topic Allow unsafe macro execution on server: IEPlugin vs AJAX in QlikView https://community.qlik.com/t5/QlikView/Allow-unsafe-macro-execution-on-server-IEPlugin-vs-AJAX/m-p/313458#M1308000 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P></P><P>I have a qlikview document with a macro considered as "unsafe", it requires to have System Access, in order to call a webservice<BR /> <BR /></P><PRE __default_attr="plain" __jive_macro_name="code" class="jive_text_macro jive_macro_code"><P> Set xmlhttp = CreateObject("Microsoft.XMLHTTP")</P></PRE><P></P><P>On the server, through the QEMC, I have noticed that there is an option "<SPAN class="Apple-converted-space"> </SPAN>Allow unsafe macro execution on server"</P><P>System &gt; Setup &gt; QVS &gt; Security</P><P></P><P>Even if this option is unchecked, my macro will still work for users accessing my file with IE + QVPlugin (once they "Give System Access to Module Script" via Ctrl + Shift + M)</P><P>However, for user using the mode 'AJAX zero footprint", it won't work and really relies on the QEMC setting. </P><P></P><P>What are the explanations of such difference, and where is it doccumented?</P><P>Thanks in advance,</P></BODY></HTML> Mon, 26 Jan 2026 18:19:17 GMT 2026-01-26T18:19:17Z Allow unsafe macro execution on server: IEPlugin vs AJAX https://community.qlik.com/t5/QlikView/Allow-unsafe-macro-execution-on-server-IEPlugin-vs-AJAX/m-p/313458#M1308000 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P></P><P>I have a qlikview document with a macro considered as "unsafe", it requires to have System Access, in order to call a webservice<BR /> <BR /></P><PRE __default_attr="plain" __jive_macro_name="code" class="jive_text_macro jive_macro_code"><P> Set xmlhttp = CreateObject("Microsoft.XMLHTTP")</P></PRE><P></P><P>On the server, through the QEMC, I have noticed that there is an option "<SPAN class="Apple-converted-space"> </SPAN>Allow unsafe macro execution on server"</P><P>System &gt; Setup &gt; QVS &gt; Security</P><P></P><P>Even if this option is unchecked, my macro will still work for users accessing my file with IE + QVPlugin (once they "Give System Access to Module Script" via Ctrl + Shift + M)</P><P>However, for user using the mode 'AJAX zero footprint", it won't work and really relies on the QEMC setting. </P><P></P><P>What are the explanations of such difference, and where is it doccumented?</P><P>Thanks in advance,</P></BODY></HTML> Mon, 26 Jan 2026 18:19:17 GMT https://community.qlik.com/t5/QlikView/Allow-unsafe-macro-execution-on-server-IEPlugin-vs-AJAX/m-p/313458#M1308000 2026-01-26T18:19:17Z