Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Firefox 78 ESR cannot accept certificate exclusion for HSTS-enabled Website

  • 2 replies
  • 1 has this problem
  • 1357 views
  • Last reply by any_mail

any_mail
any_mail
more options

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network.

Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely.

How to reenable possibility to add exceprion for hsts enabled websites?

Windows 7 Firefox ESR 78 Portable.

For now I downgraded to FF 68.

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network. Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely. How to reenable possibility to add exceprion for hsts enabled websites? Windows 7 Firefox ESR 78 Portable. For now I downgraded to FF 68.
Attached screenshots

Modified by any_mail

Chosen solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Read this answer in context 👍 2

All Replies (2)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Chosen Solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

any_mail
any_mail Question owner
more options

cor-el said
It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate. You can try to set security.enterprise_roots.enabled = true on the about:config page. You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Thak you. It work well.