Plugin

This section controls the behavior of the plugin component. Will require the plugin component to be included in the installation.

From version 6.1 a new control mechanism is included to limit the usage of the plugin, each parameter and operation will be limited/checked separately. The default requirements may be updated via configuration parameters Plugin>AccessGetProperty, Plugin>AccessSetProperty, Plugin>AccessEnumProperty and Plugin>AccessInvoke.
For more information about the settings described in AccessGetProperty, AccessSetProperty, and AccessEnumProperty, see the Developer’s Guide.

AccessGetProperty

This entry may be used to update default access condition requirement for properties that are read from plugin.

[Plugin]
AccessGetProperty=Version,0;

AccessSetProperty

This entry may be used to update default access condition requirements and value checks for properties that are sent to plugin.

[Plugin]
AccessSetProperty=Version,1,1,0,16;

AccessEnumProperty

This entry may be used to update default access condition requirements for properties that are enumerated from plugin.

[Plugin]
AccessEnumProperty=Language,0;

AccessInvoke

This entry may be used to update default access condition requirements for invoke of plugin functions, see Developer’s Guide for more information.

[Plugin]
AccessInvoke=Sign,0;

Audit

This entry may be used to log blocked plugin calls.

[Plugin]
Audit=C:\Temp\plugin.txt

Allowed

This entry contains a list of application names with access mode for use with the plugin, separated with ;. Specify with name and access mode value. Currently three modes are available:

0

Blocked access – only create non-repudiation signatures is allowed

1

Full access – including modify configuration

2

Use access – all except modify configuration

Either specify name of file stored in installation folder, or specify full path to application (may use environment variables).

[Plugin]
Allowed=iid.exe,1;iidxcmt.exe,1;badapp.exe,0;

[Plugin]
Allowed=%programfiles%\Good\good.exe,1;%programfiles%\Bad\badapp.exe,0;
Configuration section [AllowedServers] may be used to set access mode for all web browser applications, access mode for web browsers are based on site instead of application.

Disable

This entry is used to specify a list of applications, separated with ;, which will not be allowed to use the ActiveX plugin.

Default value is none; all applications will be able to use the plugin.

This parameter have no affect for the Netscape plugin, since there is no good behavior in the API to block loading.

Enable

Use this parameter to enable/disable installation of web browser plugins.

0

Web browser plugins are not available

1

Web browser plugins are available

Default value is 1; web browser plugins are available.

StartService

This entry is used to enable/disable the start of certificate service when loaded.

0

Will not start service

1

Will start service

Default value is 0; will not start service.