Forum Discussion

Gunnar-Haslinger's avatar
Gunnar-Haslinger
Iron Contributor
Jan 20, 2020
Solved

SmartScreen turned off -> Java Webstart JNLP Files are marked as "can harm your computer"

Edge v79 (stable) as well as Edge v80 (beta) mark a downloaded Java Webstart (JNLP) File as "can harm your computer" if SmartScreen is turned off. This is weird and seem to be a bug.   Here is a De...
  • Gunnar-Haslinger's avatar
    Gunnar-Haslinger
    Aug 12, 2020

    Starting with Edge v85 (currently in beta) there is a new policy "ExemptDomainFileTypePairsFromFileTypeDownloadWarnings" available which solves this issue:

     

    See Documentation:

    https://docs.microsoft.com/en-us/deployedge/microsoft-edge-policies#exemptdomainfiletypepairsfromfiletypedownloadwarnings

     

    I can confirm this works with
    Edge Beta 85.0.564.30
    Edge Dev 86.0.594.1

    BUT be aware: The text in the documentation is correct, but the given Samples in the documentation are currently wrong!

    Citing the Sample in the docs:

    SOFTWARE\Policies\Microsoft\Edge\ExemptDomainFileTypePairsFromFileTypeDownloadWarnings\1
    = {'domains': ['https://contoso.com', 'contoso2.com'], 'file_extension': 'jnlp'}

    The single quotes in the examples are wrong, only double quotes are accepted and work! So this should be corrected to:
    = {"domains": ["https://contoso.com", "contoso2.com"], "file_extension": "jnlp"}

     

    To check my JNLP JavaWebStart Sample-Link https://hitco.at/java-webstart-demo/ successfully working, use following registry-Keys:

     

    Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge\ExemptDomainFileTypePairsFromFileTypeDownloadWarnings]
"1"="{\"domains\": [\"https://*.hitco.at\", \"https://hitco.at\"], \"file_extension\": \"jnlp\"}"

     

Gunnar-Haslinger's avatar
Gunnar-Haslinger
Iron Contributor
Jun 29, 2020

stesch79 

 

We tried to get this fixed by using Premier Support Services as well as AppAssure. 

I have no idea why it takes so much time. My latest Status-Update on this is, that there will be a Policy in Edge v85 (or v86) to configure this behaviour. Our Support-Contact told us it will be something like "DownloadsAllowOverrides". Todays Canary Version 85.0.558.0 seems not to have this already implemented.

stesch79's avatar
stesch79
Iron Contributor
Jun 29, 2020

Gunnar-Haslinger  Thanks! Yes, there is a new policy introduced since v85 regarding this: https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-policies#autoopenfiletypes

It's not exactly about trust/untrust file types but about auto-opening certain file types. I have not tested yet. 

  • Gunnar-Haslinger's avatar
    Gunnar-Haslinger
    Iron Contributor
    Jun 29, 2020

    stesch79 I saw AutoOpenFileTypes but after reading the description I'm pretty sure this is not what we are looking for.

  • simha2020's avatar
    simha2020
    Copper Contributor
    Jun 29, 2020

    stesch79 ;@Gunnar Haslinger

    Yes , that policy is different .  

    https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-policies#autoopenfiletypes

    This policy to auto-opening of certain file types like .ica ..etc.

     

    Earlier its use to prompt for download.

    Regarding Jnlp  its targeted for 85 as of now ( tentative) . Will update once we have any update on the same.

Resources