My team is implementing a single sign-on solution. Public use workstations auto-login to a generic id and the user authenticates to the workstation through a GINA that is part of the package. Any application launched via the single-sign on toolbar runs as the authenticated user and not as the user logged into the workstation.
The history compiled by the internet tracking software installed is based on the userid of the instances of iexplore.exe running so we had to force all browser traffic through a 'RunAs' application that is part of the single sign-on package. So we created a 'browser' application that is just a call to the 'RunAs' application which launches iexplore.exe as the authenticated user. The 'browser' app also sends along a URL parm.
Then the requisite registry tweaks were made to call RunAsBrowser.exe in all cases where iexplore.exe would normally be called(http, https, StartMenuInternet, etc)
This all works fine except the authenticated user is always prompted on the first authentication for making IE the default browser since we have set it to RunAsBrowser.exe. How can I make the default browser check go away?
Still have to get around the issue of reading a key that is not there but this is the solution so far.
strComputer = "."
Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2")
Set objAccount = objWMIService.Get _
("Win32_UserAccount.Name='" & strUserDN & "',Domain='" & strUserDomain & "'")
MsgBox(strUserDN & " SID = " & objAccount.SID)
'Read for existing SID entry for Check_Associations
checkAssociations = "Yes"
checkAssociations = WshShell.RegRead ("HKEY_USERS\" & objAccount.SID & "\Software\Microsoft\Internet Explorer\Main\Check_Associations")
If checkAssociations <> "No" Then
'Create desired reg entry
objShell.RegWrite "HKEY_USERS\" & objAccount.SID & "\Software\Microsoft\Internet Explorer\Main\Check_Associations", "No", "REG_SZ"