Forum Discussion
Enhanced Security Mode not active when two different proxy pac files are used
Edge (Version 124.0.2478.80) enhanced security mode seems not to be active if you have different pac files in "Internet Settings" and Edge "ProxySettings" defined. We configured Windows 11 to use...
Kelly_Y
Microsoft
Microsoftgroock Hey! Following up with some questions from the team 
You mentioned the "UI indicator" for enhanced security mode, is this referring to the PageInfo flyout or something else? Would you be able to provide a screenshot?
Also, which specific URL you are trying to visit? And are you using strict or balanced mode? Our developer mentioned that it's possible that in balanced mode, the site is getting enough engagement when you are trying with both proxies.
Additionally, can you visit the 'Enhanced Security Mode' tab from edge://security-diagnostics and provide the additional diagnostics details? If there is PII, please do not post it here, you can send me a message directly if necessary. Thanks!
-Kelly
Hey Kelly,
the problem has been solved by Microsoft support. I opened a support case and we figured out the root cause for this isssue.
In the internet settings (inet.cpl) there was a setting enabled "Include all sites that bypass the proxy server" -> Security - > Local Intranet -> Sites.
When the user opened an internet address e.g. http://www.bing.com -> the site was not part of die intranet.pac file - so it bypassed the proxy server and the site was marked as zone local intranet. The enhanced security mode is not active in zone local intranet.
We configured the setting "Include all sites that bypass the proxy server" to disabled and enhanced security mode is working for us.
So the UI indicator is available and visible while browsing.
Thank you.
the problem has been solved by Microsoft support. I opened a support case and we figured out the root cause for this isssue.
In the internet settings (inet.cpl) there was a setting enabled "Include all sites that bypass the proxy server" -> Security - > Local Intranet -> Sites.
When the user opened an internet address e.g. http://www.bing.com -> the site was not part of die intranet.pac file - so it bypassed the proxy server and the site was marked as zone local intranet. The enhanced security mode is not active in zone local intranet.
We configured the setting "Include all sites that bypass the proxy server" to disabled and enhanced security mode is working for us.
So the UI indicator is available and visible while browsing.
Thank you.