Firefox for Enterprise Support Forum

Hi,

i'm running Firefox on +70 Windows 10 PCs in three labs in a university. I've applied a computer configuration GPO with AppAutoUpdate enabled, BackgroundAppUpdate enabled and DisableAppUpdate disabled to my PCs, but it looks like i don't get automatic updates. In my labs i see some workstations have Firefox 108.0.1, but most workstations still have Firefox 107.0.1...

As my users can switch between workstations and labs, this leads to the annoying 'older version' message box when a user worked on a PC which already got the update and later uses another PC which didn't get the update. The users are also forced to create a 'new' profile then, which is quite problematic because of the size of the roaming profiles.

Any hints?

Bonjour, Je travaille dans un musée. Nous utilisons Firefox sur des pc accessibles pour le public. Comment accéder à "aboutNetErrorCodes.js" pour l'éditer. Je souhaite remplacer le message par défaut de Firefox et rediriger vers une une page en local. Merci pour votre aide. Yves

Every time you open Firefox, you will prompt old version bookmarks, history, and passwords, and you can't use them. Choose to opt out or create a new personal file. There are also prompts for the upgrade, and the downgrading version is unsuccessful pls help me

Hi all,

we are using Mozilla Firefox ESR in our enterprise environment.

Is there a documentation which URL's Firefox uses when (Mozilla Maintenance Service) when it tries to update his version ?

We have tried with following URL's on our Firewall:

aus.mozilla.org aus2.mozilla.org aus3.mozilla.org aus4.mozilla.org aus5.mozilla.org download.cdn.mozilla.net archive.mozilla.org ftp.mozilla.org

It is finding the new version, but when trying to download the update it fails.

Thank you for any help on this case.

We have 50 workstations set up for certain jobs and the users roam as needed. Each workstation has two printers using different media. the printers are controlled by having two instances of Firefox with each having a user profile to use one printer or the other. In addition to printer settings we set a number of other profile settings such as silent printing etc.

Having a profile per user requires a great deal of setup work to allow different users to log in with authentication and to align the printers with the programs which will print to them.

A solution that would allow us to write a copy of a master profile to each new user via a program would be nearly perfect. Thank you,

So we update Firefox via PatchMyPC from SCCM. We don't want to disable Firefox Updates. The issue is how do you stop the Update notification popup every time you start Firefox. You don't have this issue on Edge and Chrome

FF 102.3.0esr (64-bit) says 'You are currently on the update channel' but doesn't update. I see 102.5.0 is available. Originally said policies managed by organization. Enterprises Policies. I Deleted [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Mozilla\Firefox]. Enterprises Policies now gone, but message hasn't changed nor can I update.

Currently we are setting our GPO to set users homepage to our intranet. The issue is in Firefox i can't see how to disable Open previous windows and tabs in the Genral Settings .

Hi Team, I'm using the Zscaler in my network, when I use the Firefox, appear the error:

"Software is Preventing Firefox From Safely Connecting to This Site

www.googleadservices.com is most likely a safe site, but a secure connection could not be established. This issue is caused by Zscaler Root CA, which is either software on your computer or your network.

What can you do about it?

www.googleadservices.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely...." Picture 1

I have root certificate in path: /usr/share/ca-certificates/mozilla$ Picture 2

I run the command for updates CA but it doesn't work: sudo update-ca-certificates

Errors keep popping up.

The certificate not appear in the Certificate manager > Authorities Picture 3

But if I open the firefox > Settings > Privacy & Security> Certifcates > View Certificates > Import And I import the certificate ZscalerRoot.crt and I mark the option "trust this CA to identify websites" the firefox works, and I can open the site without error message.

Picture 4

And the certificate appear in the manager certificate: Picture 5

How can I put the command terminal certificate, which I have on hundreds of machines?

Note: I need to put the certificate only for internet access.

I posted this previously and got zero response and the post is now archived. Hoping for better luck this time.

We have rolled Firefox ESR to all of our computers. On some of them the Maintenance Service is working correctly and installing updates with no user interaction. On other computers, users are getting a UAC prompt to enter admin credentials to install updates. I have tried various changes that I have found across the web from Deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MozillaMaintenance\Security to uninstalling and re-installing the Maintenance Service. All of the users/computers have the same policies applied via Group Policy (Application Autoupdate: Enabled and Disable Update: Disabled) and are not local admins.

Im working on a deployment package for Mozilla Firefox 106.0.1 when launching Firefox on a brand new user it automatically creates a shortuct for private browsing. Im looking for a way to disable this as the package im creating is an appv package and this new shortcut installs in users profile, so it won't be uninstalled. I have searched google but cant find any hits.

We have the following for customization: Application directory\defaults\pref: localsettings.js with these settings: pref("general.config.obscure_value", 0); // only needed if you do not want to obscure the content with ROT-13 pref("general.config.filename", "mozilla.cfg");

Application directory\mozilla.cfg with these settings: // Don't show WhatsNew on first run after every update pref("browser.startup.homepage_override.mstone","ignore");

// Don't show 'know your rights' on first run pref("browser.rights.3.shown", true);

// Disable Policy Notice on First Run pref("toolkit.telemetry.reportingpolicy.firstRun", false);

// Disable checkDefaultBrowser lockPref("browser.shell.checkDefaultBrowser", false);

Application directory\distribution\policies.json with the following settings: {

 "policies": {
   "DisableAppUpdate": true,

"DontCheckDefaultBrowser": true } }

Is there a corresponding GPO for this setting? I have been unable to find it and searching hasn't yielded much help.

I'm on 102 ESR with up to date admx files. This would be super helpful!

Thanks!

Hello,

I am managing Firefox for a very large organization. We have several extension that we deploy using registry keys and we don't allow users to install additional addons. However, since version 102.3 I noticed some extensions that are present on the machine as .xpi files, but should not install unless a specific application is also present, are also being activated. They are enabled in the add-on manager, the information is present in the "extensions.json" and "extension-preferences.json" files. This should not happen. Is there any way to prevent the activation of these files?

Thank you!

I'm trying to configure the "Extension Management" policy for firefox in my company. We have 14 addons to manage. using JSON this will end to a line of about 2500 characters.

when I try to copy the code into the gpo I get a message telling me the limit is 2048 characters.

Is there a way to baypass this limitation ?

thank you

Hi,

I deployed the last Firefox ESR update and I just found about this new feature : https://support.mozilla.org/en-US/kb/manage-downloads-preferences-using-downloads-menu

So files are now downloaded and users are no longer prompted for what to do. My question is can we change this to "Ask whether to open or save files" using policies.json?

Kind regards,

McB