Description of client-side configuration for windows

To run Highstage, a few configurations to the client machines are beneficial for windows clients by easing the use of Highstage by removing trivial pop/ups, eliminating dialogs and allowing transfer of larger file sizes directly from the operating system.

This include:

1. Set the Highstage server to be in the Local intranet zone.
2. Set the Windows Webclient to Automatic logon for sites in the intranet zone
3. Disable warning for protocol links when opening Dav10 protocol
4. Set max file size limit for WebDAV traffic

More: Notes regarding the Registry syntax can be found in the MS documentation here.

More: Click here to find specific information about Microsoft Edge behavior and how it can be configured.

Local intranet zone

The zone to which a website is assigned specifies the security settings that are used for that site.

Manual change

This can be archived by going into the settings window “Internet options” in the control panel, it is also available from the Internet Explorer settings menu. You might have to manually restart the machine for the settings to take effect.

Under the <Security> tab, press the <Local Intranet> icon and press the <Sites> and then the <Advanced> button. Add to the list the hostname of the Highstage server. Include also an entry for HTTPS traffic by adding @ssl after the hostname. Then press <close> and <apply> to save the settings.

For example:

• hs.company.com
• hs.company.com@ssl

changing registry keys

This can be added by changing the registry keys (Change hs.company.com to the real hostname):

reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hs.company.com" /ve /f

reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hs.company.com" /v * /t REG_DWORD /d 1 /f

reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hs.company.com@ssl" /ve /f

reg add "HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hs.company.com@ssl" /v file /t REG_DWORD /d 1 /f

Automatic login

This feature enabled automatic forward of credentials of the user logged in to the system.

Manual change

This can be archived by going into the settings window “Internet options” in the control panel, it is also available from the Internet Explorer settings menu.

You might have to manually restart the machine for the settings to take effect.

In the internet Properties windows, Under the <Security> tab, press the <Local Intranet> icon, then press the <custom level…> button in the “security level for this zone”-section. Scroll down to the <User Authentication> section locate the setting “Automatic logon with current user name and password” and select this option. Now press <OK>, to save the setting.

changing registry keys

This can be added by changing the registry keys (Change hs.company.com to the real hostname).

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WebClient\Parameters" /v AuthForwardServerList /t REG_MULTI_SZ /d https://hs.company.com /f

Group policy

This setting can be set using a group policy, this can be found under:

Windows Components/Internet Explorer/Internet Control Panel/Security Page/Trusted Sites Zone.

And enable the policy <Logon Options> and set it to “Automatic Logon only in Intranet zone”.

Disable warning for protocol links

Displays a dialog box explaining to the user that they are opening a link program using a program instead of the browser.

Manual change

This setting cannot be modified in the user interface.

Changing registry keys

This can be added by changing the registry keys:

reg add "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\ProtocolExecute\dav10" /v WarnOnOpen /t REG_DWORD /d 0 /f

Max size file size for WebDAV traffic

This setting cannot be modified in the user interface.

Changing registry keys

This can be added by changing the registry keys:

reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\WebClient\Parameters" /v FileSizeLimitInBytes /t REG_DWORD /d 4294967295 /f