function Disable-InternetExplorerESC {$AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"$UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value 0Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value 0Stop-Process -Name ExplorerWrite-Host "IE Enhanced Security Configuration (ESC) has been disabled." -ForegroundColor Green
}

Disable-InternetExplorerESC

function Enable-InternetExplorerESC {$AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"$UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value 1Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value 1Stop-Process -Name ExplorerWrite-Host "IE Enhanced Security Configuration (ESC) has been enabled." -ForegroundColor Green
}

Enable-InternetExplorerESC

<#.Synopsis Disables Internet Explorer Enhanced Security(IE ESC)..DescriptionThis script disables IE ESC on list of given Windows 2008 servers.Parameter ComputerName    Computer name(s) for which you want to disable IE ESC..Parameter OutputToLogsThis option allows you to save the failed and successful computer names to text files inc:\ drive. The successful computer will be avialable in c:\successcomps.txt file and the failed computers will be in c:\failedcomps.txt.ExampleDisable-IEESC.PS1 -ComputerName Comp1, Comp2Disables IE ESC on Comp1 and Comp2.ExampleDisable-IEESC.PS1 -ComputerName Comp1, Comp2 -OutputToLogsDisables IE ESC and stores output in logfiles located in c:\ .ExampleGet-Content c:\servers.txt | Disable-IEESC.PS1 -OutputToLogsDisables IE ESC on computers listed in servers.txt and saves success and failed computers list to c:\    .NotesNAME:      Disable-IEESC.PS1AUTHOR:    Sitaram PamarthiWEBSITE:   http://techibee.com

#>[cmdletbinding()]
param([parameter(ValueFromPipeline=$true,ValueFromPipelineByPropertyName=$true)][string[]]$ComputerName = $env:computername,[switch]$OutputToLogs)begin {$AdministratorsKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"$UsersKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"$SuccessComps =@();$FailedComps = @();
}process {foreach($Computer in $ComputerName) {if(!(Test-Connection -Computer $Computer -count 1 -ea 0)) {Write-Host "$Computer NOT REACHABLE"$FailedComps += $Computercontinue}Write-Host "Working on $Computer"try {$BaseKey = [Microsoft.Win32.RegistryKey]::OpenRemoteBaseKey("LocalMachine",$Computer)$SubKey = $BaseKey.OpenSubKey($AdministratorsKey,$true)$SubKey.SetValue("IsInstalled",0,[Microsoft.Win32.RegistryValueKind]::DWORD)$SubKey = $BaseKey.OpenSubKey($UsersKey,$true)$SubKey.SetValue("IsInstalled",0,[Microsoft.Win32.RegistryValueKind]::DWORD)Write-Host "Successfully disabled IE ESC on $Computer"$SuccessComps += $Computer}catch {Write-Host "Failed to disable IE ESC on $Computer"$FailedComps += $Computer}}
}end{if($OutputToLogs) {$SuccessComps | Out-File "c:\successcomps.txt"$FailedComps | Out-File "c:\failedcomps.txt"}
}

<#.Synopsis Enables Internet Explorer Enhanced Security(IE ESC)..DescriptionThis script enables IE ESC on list of given Windows 2008 servers.Parameter ComputerName    Computer name(s) for which you want to enable IE ESC..Parameter OutputToLogsThis option allows you to save the failed and successful computer names to text files inc:\ drive. The successful computer will be avialable in c:\successcomps.txt file and the failed computers will be in c:\failedcomps.txt.ExampleEnable-IEESC.PS1 -ComputerName Comp1, Comp2Enables IE ESC on Comp1 and Comp2.ExampleEnable-IEESC.PS1 -ComputerName Comp1, Comp2 -OutputToLogsEnables IE ESC and stores output in logfiles located in c:\ .ExampleGet-Content c:\servers.txt | Enable-IEESC.PS1 -OutputToLogsEnables IE ESC on computers listed in servers.txt and saves success and failed computers list to c:\    .NotesNAME:      Enable-IEESC.PS1AUTHOR:    Sitaram PamarthiWEBSITE:   http://techibee.com

#>[cmdletbinding()]
param([parameter(ValueFromPipeline=$true,ValueFromPipelineByPropertyName=$true)][string[]]$ComputerName = $env:computername,[switch]$OutputToLogs)begin {$AdministratorsKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"$UsersKey = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"$SuccessComps =@();$FailedComps = @();
}process {foreach($Computer in $ComputerName) {if(!(Test-Connection -Computer $Computer -count 1 -ea 0)) {Write-Host "$Computer NOT REACHABLE"$FailedComps += $Computercontinue}Write-Host "Working on $Computer"try {$BaseKey = [Microsoft.Win32.RegistryKey]::OpenRemoteBaseKey("LocalMachine",$Computer)$SubKey = $BaseKey.OpenSubKey($AdministratorsKey,$true)$SubKey.SetValue("IsInstalled",1,[Microsoft.Win32.RegistryValueKind]::DWORD)$SubKey = $BaseKey.OpenSubKey($UsersKey,$true)$SubKey.SetValue("IsInstalled",1,[Microsoft.Win32.RegistryValueKind]::DWORD)Write-Host "Successfully enabled IE ESC on $Computer"$SuccessComps += $Computer}catch {Write-Host "Failed to enable IE ESC on $Computer"$FailedComps += $Computer}}
}end{if($OutputToLogs) {$SuccessComps | Out-File "c:\successcomps.txt"$FailedComps | Out-File "c:\failedcomps.txt"}
}