SEC7117 Error when trying to load a javascript file in MS Edge

Question

I\'m getting this error when trying to load a javascript file from another server when using microsoft edge. I have a feeling it\'s related to the server being http instead

Answer 1

Here are two alternatives to restructuring your network:

1. You may consider adding the externally hosted site to your "Local intranet" zone.

E.g. If external.somedomain contains reference to internal.mydomain/whatever.js then add external.somedomain to "Local intranet" zone in "Internet Options".

2. If possible change the hostname of the externally hosted site to match your internally hosted site.

E.g. If external.somedomain contains reference to internal.mydomain/whatever.js then change external.somedomain hostname to external.mydomain.

Both of these options will essentially allow scripts on the external site to probe for HTTPS services on your internal network to some extent, which I assume is what this security feature is trying to prevent. The first option being the least secure as the second option is limited to probing matching domain names.

During testing, I noticed that Edge seems to get network details from Active Directory when Windows is domain joined. It's likely to prevent externally hosted sites linking to resources hosted anywhere within your AD domain, and not just the current subnet you are connected to. The one exception is if the externally hosted site shares the same base domain name. All this is apparently undocumented, which is why I'm posting this info here.