when you browse to an Intranet zone website, IE will start a second process with the Medium integrity level. Because of the different integrity levels, Login VSI will be unable to interact with Internet Explorer. Enabling Protected Mode will make sure that Internet Explorer is always running with the Low integrity level (also in an Intranet zone) and Login VSI is able to communicate with the webpage at all times.

And if you still have trouble with IE, let us know by contacting support@loginvsi.com.

 


 

Start using Login VSI today

Our industry-standard software is built to help you avoid problems, lower costs and improve performance. Request a Quote or get your free Trial below, and benefit from our award-winning services.

Free Price Request  Your Free Trial

 


About the company Login VSI

The company Login VSI provides end-user performance insights for virtualized desktop and server-based computing environments. Enterprise IT departments use flagship product Login VSI (for load testing) and Login PI (for continuity testing) in all phases of their virtual desktop deployment—from planning to deployment to change management—to build and safeguard a good performance, a high availability, and (as a result) a good and consistent end-user experience. For more information about Login VSI or for a free test license contact us.

Tags: How-to, Login VSI, Load Testing, Best Practices, Support

Popular Blogs

Login VSI Blog - Ongoing Effects CPU Flaws

The Ongoing Effects of Intel CPU Flaws

The Ongoing Effects of Intel CPU Flaws Over the last year, we’ve seen many Intel CPU hardware flaws come to light and when news first broke about Meltdown & Spectre there was a lot of panic: "should we patch?", "What’s the performance impact?", "Can we still rely on this hardware?" Continue Reading
Login VSI Blog - How-To Update, Protect Against RIDL, Fallout MDS Vulnerability

How-To: Update, Protect Against RIDL, Fallout MDS Vulnerability

RIDL & Fallout MDS vulnerabilities, impact on VDI performance & actions to take. FAQs we’re receiving & updates on performance tests executed to patch flaws Intel calls “Microarchitectural Data Sampling (M.D.S.)” aka: Rogue In-Flight Data Load (RIDL), Fallout, ZombieLoad & Store-to-Leak Forwarding. Continue Reading
Login VSI Blog - Teaser Image - A Practical Guide to VDI Change Management - Part 1

A Practical Guide to VDI Change Management

Part 1: IT Change Management in general The first in an 8-part series, this practical guide to VDI Change Management will guide you through the transformation of the IT department from a back-end function into a core competency for every modern organization. Continue Reading
Login VSI - Blog - Login PI Blog Teaser Image - Windows Virtual Desktop: How To Monitor User Experience With Login PI

Windows Virtual Desktop – How to Monitor User Experience?

Microsoft has just announced the public preview of their new Windows Virtual Desktop (WVD) offering at Microsoft Ignite on Tour in Amsterdam today. For those of you who’ve not followed the rumors or the private beta, here’s the outline... Continue Reading
A Practical Guide To VDI Change Management, Part 3

A Practical Guide to VDI Change Management

Part 3: Change Accelerates with Windows 10 The third in an 8-part series, this practical guide to VDI Change Management gives you the low-down on the what, why and how of Windows 10 updates and changes Continue Reading
Login VSI Blog - Teaser Image - A Practical Guide to VDI Change Management - Part 2

A Practical Guide to VDI Change Management

Part 2: Why VDI is very sensitive to change The second in an 8-part series, this practical guide to VDI Change Management highlights the importance of effective Change Management. With all the complexities of VDI environments, any failure can severely impact your business. Continue Reading
Cookie Settings