en-US

Restrict legacy JScript execution for Office

Supported on: At least Windows Server 2016, Windows 10 Version 1803

Registry

HKLM software\policies\microsoft\internet explorer\main\featurecontrol\FEATURE_RESTRICT_LEGACY_JSCRIPT_PER_SECURITY_ZONE

Options

excel.exe decimal - range ?-99999
mspub.exe decimal - range ?-99999
powerpnt.exe decimal - range ?-99999
onenote.exe decimal - range ?-99999
visio.exe decimal - range ?-99999
winproj.exe decimal - range ?-99999
winword.exe decimal - range ?-99999
outlook.exe decimal - range ?-99999
msaccess.exe decimal - range ?-99999

Description

This policy setting controls JScript execution per Security Zone within Internet Explorer and WebBrowser Control (WebOC) for Office applications. It's important to determine whether legacy JScript is being used to provide business-critical functionality before you enable this setting. If Enabled, Office applications will not execute legacy JScript for the Internet or Restricted Sites zones and users aren’t notified by the application that legacy JScript execution is restricted. Modern JScript9 will continue to function for all zones. If Disabled or Not Configured JScript will function without any restrictions. The values are set in hexadecimal and should be converted prior to changing the setting value. To learn more about Internet Explorer Feature Control Key and the Restrict JScript process-level policy for Windows, please refer to: https://docs.microsoft.com/en-us/previous-versions/windows/internet-explorer/ie-developer/general-info/ee330734(v=vs.85)#restrict-jscript-at-a-process-level