Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Firefox 78 ESR cannot accept certificate exclusion for HSTS-enabled Website

  • 2 replies
  • 1 has this problem
  • 23 views
  • Last reply by any_mail

more options

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network.

Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely.

How to reenable possibility to add exceprion for hsts enabled websites?

Windows 7 Firefox ESR 78 Portable.

For now I downgraded to FF 68.

Attached screenshots

Modified by any_mail

Chosen solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Read this answer in context 👍 1

All Replies (2)

more options

Chosen Solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Helpful?

more options

cor-el said

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate. You can try to set security.enterprise_roots.enabled = true on the about:config page. You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Thak you. It work well.

Helpful?

Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.