9.1.3 User on-the-fly config.
Whenever a PDF opens that contains content which is blocked by a security feature, a Yellow Message
Bar (YMB) appears. If the feature has not been disabled by the administrator, users can trust the
document on-the-fly as follows:
• When the YMB appears, choose
Options
.
• Choose from one of the available trust options which vary by feature. Choosing
Trust Always
adds
the current item to privileged locations.
YMB with trust options
9.1.4 Registry configuration
The application stores information about privileged location trust in the registry and plist. Once a file is
trusted via the UI or YMB, a
t<unique id>
is added to each of the cabs under
cTrustedFolders|cTrustedSites
. The container cab determines which restriction the document can
bypass. For example, a tID under
cCrossDomain
allows cross domain access. For a complete list of
available preferences see the
Preference Reference
.
While you can create PLs manually at the registry level, it's easier to use the UI and then propagate those
settings across your organization with the Wizard or post deployment via GPO or some other method. If
you do decide to manually edit the registry, note the following:
•
TrustManager\cTrustedFolders
contains cabs for trusted folders AND files.
•
TrustManager\cTrustedSites
contains cabs for trusted http and https hosts.
• Each t(ID) must be unique. In the example below, t3 could reside in each of the cabs, but there
could not be more than one t3 in each cab.
Application Security Guide
Section 9 Trust Methods
Section 9 Trust Methods
Page 87
