Showing questions tagged: Show all questions

ExtensionSettings not deploying through Intune OMA-URI

Hi, I've been struggling for a week to try and get our extensions managed in Firefox. Firstly I tried doing it in Intune through the Extension Management setting in the A… (read more)

Hi,

I've been struggling for a week to try and get our extensions managed in Firefox. Firstly I tried doing it in Intune through the Extension Management setting in the ADMX however that wouldn't work as it couldn't parse the JSON. Then I've tried using the OMA-URI ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox~Extensions/ExtensionSettings

I'm now getting a straight up error in Intune -2016281112 (0x87d1fde8). I've followed the documentation as best as I can but it still doesn't seem to work. In the Intune logs there is no record of the Config profile even being attempted. Any ideas as to what is causing this error? Here is the full code being used for the OMA-URI string:

<enabled/>
<data id="ExtensionSettings" value='
{

   "*": {
       "blocked_install_message": "This extension is blocked. Please contact the helpdesk for further assistance.",
       "install_sources": ["about:addons","https://addons.mozilla.org/*"],
       "installation_mode": "blocked",
       "allowed_types": ["extension"]
   },
   "rested@restedclient": {
       "installation_mode": "allowed"
   },
   "{c45c406e-ab73-11d8-be73-000a95be3b12}": {
       "installation_mode": "allowed"
   },
   "{5caff8cc-3d2e-4110-a88a-003cc85b3858}": {
       "installation_mode": "allowed"
   },
   "selenium-ide": {
       "installation_mode": "allowed"
   },
   "{a6fd85ed-e919-4a43-a5af-8da18bda539f}": {
       "installation_mode": "allowed"
   },
   "{16a49f65-1369-4839-a5ef-db2581e08b16}": {
       "installation_mode": "allowed"
   },
   "{5384767E-00D9-40E9-B72F-9CC39D655D6F}": {
       "installation_mode": "allowed"
   },
   "{83efb7a7-cf21-4f94-840a-316f651053ef}": {
       "installation_mode": "allowed"
   },
   "{edfc63b3-fc9b-4b6b-b9bf-4561ad548044}": {
       "installation_mode": "allowed"
   },
    "{f1a3d59a-f759-4d03-9545-6f741e64524e}": {
       "installation_mode": "allowed"
   },
    "cors-everywhere@spenibus": {
       "installation_mode": "allowed"
   }
}'/>

Asked by liquidtabs 1 day ago

  • Solved

Intune ExtensionSettings Policy No Longer Working in Firefox

Hello, in Firefox browser, my organization has always blocked all extensions except for ones we allow through OMA-URI ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~fi… (read more)

Hello, in Firefox browser, my organization has always blocked all extensions except for ones we allow through OMA-URI ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox~Extensions/ExtensionSettings.

About a month ago this stopped working and our end users can now install any extension in the Firefox browser that they choose, without approval, creating a security risk.

When checking in about:policies, there is a policy error: Unable to parse JSON for ExtensionSettings. We have checked with Microsoft Intune support and they verified that the policy looks to be configured and targeted correctly.

Here is a snippet of our JSON, this is a test policy where microsoft support had us remove "about:addons" from the 'install sources'. Both test and production policies are not working.

<enabled/>
<data id="ExtensionSettings" value='
{
    "*": {
        "blocked_install_message": "Contact Service Line",
        "install_sources": ["https://addons.mozilla.org/*"],
        "installation_mode": "blocked",
        "allowed_types": ["extension"]
    },
    "cloudmetering@snowsoftware.com": {
        "installation_mode": "force_installed",
        "install_url": "file:///C:/Program Files/Snow Software/Inventory/Agent/FFCloudmetering.xpi"
    },
    "fpdlpffext2@forcepoint.com": {
        "installation_mode": "force_installed",
        "install_url": "file:///C:/Program Files/Websense/Websense Endpoint/winFFext.xpi"
    },
    "jid1-5AULKXLKGyjuLQ@jetpack": {
        "installation_mode": "allowed"
    },
    "abb@amazon.com": {
        "installation_mode": "allowed"
    },
    "ciscowebexstart1@cisco.com": {
        "installation_mode": "allowed"
    },
    "linkedinConverted@firefox-extension": {
        "installation_mode": "allowed"
    },
    "{7bc53591-5218-45a0-b572-4366979097fd}": {
        "installation_mode": "allowed"
    },
    "queryamoid@kaply.com": {
        "installation_mode": "allowed"
    },
    "jid1-93WyvpgvxzGATw@jetpack": {
        "installation_mode": "allowed"
    },

Is this a bug? Or something wrong with our configuration? Has firefox changed the requirements of the extensionsettings OMA-URI?

Thanks for any help in advance.

Asked by victoria.gray 2 weeks ago

Answered by victoria.gray 4 days ago

How to configure "What Firefox should do with other files" with policies.json

Hi, I deployed the last Firefox ESR update and I just found about this new feature : https://support.mozilla.org/en-US/kb/manage-downloads-preferences-using-downloads-men… (read more)

Hi,

I deployed the last Firefox ESR update and I just found about this new feature : https://support.mozilla.org/en-US/kb/manage-downloads-preferences-using-downloads-menu

So files are now downloaded and users are no longer prompted for what to do. My question is can we change this to "Ask whether to open or save files" using policies.json?

Kind regards,

McB

Asked by loic.hemat 4 months ago

Last reply by cor-el 4 months ago

Unable to configure the firefox policy for Proxy in Intune

OMA-URI: ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox/Proxy Value (string): <enabled/> <data id="ProxyLocked" value="true | false"/> <data id=… (read more)

OMA-URI:

./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox/Proxy Value (string):

<enabled/> <data id="ProxyLocked" value="true | false"/> <data id="ConnectionType" value="none | system | manual | autoDetect | autoConfig"/> <data id="HTTPProxy" value="https://httpproxy.example.com"/> <data id="UseHTTPProxyForAllProtocols" value="true | false"/> <data id="SSLProxy" value="https://sslproxy.example.com"/> <data id="FTPProxy" value="https://ftpproxy.example.com"/> <data id="SOCKSProxy" value="https://socksproxy.example.com"/> <data id="SOCKSVersion" value="4 | 5"/> <data id="AutoConfigURL" value="URL_TO_AUTOCONFIG"/> <data id="Passthrough" value="<local>" >="" <data="" <="" p=""></data>


This has mixure of String and Integer , when we configure as string and use one from the above or leaving blank or setting only string , it failed the policy with error - -2016281112

Asked by kamal.manoranjith 4 months ago

Last reply by Mike Kaply 4 months ago

Firefox locked file persisting

I have an issue on a Mac OS Server environment with home folders. The user's login to the MAC which authenticates to the Open Directory MAC server giving home folders to … (read more)

I have an issue on a Mac OS Server environment with home folders. The user's login to the MAC which authenticates to the Open Directory MAC server giving home folders to the logged-on users that reside on the server and not the local workstation. Users commonly use different computers to log in. What we're finding is that the users are increasingly getting the error message that a copy of firefox is open and firefox cannot open.

Removing the lock file solves the issue.

cd ~/Library/Application\ Support/Firefox/Profiles/ cd uniqueid.default rm -rf .parentlock

Is there a way to avoid this? We have the most current version of FF installed.

Asked by andrew184 5 months ago

Last reply by Mike Kaply 5 months ago

  • Archived

hide the three lines button

I would like to hide the menu button located at the top right (the three lines button) or hide the access to the firefox settings (about:preferences) but I cannot find an… (read more)

I would like to hide the menu button located at the top right (the three lines button) or hide the access to the firefox settings (about:preferences) but I cannot find any GPO to do this. How can I hide this button?

Thanks in advance

Asked by jmprieto 7 months ago

Last reply by Mike Kaply 7 months ago

  • Archived

SSL_ERROR_BAD_CERT_DOMAIN in Firefox 101.0

Hello We use our own CA to secure some websites on the internal network. Until version 101.0, the SSL was working correctly. I have updated today to firefox 101 and all o… (read more)

Hello

We use our own CA to secure some websites on the internal network. Until version 101.0, the SSL was working correctly. I have updated today to firefox 101 and all our internal websites started giving SSL_ERROR_BAD_CERT_DOMAIN. There are no issues with external CA issued certificates, so I'm assuming it is something related to the way we generate the certificates. Were there any changes done at version 101 which might reject certificates with a valid common name? Is there a way to disable it and revert to version 100 options?

Thank you

Asked by m3talik 8 months ago

Last reply by cor-el 8 months ago

  • Archived

Mozilla Firefox upgrade

Hi. I hope you can help me to figure out how to upgrade Firefox properly when not using Mozilla Maintenance Service . If I do upgrade Mozilla Firefox manually (running… (read more)

Hi.


I hope you can help me to figure out how to upgrade Firefox properly when not using Mozilla Maintenance Service . If I do upgrade Mozilla Firefox manually (running exe installation) or forcing upgrade for thousands computer through Central management, profiles will blow up.

It is popping for the users: 

You've launched an older version of Firefox Using an older version of Firefox can corrupt bookmarks and browsing history already saved to an existing Firefox profile. To protect your information, create a new profile for this installation of Firefox.

It is not related to central management because I've tried to install manually by executing Firefox exe executable - firstly to install Mozilla Firefox 97.0 and after that 98.0 and I've got the same error.


Thank you

Asked by owndy 9 months ago

Last reply by Mike Kaply 9 months ago

  • Archived

How to disable "Basic Authentication" in Firefox using GPO or Intune policy

I am struggling to find the right policy for disabling "basic authentication" in Firefox using GPO or Intune policy. For other chromium browser like Chrome and Edge Chrom… (read more)

I am struggling to find the right policy for disabling "basic authentication" in Firefox using GPO or Intune policy. For other chromium browser like Chrome and Edge Chromium is very straightforward.

Been struggling to find right config or policies. Non of about:config or about:policy seems to work.

Please suggest.

Regards, Rakesh

Asked by sahoo.rakesh 10 months ago

Last reply by Mike Kaply 9 months ago