I would just use Group Policy to add that Domain/site to the Trusted Sites security. Then, users should be able to install it...or have it auto-install.
Much easier...although that's not the question you asked.
The only way I could think of with UEM is the have the registry keys added to populate the required security values.
- On a computer where the desired control has been installed, lookup the CLSID for that control in the registry under HKEY_CLASSES_ROOT\<control name>\CLSID
- Next, navigate to HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\AllowedControls.
If that key doesn't exist you can create it. Add a DWORD value for the CLSID you want, and set the data to 0. To prohibit the use of that Control set the data to 1.
To limit Internet Explorer to the use of those Controls configure the "Run ActiveX Controls And Plug-ins" setting to "Administrator Approved".
This is a per-security-zone setting, so you will have to set it for every zone you want limited.
Play around with these settings and maybe it will work for your environment.
Thanks for your response. However I didn't see it until now. I ended up installing the Active X control in an app volume to resolve but may go back and try your GP suggestion.