• Arhivirano

Extension Management via GPO not working

Trying to block all but allow specific plugins. I have the okta one and the web password filler working, but not the logon assist. I've tried putting in (secret-server-l… (pročitajte više)

Trying to block all but allow specific plugins. I have the okta one and the web password filler working, but not the logon assist. I've tried putting in (secret-server-logon-assist-ff57@thycotic.com), and {secret-server-logon-assist-ff57@thycotic.com}, and also without any extras. These codes come from just the numeric URL (ie https://addons.mozilla.org/firefox/downloads/file/1747490) which says "Secret Server Login Assist (secret-server-logon-assist-ff57@thycotic.com) is blocked by your system administrator. Extension not on OAI allowed list". Am I misreading this message, or missing something on this specific one?

{ "*": { "blocked_install_message" : "Extension not on OAI allowed list", "installation_mode": "blocked" }, "dd1e31d5-3623-45cb-b1ad-64074d36b360@thycotic.com": { "installation_mode": "allowed", "install_url": "https://addons.mozilla.org/firefox/downloads/file/3906662/secret_server_web_password_filler-3.2-fx.xpi" }, "secret-server-logon-assist-ff57@thycotic.com": { "installation_mode": "allowed", "install_url": "https://addons.mozilla.org/firefox/downloads/file/1747490/secret_server_login_assist-2.1.1-an+fx.xpi" }, "plugin@okta.com": { "installation_mode": "allowed", "install_url": "https://addons.mozilla.org/firefox/downloads/file/3901586/okta_browser_plugin-6.8.0-an+fx.xpi" } }

Asked by mhunt3 prije 2 godina

Last reply by trackcourier1 prije 1 godina

  • Arhivirano

How to disable "Basic Authentication" in Firefox using GPO or Intune policy

I am struggling to find the right policy for disabling "basic authentication" in Firefox using GPO or Intune policy. For other chromium browser like Chrome and Edge Chrom… (pročitajte više)

I am struggling to find the right policy for disabling "basic authentication" in Firefox using GPO or Intune policy. For other chromium browser like Chrome and Edge Chromium is very straightforward.

Been struggling to find right config or policies. Non of about:config or about:policy seems to work.

Please suggest.

Regards, Rakesh

Asked by sahoo.rakesh prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

disable "save file as" functionality

We use firefox in our company and we want to prevent firefox to open a download dialog during saving files. we want to prevent users change the name of files or rewriting… (pročitajte više)

We use firefox in our company and we want to prevent firefox to open a download dialog during saving files. we want to prevent users change the name of files or rewriting an existing file during download. for this purpose, chrome has a pit is very crucial for me.olicy called "AllowFileSelectionDialogs".but firefox doesn't yet. Is there any way or trick to apply the same functionality to firefox? is there any library in firefox to be deleted and disable "save file as" functionality?

Asked by mhm98035 prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Is there a global way to turn off dns over https and also make firefox use the system certificate store?

Is there a global way to turn off dns over https and also make firefox use the system certificate store? We have a dns filter that needs to resolve all dns querys and we… (pročitajte više)

Is there a global way to turn off dns over https and also make firefox use the system certificate store?

We have a dns filter that needs to resolve all dns querys and we need a certificate on all systems to allow our Fortigate to do deep packed inspection on all traffic including encrypted.

Asked by dcrawford1 prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Riješeno
  • Arhivirano

Home Page XML

Hello, I am trying to customize the Firefox Homepage XML file and need some assistance as to what fields need to modified with the url to set the default homepage. Please… (pročitajte više)

Hello, I am trying to customize the Firefox Homepage XML file and need some assistance as to what fields need to modified with the url to set the default homepage. Please let me know if you have any questions. Thanks

<plist version="1.0"> <dict> <key>EnterprisePoliciesEnabled</key> <true/> <key>AllowedDomainsForApps</key> <string>managedfirefox.com,example.com</string> <key>AppAutoUpdate</key> <true/> <key>AppUpdateURL</key> <string>https://www.example.com/update.xml</string> <key>Authentication</key> <dict> <key>SPNEGO</key> <array> <string>mydomain.com</string> <string>https://myotherdomain.com</string> </array> <key>Delegated</key> <array> <string>mydomain.com</string> <string>https://myotherdomain.com</string> </array> <key>NTLM</key> <array> <string>mydomain.com</string> <string>https://myotherdomain.com</string> </array> <key>AllowNonFQDN</key> <dict> <key>SPNEGO</key> <true/> <key>NTLM</key> <true/> </dict> <key>AllowProxies</key> <dict> <key>SPNEGO</key> <true/> <key>NTLM</key> <true/> </dict> <key>PrivateBrowsing</key> <true/> <key>Locked</key> <true/> </dict> <key>AutoLaunchProtocolsFromOrigins</key> <array> <dict> <key>protocol</key> <string>zoommtg</string> <key>allowed_origins</key> <array> <string>https://somesite.zoom.us</string> </array> </dict> </array> <key>BlockAboutAddons</key> <true/> <key>BlockAboutConfig</key> <true/> <key>BlockAboutProfiles</key> <true/> <key>BlockAboutSupport</key> <true/> <key>Bookmarks</key> <array> <dict> <key>Title</key> <string>Example1</string> <key>URL</key> <string>https://www.example.org</string> <key>Favicon</key> <string>https://www.example.org/favicon.ico</string> <key>Placement</key> <string>toolbar</string> <key>Folder</key> <string>Example1Folder</string> </dict> <dict> <key>Title</key> <string>Example2</string> <key>URL</key> <string>https://www.example.com</string> <key>Favicon</key> <string>https://www.example.com/favicon.ico</string> <key>Placement</key> <string>menu</string> <key>Folder</key> <string>Example2Folder</string> </dict> </array> <key>CaptivePortal</key> <false/> <key>Certificates</key> <dict> <key>ImportEnterpriseRoots</key> <true/> <key>Install</key> <array> <string>cert1.der</string> <string>cert2.pem</string> </array> </dict> <key>Cookies</key> <dict> <key>Allow</key> <array> <string>https://www.example.org/</string> </array> <key>Allowsession</key> <array> <string>https://www.example.edu/</string> </array> <key>Block</key> <array> <string>https://www.example.edu/</string> </array> <key>Behavior</key> <string>limit-foreign</string> <key>Locked</key> <true/> </dict> <key>DefaultDownloadDirectory</key> <string>${home}/Downloads</string> <key>DownloadDirectory</key> <string>${home}/Downloads</string> <key>DNSOverHTTPS</key> <dict> <key>Enabled</key> <false/> <key>ProviderURL</key> <string>URL_TO_ALTERNATE_PROVIDER</string> <key>Locked</key> <true/> <key>ExcludedDomains</key> <array> <string>example.com</string> </array> </dict> <key>DisableAppUpdate</key> <true/> <key>DisableBuiltinPDFViewer</key> <true/> <key>DisabledCiphers</key> <dict> <key>TLS_DHE_RSA_WITH_AES_128_CBC_SHA</key> <true/> <key>TLS_DHE_RSA_WITH_AES_256_CBC_SHA</key> <true/> <key>TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</key> <true/> <key>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA</key> <true/> <key>TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256</key> <true/> <key>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</key> <true/> <key>TLS_RSA_WITH_AES_128_CBC_SHA</key> <true/> <key>TLS_RSA_WITH_AES_256_CBC_SHA</key> <true/> <key>TLS_RSA_WITH_3DES_EDE_CBC_SHA</key> <true/> <key>TLS_RSA_WITH_AES_128_GCM_SHA256</key> <false/> <key>TLS_RSA_WITH_AES_256_GCM_SHA384</key> <false/> </dict> <key>DisableDeveloperTools</key> <true/> <key>DisableFeedbackCommands</key> <true/> <key>DisableFirefoxAccounts</key> <true/> <key>DisableFirefoxScreenshots</key> <true/> <key>DisableFirefoxStudies</key> <true/> <key>DisableForgetButton</key> <true/> <key>DisableFormHistory</key> <true/> <key>DisableMasterPasswordCreation</key> <true/> <key>DisablePasswordReveal</key> <true/> <key>DisablePocket</key> <true/> <key>DisablePrivateBrowsing</key> <true/> <key>DisableProfileImport</key> <true/> <key>DisableProfileRefresh</key> <true/> <key>DisableSafeMode</key> <true/> <key>DisableSecurityBypass</key> <dict> <key>InvalidCertificate</key> <true/> <key>SafeBrowsing</key> <true/> </dict> <key>DisableSetDesktopBackground</key> <true/> <key>DisableSystemAddonUpdate</key> <true/> <key>DisableTelemetry</key> <true/> <key>DisplayBookmarksToolbar</key> <true/> <key>DontCheckDefaultBrowser</key> <true/> <key>EnableTrackingProtection</key> <dict> <key>Value</key> <true/> <key>Locked</key> <true/> <key>Cryptomining</key> <true/> <key>Fingerprinting</key> <true/> <key>Exceptions</key> <array> <string>https://example.com</string> </array> </dict> <key>EncryptedMediaExtensions</key> <dict> <key>Enabled</key> <false/> <key>Locked</key> <false/> </dict> <key>Extensions</key> <dict> <key>Install</key> <array> <string>https://addons.mozilla.org/firefox/downloads/file/1053714/ghostery_privacy_ad_blocker-8.2.4-an+fx.xpi</string> </array> <key>Uninstall</key> <array/> <key>Locked</key> <array> <string>firefox@ghostery.com</string> </array> </dict> <key>ExtensionSettings</key> <dict> <key>*</key> <dict> <key>blocked_install_message</key> <string>Custom error message.</string> <key>install_sources</key> <array> <string>https://addons.mozilla.org/</string> </array> <key>installation_mode</key> <string>blocked</string> </dict> <key>uBlock0@raymondhill.net</key> <dict> <key>installation_mode</key> <string>force_installed</string> <key>install_url</key> <string>https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi</string> </dict> </dict> <key>ExtensionUpdate</key> <false/> <key>FirefoxHome</key> <dict> <key>Search</key> <true/> <key>TopSites</key> <true/> <key>SponsoredTopSites</key> <false/> <key>Highlights</key> <true/> <key>Pocket</key> <false/> <key>SponsoredPocket</key> <false/> <key>Snippets</key> <false/> <key>Locked</key> <true/> </dict> <key>FlashPlugin</key> <dict> <key>Allow</key> <array> <string>https://www.example.com</string> </array> <key>Block</key> <array> <string>https://www.example.org</string> </array> <key>Default</key> <true/> <key>Locked</key> <true/> </dict> <key>Handlers</key> <dict> <key>mimeTypes</key> <dict> <key>application/msword</key> <dict> <key>action</key> <string>useSystemDefault</string> <key>ask</key> <false/> </dict> </dict> <key>schemes</key> <dict> <key>mailto</key> <dict> <key>action</key> <string>useHelperApp</string> <key>ask</key> <false/> <key>handlers</key> <array> <dict> <key>name</key> <string>Gmail</string> <key>uriTemplate</key> <string>https://mail.google.com/mail/?extsrc=mailto&url=%s</string> </dict> </array> </dict> </dict> <key>extensions</key> <dict> <key>pdf</key> <dict> <key>action</key> <string>useHelperApp</string> <key>ask</key> <false/> <key>handlers</key> <array> <dict> <key>name</key> <string>Adobe Acrobat</string> <key>path</key> <string>/System/Applications/Preview.app</string> </dict> </array> </dict> </dict> </dict> <key>HardwareAcceleration</key> <false/> <key>Homepage</key> <dict> <key>URL</key> <string>http://example.com</string> <key>Locked</key> <true/> <key>Additional</key> <array> <string>https://www.example.com/extra-home1.htm</string> <string>https://www.example.com/extra-home2.htm</string> <string>https://www.example.com/extra-home3.htm</string> </array> <key>StartPage</key> <string>homepage</string> </dict> <key>InstallAddonsPermission</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> <string>https://example.edu</string> </array> <key>Default</key> <false/> </dict> <key>LocalFileLinks</key> <array> <string>http://example.org</string> <string>http://example.edu</string> </array> <key>PrimaryPassword</key> <true/> <key>NetworkPrediction</key> <false/> <key>NewTabPage</key> <false/> <key>NoDefaultBookmarks</key> <true/> <key>OfferToSaveLogins</key> <false/> <key>OfferToSaveLoginsDefault</key> <true/> <key>OverrideFirstRunPage</key> <string>https://www.example.com</string> <key>OverridePostUpdatePage</key> <string></string> <key>PasswordManagerEnabled</key> <false/> <key>PDFjs</key> <dict> <key>Enabled</key> <false/> <key>EnablePermissions</key> <false/> </dict> <key>Permissions</key> <dict> <key>Camera</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>BlockNewRequests</key> <true/> <key>Locked</key> <true/> </dict> <key>Microphone</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>BlockNewRequests</key> <true/> <key>Locked</key> <true/> </dict> <key>Location</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>BlockNewRequests</key> <true/> <key>Locked</key> <true/> </dict> <key>Notifications</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>BlockNewRequests</key> <true/> <key>Locked</key> <true/> </dict> <key>Autoplay</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>Default</key> <string>block-audio</string> <key>Locked</key> <true/> </dict> <key>VirtualReality</key> <dict> <key>Allow</key> <array> <string>https://example.org</string> </array> <key>Block</key> <array> <string>https://example.edu</string> </array> <key>BlockNewRequests</key> <true/> <key>Locked</key> <true/> </dict> </dict> <key>PictureInPicture</key> <dict> <key>Enabled</key> <false/> <key>Locked</key> <true/> </dict> <key>PopupBlocking</key> <dict> <key>Allow</key> <array> <string>https://www.example.org</string> <string>https://www.example.edu</string> </array> <key>Default</key> <true/> <key>Locked</key> <true/> </dict> <key>Preferences</key> <dict> <key>accessibility.force_disabled</key> <dict> <key>Value</key> <integer>1</integer> <key>Status</key> <string>default</string> </dict> <key>browser.cache.disk.parent_directory</key> <dict> <key>Value</key> <string>SOME_NATIVE_PATH</string> <key>Status</key> <string>user</string> </dict> <key>browser.tabs.warnOnClose</key> <dict> <key>Value</key> <false/> <key>Status</key> <string>locked</string> </dict> </dict> <key>Proxy</key> <dict> <key>SocksVersion</key> <string>4</string> <key>Mode</key> <string>manual</string> <key>HTTPProxy</key> <string>proxy.example.com:80</string> <key>Locked</key> <true/> </dict> <key>RequestedLocales</key> <array> <string>de</string> <string>en-US</string> </array> <key>SanitizeOnShutdown</key> <true/> <key>SearchBar</key> <string>separate</string> <key>UserMessaging</key> <dict> <key>WhatsNew</key> <false/> <key>ExtensionRecommendations</key> <false/> <key>FeatureRecommendations</key> <false/> <key>UrlbarInterventions</key> <false/> <key>SkipOnboarding</key> <true/> </dict> <key>WebsiteFilter</key> <dict> <key>Block</key> <array> <string><all_urls></string> </array> <key>Exceptions</key> <array> <string>https://www.google.com/*</string> <string>https://www.yahoo.com/*</string> </array> </dict> <key>SecurityDevices</key> <dict> <key>NAME_OF_DEVICE</key> <string>PATH_TO_LIBRARY_FOR_DEVICE</string> </dict> <key>ShowHomeButton</key> <true/> <key>SSLVersionMin</key> <string>tls1.2</string> <key>SSLVersionMax</key> <string>tls1.3</string> <key>SupportMenu</key> <dict> <key>Title</key> <string>Click here for help</string> <key>URL</key> <string>http://example.edu/</string> <key>AccessKey</key> <string>C</string> </dict> </dict> </plist>

Asked by hcoleman4771 prije 1 godina

Answered by hcoleman4771 prije 1 godina

  • Arhivirano

Add exception to self-signed URL system wide

Hello everyone. We are using a software in my company that runs a local server with a self-signed certificate. In order to access the software right now we need to inst… (pročitajte više)

Hello everyone.

We are using a software in my company that runs a local server with a self-signed certificate. In order to access the software right now we need to instruct the users to manually bypass the warning page for potencial security risks.

Is there a way to use an autoconfig or policy to automatically add the exception to that specific URL? I see that copying the cert_override.txt file in users profiles will add the exception, but I'd like to avoid that. I've also looked at a question with a similar problem here, but I couldn't get this specific solution to work on my end (Firefox ESR 91): https://support.mozilla.org/en-US/questions/1287443

Asked by marcelohmoraes prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Mozilla Firefox upgrade

Hi. I hope you can help me to figure out how to upgrade Firefox properly when not using Mozilla Maintenance Service . If I do upgrade Mozilla Firefox manually (runnin… (pročitajte više)

Hi.


I hope you can help me to figure out how to upgrade Firefox properly when not using Mozilla Maintenance Service . If I do upgrade Mozilla Firefox manually (running exe installation) or forcing upgrade for thousands computer through Central management, profiles will blow up.

It is popping for the users: 

You've launched an older version of Firefox Using an older version of Firefox can corrupt bookmarks and browsing history already saved to an existing Firefox profile. To protect your information, create a new profile for this installation of Firefox.

It is not related to central management because I've tried to install manually by executing Firefox exe executable - firstly to install Mozilla Firefox 97.0 and after that 98.0 and I've got the same error.


Thank you

Asked by owndy prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Symlink for policy.json disappears after an update

I've been using symlink policy.json for quite some time but I think ever since 91.x version of FF ESR, every incremental update removes symbolic link for policy.json. Any… (pročitajte više)

I've been using symlink policy.json for quite some time but I think ever since 91.x version of FF ESR, every incremental update removes symbolic link for policy.json. Any idea why that happens and how to fix that??

Asked by Serpher prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Why Firefox (ESR version) manual update is failed on selective machines

Launch Firefox, manually check for latest update by going to settings > Help > About Firefox. However the manual update keep showing update failed. Other than Mozil… (pročitajte više)

Launch Firefox, manually check for latest update by going to settings > Help > About Firefox. However the manual update keep showing update failed. Other than Mozilla config file, can we use GPO to configure auto update for Firefox browser?

Asked by chin_leng_ooi prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Riješeno
  • Arhivirano

CA Signed Certificate shows as "not valid"

There is a certificate for an internal website that FireFox is saying is not valid/secure and it makes you add an exception. However, if you use IE, Edge or Chrome it loa… (pročitajte više)

There is a certificate for an internal website that FireFox is saying is not valid/secure and it makes you add an exception. However, if you use IE, Edge or Chrome it loads fine with the valid CA Certificate. I've cleared all data (cache/etc...) and it hasn't fixed it. Hopefully someone has a fix for this?

Getting "SEC_ERROR_UNKNOWN_ISSUER" for the certificate and its saying:

   Peer’s Certificate issuer is not recognized.
   HTTP Strict Transport Security: false
   HTTP Public Key Pinning: false


FireFox Version: 91.8.0esr (64-bit) Operating System: Windows 10 (64-bit)

Asked by jCubed prije 1 godina

Answered by Mike Kaply prije 1 godina

  • Arhivirano

Why Firefox (ESR version) manual update is failed on selective machines

Launch Firefox, manually check for latest update by going to settings > Help > About Firefox. However the manual update keep showing update failed. Other than Mozil… (pročitajte više)

Launch Firefox, manually check for latest update by going to settings > Help > About Firefox. However the manual update keep showing update failed. Other than Mozilla config file, can we use GPO to configure auto update for Firefox browser?

Asked by chin_leng_ooi prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Poisoned Websites – Malware, etc.

I am a Cyber Security Specialist and System Integrator (www.techwareusa.com and www.cybersecureusa.com ). I have developed a pretty good Cyber Security Stack with the ex… (pročitajte više)

I am a Cyber Security Specialist and System Integrator (www.techwareusa.com and www.cybersecureusa.com ). I have developed a pretty good Cyber Security Stack with the exception of one chink in my armor. I have been running the Stack on my Clients systems (about 100 total) for over two years and have had only one breach. That breach was caused by the Client not following my suggestion (read any popup and don’t just click through it). He does now.

Part of my Stack is Firefox which I like a lot except that your cyber security leaves one thing as an exposure.

If one were to browse to a poisoned website (namely one infected with malware of some type) and click on an inserted link, malware is automatically downloaded and installed. Firefox does nothing to stop the system from being infected. This kind of website is one that pops up with a big red screen saying your machine has been infected with a “trojan” or some such. Do not attempt to turn off your system and call Microsoft Support at xxx-xxx-xxxx” (often an 800 #). Indeed, the browser is locked and can’t be closed from a normal action. (When I install Firefox, I setup the security features for my Clients including telling it to block pop-up windows and Warn you when websites try to install add-ons in the Privacy & Security, Permissions section. I have my Clients systems under my control via Splashtop Remote Support into my office. If the “Tech” hasn’t messed up my Splashtop install, I will go in, use Task Manager to shut down Firefox and then clean the system. If the “Tech” did mess up my Splashtop install, the system will have to be sent to me to fix. I have Clients in several states across the southern part of the country.

If the Client calls the 800# the “tech” will remotely access their system and totally messes it up with registry entry’s, replacing files with corrupted versions and such actions. All of this to raise the cost to my Client. They will charge the Client about $700 to $800 but also they will get the Client’s Credit card information to sell. The Client will then call me and often the system is so messed up that I have to reload the OS and missing applications plus my time and the total cost to the Client is often well over $1,000.

I have been looking for software that will block these poisoned websites. The only one that I have found that looks like it will work is Threatlocker. While a good product, the company has its head in the wrong place as far as setting up resellers. I am a reseller and have been in business for over 28 years and have had many vendor relationships. These folks want us to sign both an End User Agreement (that makes me responsible for the way that my Clients use their software) plus they want me to sign a Partner Agreement. In my mind I cannot be both and certainly will not agree to be the end user.

Back to what I am asking help on is the automatic install of the malware off of the poisoned website. Perhaps a browser “setting” to ask for an override button option to be able to install software on the system. If I chose this in the Firefox Settings it will take an action on the part of the user to override the automatic install. In fact, if we could add to the option a number of times (and maybe a message, like CALL BILL before you proceed) that the override button has to be pressed to do the install. The more I can get the user to think, the better it will be for them and the more they will appreciate Firefox and me. No other browser has any feature like this.

Asked by wjett prije 1 godina

Last reply by Amelia prije 1 godina

  • Arhivirano

How do I configure kiosk mode?

Mozilla's website states: "Numerous features of the kiosk mode are configurable through policy or command line parameters when launching the browser." However, other t… (pročitajte više)

Mozilla's website states:

"Numerous features of the kiosk mode are configurable through policy or command line parameters when launching the browser."

However, other than a single example to run kiosk mode as a private window, it doesn't seem to provide any information on how to access such configuration. I couldn't seem to find the information anywhere else either.

How can I configure kiosk mode? Preferably via the CLI, but I'd be interested also to learn what is meant by "configurable through policy".

Asked by davidecl175 prije 1 godina

Last reply by Mike Kaply prije 1 godina

  • Arhivirano

Firefox starting extremely slow when custom homepage GPO applied

All our Firefox browsers (version 99.*, Windows 10 Pro or Enterprise) in the company need around 20 seconds to load a web page when first opened. All other browser functi… (pročitajte više)

All our Firefox browsers (version 99.*, Windows 10 Pro or Enterprise) in the company need around 20 seconds to load a web page when first opened. All other browser functions work fluently from the beginning. Also the slowness only happens after opening and not during further use. Which Firefox is refusing to load I can open other tabs and e.g. do a Google search and then the "slowness timer" starts again (independently if the first tab is closed or stays open) and refuses to do anything on that tab. Once the slownedd period is over all tabs are loaded and no further problem occurs. This issue occurs only when the GPO "URL for Home Page" is applied. But this page is reachable and when Firefox is working it loads within milliseconds. For testing I created a new profile and on the first startup the problem already occurs. And all other startups too. When temporarily removing this one GPO entry it immediately works again fluently. It also doesn't matter what I set as home page (company internal website or some random web page); it is always slow once this setting is in place.

Asked by Felix prije 1 godina

Last reply by Felix prije 1 godina

  • Arhivirano

Silent Auto Update for Firefox ESR

Hi All- I am in charge of deploying Firefox ESR to my company and trying to get it to silently auto update on it's on with user interaction. We have policies in place (GP… (pročitajte više)

Hi All- I am in charge of deploying Firefox ESR to my company and trying to get it to silently auto update on it's on with user interaction. We have policies in place (GPO) that prevent it at this point. I need some guidance on whether I should use just GPOs to manage this or should I go the route of the .cfg file? If someone has a step by step on how to best achieve this I would appreciate it. I am currently using the .msi installer.

Here is settings in an old .cfg file that I am testing with:

lockPref("app.update.mode", 1); lockPref("app.update.service.enabled", true); lockPref("extensions.update.enabled", false); lockPref("extensions.update.autoUpdateEnabled", false);

// Set default homepage - users can change // Requires a complex preference defaultPref("browser.startup.homepage","data:text/plain,browser.startup.homepage=http://workday");

// Don't ask to install the Flash plugin lockPref("plugins.notifyMissingFlash", false);

// Disable Search Engine automatic updates lockPref("browser.search.update", false);

//Disable telemetry lockPref("toolkit.telemetry.prompted", 2); lockPref("toolkit.telemetry.rejected", true); lockPref("toolkit.telemetry.enabled", false);

// Disable health reporter lockPref("datareporting.healthreport.service.enabled", false); lockPref("datareporting.healthreport.logging.consoleEnabled", false); lockPref("datareporting.healthreport.uploadEnabled", false);

// Disable all data upload (Telemetry and FHR) lockPref("datareporting.policy.dataSubmissionEnabled", false);

// Disable crash reporter lockPref("toolkit.crashreporter.enabled", false); Components.classes["@mozilla.org/toolkit/crash-reporter;1"].getService(Components.interfaces.nsICrashReporter).submitReports = false;

// Don't show WhatsNew on first run after every update pref("browser.startup.homepage_override.mstone","ignore");

// Don't show 'know your rights' on first run pref("browser.rights.3.shown", true);

Asked by CherishYourLife prije 1 godina

Last reply by cor-el prije 1 godina

  • Riješeno
  • Arhivirano

Changing FireFox preferences via Registry Editor

Hello! As you may know, FireFox does not use the Windows Certificate Store by default. Therefore I have to change the "security.enterprise-roots.enabled" in the preferenc… (pročitajte više)

Hello! As you may know, FireFox does not use the Windows Certificate Store by default. Therefore I have to change the "security.enterprise-roots.enabled" in the preferences on each workstation. I have searched and found ways to enforce this change by GPE , but I wonder if there is a way to change firefox preferences, especially the one I've mentioned, via Registry Editor.

Asked by AmirSF prije 1 godina

Answered by TyDraniu prije 1 godina

  • Arhivirano

SSL_ERROR_BAD_CERT_DOMAIN in Firefox 101.0

Hello We use our own CA to secure some websites on the internal network. Until version 101.0, the SSL was working correctly. I have updated today to firefox 101 and all … (pročitajte više)

Hello

We use our own CA to secure some websites on the internal network. Until version 101.0, the SSL was working correctly. I have updated today to firefox 101 and all our internal websites started giving SSL_ERROR_BAD_CERT_DOMAIN. There are no issues with external CA issued certificates, so I'm assuming it is something related to the way we generate the certificates. Were there any changes done at version 101 which might reject certificates with a valid common name? Is there a way to disable it and revert to version 100 options?

Thank you

Asked by m3talik prije 1 godina

Last reply by cor-el prije 1 godina