Specifies which folders have permission to load and execute files that contain code.
| Type: | String |
| Saved in: | Registry |
| Initial value: | Varies, may be locked by a CAD administrator |
Note: Starting with AutoCAD 2026 and AutoCAD 2026-based products, when
PROJECTAWARE is set to 1, this system variable is read-only. For more information, see
About Connected Support Files on setting up support files for Autodesk Docs projects.
To minimize the possibility of loading and executing malicious code, always set the TRUSTEDPATHS system variable to unique, read-only folders where your authorized applications are located. This includes the following file types:
- ARX, DBX, CRX, HDI files
- LSP, FAS, VLX, MNL, SCR files
- .NET assemblies
- VBA macros (DVB files)
- acad.rx
- JavaScript
- DLL files
Valid strings include the following:
- When TRUSTEDPATHS is set to one or more folder paths in quotes and separated by semicolons, the previously listed file types are loaded from the specified folders.
- When TRUSTEDPATHS is set to "" (an empty string) or "." (a period), there are no trusted folder paths in addition to the implicitly trusted ones.
- When TRUSTEDPATHS includes a folder that ends with \... (backslash and three dots), all of its subfolders are also trusted.
The following folders are always trusted:
- C:\Program Files\ and its subfolders
- C:\Program Files (x86) and its subfolders
Guidelines for Trusted Locations on Autodesk Docs:
- Mark these folders as read-only for all user roles except administrators, who are allowed to make changes.
- Apply the Principle of Least Privilege (PoLP) to ensure correct permissions.
Note: In some circumstances, it might be more convenient to specify the relative file path in the
Filename parameter when using the LOAD function.
- These trusted paths can also be specified in the Options dialog box
Files tab, the Security Options dialog box, or in the Deployment Wizard.
- The setting of the SECURELOAD system variable determines whether other locations, including the current drawing folder, are trusted. Signed DLLs are automatically trusted.
Note: Beginning with AutoCAD 2013 SP1, the reserved
acad<release>.lsp and
acad<release>doc.lsp files and their successors are loaded only from their default installation folders:
<install folder>\Support and <install folder>\Support\<language> respectively.