Showing questions tagged: Show all questions
  • Archived

GOOGLE WILL NOT LET ME SIGN IN ON FIREFOX "Couldn’t sign you in This browser or app may not be secure"

GOOGLE WILL NOT LET ME SIGN IN ON FIREFOX. I can sign in will all other browsers but I get this message on Firefox: Couldn’t sign you in This browser or app may not be s… (read more)

GOOGLE WILL NOT LET ME SIGN IN ON FIREFOX. I can sign in will all other browsers but I get this message on Firefox:

Couldn’t sign you in This browser or app may not be secure.

I have cleared cache, cookies. Checked for updates...rebooted, ect. Nothing works.

HELP!!!!

Asked by a60 7 months ago

Last reply by cor-el 7 months ago

  • Solved

HTTPs Only Mode

Hello, I have a problem with setting up HTTPs only Mode in my Organization, I read a lot about that, but I dont see the "dom.security.https_only_mode" switch in GPO, we h… (read more)

Hello, I have a problem with setting up HTTPs only Mode in my Organization, I read a lot about that, but I dont see the "dom.security.https_only_mode" switch in GPO, we have the newest admx for Firefox. We need that to specific container, but still I dont know how to set it up, even via regedit, or preferences. Can someone describe me when can I set it up ? It could be using json file (which exactly file and how?), registry or just gpo. Regards, M.

Asked by marcin.markiewicz 1 month ago

Answered by Mike Kaply 1 month ago

  • Archived

Unable to access application on Mozilla Firefox v112.0.1(64 bit)

Dear Team, Our application is accessible on Firefox v101.0.1. But recently we have upgraded our desktops with Firefox v112.0.1. The same application accessible on Firefox… (read more)

Dear Team, Our application is accessible on Firefox v101.0.1. But recently we have upgraded our desktops with Firefox v112.0.1. The same application accessible on Firefox 101.0.1 is not able to accessible on v112.0.1.

The error code we could see on browser is SEC_ERROR+PKCS11_GENERAL_ERROR. We have already raised a case with HTTP support team but they have suggested to check at browser level. We had also collected traces from firefox but unable to upload the same. Kindly help here at the earliest. Thanks, Shruti Fegade

Asked by shfegade 8 months ago

Last reply by Mike Kaply 8 months ago

  • Solved

Extensions policy allowed not working (Intune ADMX)

Hi! Using Intune, we are setting some settings in Firefox. One that is a bit troublesome is the ExtensionSettings Currently looks like this: { "*": { "blocked_ins… (read more)

Hi!

Using Intune, we are setting some settings in Firefox. One that is a bit troublesome is the ExtensionSettings

Currently looks like this:

{

 "*": {
   "blocked_install_message": "Blocked.",
   "installation_mode": "blocked"
 },
 "uBlock0@raymondhill.net": {
   "installation_mode": "allowed"
 },
 "addon@darkreader.org": {
   "installation_mode": "allowed"
 },
 "@react-devtools": {
   "installation_mode": "allowed"
 }

}

I get the Blocked message if I try any of the allowed extentions like uBlock, Dark Reader or React Dev Tools.

I can add that uBlock had "force_installed" (With URL since that is required for force) and that worked fine.

Asked by janfredrik 4 months ago

Answered by janfredrik 4 months ago

  • Archived

Background update task

Hello everyone, being annoyed of a huge amount of Qualys tickets in my enterprise environment, i have decided to use the ability of firefox to update itself on its own i… (read more)

Hello everyone,

being annoyed of a huge amount of Qualys tickets in my enterprise environment, i have decided to use the ability of firefox to update itself on its own instead of deploying a new version each time.

Requirement: Firefox has to stay up-to-date even on devices where it is not used. That´s what the scheduled background update task and Mozilla Maintenance Service are for, right?

Problem: The background update task will only be created if a logged on user will run firefox at least one time. Since Firefox is used as the secondary browser here, it is installed on all clients, but not even half of the clients/users are running it.

I didn´t find any option to create that task manually. So - at least in my environment - the autoupdate mechanism is useless.

Is there any hope for an autoupdate mechanism which can be run independent of logged on users? Or does anyone have an idea how i could achieve my goal?

Thank you in advance!

Asked by alexander.propp 6 months ago

Last reply by Mike Kaply 1 month ago

  • Solved
  • Archived

Firefox 102.3.0 ESR, installs extension without permission

Hello, I am managing Firefox for a very large organization. We have several extension that we deploy using registry keys and we don't allow users to install additional a… (read more)

Hello,

I am managing Firefox for a very large organization. We have several extension that we deploy using registry keys and we don't allow users to install additional addons. However, since version 102.3 I noticed some extensions that are present on the machine as .xpi files, but should not install unless a specific application is also present, are also being activated. They are enabled in the add-on manager, the information is present in the "extensions.json" and "extension-preferences.json" files. This should not happen. Is there any way to prevent the activation of these files?

Thank you!

Asked by antoniu-laurentiu.imbrea 1 year ago

Answered by antoniu-laurentiu.imbrea 1 year ago

  • Solved
  • Archived

Dragging and Dropping email attachments into a formula not working

Version: Firefox ESR 102.9.0 (64-bit) - Windows 10 Enterprise 22H2 Customers have been complaining for about 6 months that they can no longer drag and drop email attach… (read more)

Version: Firefox ESR 102.9.0 (64-bit) - Windows 10 Enterprise 22H2

Customers have been complaining for about 6 months that they can no longer drag and drop email attachments from Outlook (Microsoft Office Professional Plus 2019 - Exchange) into a Help Desk formula. I tested dragging from Outlook desktop and from the web version.

Drag and Drop works when using Edge and Chrome.

This is not a major issue, since customers can use the other browsers, but since they would prefer to use Firefox, a fix would really be appreciated.  :-)

Asked by fischer404 9 months ago

Answered by Mike Kaply 9 months ago

  • Archived

Auto Updates with Firefox ESR

I recently deployed Mozilla Firefox 102.4 ESR here in our environment expecting that when a new version is released Firefox would automatically update on clients computer… (read more)

I recently deployed Mozilla Firefox 102.4 ESR here in our environment expecting that when a new version is released Firefox would automatically update on clients computers. Well today I noticed at a new release is out but isn't automatically updating on end users workstations. Does Firefox ESR not automatically update?

Asked by thomas.williams1156 1 year ago

Last reply by Mike Kaply 6 months ago

Links sometimes open in new windows instead of new tabs

Software used: Firefox ESR 102.15.1 on RedHat Enterprise Linux 8 with the Xfce4 desktop environment in version 4.16.3. I run two Firefox windows on two different virtual… (read more)

Software used: Firefox ESR 102.15.1 on RedHat Enterprise Linux 8 with the Xfce4 desktop environment in version 4.16.3.

I run two Firefox windows on two different virtual desktops. Most open tabs in each of them are tied to the workflow I use on each desktop, in case this is somehow important.

Problem description: Sometimes, Ctrl+clicking on HTTP or HTTPS links will open the resource in a new window instead of in a new tab. This appears to be random, and does not depend on the link target. It is also not properly reproducible, so the same link may work just fine and open the resource in a new tab as expected on another attempt to Ctrl+click it.

Properties like browser.link.open_newwindow or browser.link.open_newwindow.override.external are unmodified and set at their default values.

I can drag the new window's only tab back into the browser window in which I originally clicked on such a link, but this is becoming tedious. Sometimes I overlook this, resulting in a chaos of multiple open Firefox windows with multiple open tabs in each of them.

The behavior I would expect: When Ctrl+clicking on links, their resources should always open in a new tab, never in a new window, unless it's a link with a protocol that Firefox by itself won't handle and where it will have to rely on another program to open it (e.g. ftp://, ssh:// or mailto:somebody@somedomain.com).

My request: I would like this to be fixed if it's a real bug. If I am somehow responsible myself without knowing why, please just let me know what I might be doing wrong.

If there are some workarounds for this, e.g. some properties I could set in about:config, help with those would be appreciated as well.

Most information I can find about similar problems is pretty old by now and pre-dates Firefox 102.15.1 by many releases and years. All suggestions I could find about what one would need to change in about:config to fix this seem to be the default by now anyway.

Thank you very much!

Asked by michael.lackner1 2 months ago

Last reply by michael.lackner1 1 month ago

  • Archived

Firefox 102 with IBM Webseal PKI logon

Forgive me if I am not describing this correctly but really need help, if you ask me questions back, I will be happy to answer once I find that answer to your question. T… (read more)

Forgive me if I am not describing this correctly but really need help, if you ask me questions back, I will be happy to answer once I find that answer to your question. The issue we are experiencing is not my area of expertiese but no one in my org can find an answer so here I am.

We have not migrated our enterprise above Firefox ESR 91.x as of yet, we have some internal sites that use IBM Webseal to provide SSO and some of that functionality is broken in version 102.x and above. There are three options on the frontend page to use RSA token, PKI logon and username/password: each one a separate choice for the end user experience. RSA and Username/password work without issue but PKI logon does not, once you click on the logon button it is supposed to grab the certificate from your PKI card and use it to logon to the web application, but it does not seem to complete this process instead it proceeds to another page almost immediately that reads Error An attempt to authenticate with a client certificate failed. A valid client certificate is required to make this connection. Click here to return to the authentication page. DPWWA1124W A client certificate could not be authenticated. Our web developers have opened a ticket with IBM and from what I was told after troubleshooting and traffic capture, they never see the certificate make it to the backend for authentication and it is a Firefox issue because Google and MS Edge work just fine. Because of this IBM closed the case.

Has anyone experienced this issue and know of a fix or is there any suggestions as to what we can look for as an attempt to fix this issue? What has changed between version 91.x to 102.x ESR (we have tried the RRs and it is an issue there also)? Is this a bug in Firefox?

Asked by JohnVee 1 year ago

Last reply by JohnVee 1 year ago

  • Solved
  • Archived

Unable to set multiple ExtensionSettings through imported admx

I am using the intune preview feature which allows you to import admx/adml instead of using the custom injection method. Everything works far better then with the inject… (read more)

I am using the intune preview feature which allows you to import admx/adml instead of using the custom injection method. Everything works far better then with the injection method, except for one settings:

ExtensionSettings this setting is working when I have only one setting set (ex):

{"someplugin@test.com": { "installation_mode" : "allowed" }}

If I add a second line to the entry:

{"someotherplugin@test.com":{ "installation_mode" : "allowed"}}

I understand this is a new feature, but if I had the correct format that would work for HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Mozilla\Firefox\ExtensionSettings to allow two plugins to work I belive I shouldn't have any issue getting the admx feature to do this, I even tried manually editing the registry setting and it breaks whenever I add the second line to it.

Asked by robert.deed 6 months ago

Answered by robert.deed 6 months ago

Configuration via Windows GPO -> exclude second Firefox installation

Hi, we want to switch our Firefox configuration from file-based (policies.json) to GPO-based. We rolled out the GPO on some test clients and it worked like a charm. But… (read more)

Hi,

we want to switch our Firefox configuration from file-based (policies.json) to GPO-based. We rolled out the GPO on some test clients and it worked like a charm.

But... It shows that there are some clients which need a second firefox installation for a special purpose, which is not allowed to enter the internet or update itself.

The file-base configuration can handle these to different installations with two differend policies.json files.

Is there a way to accomplish this scenario with the use of GPOs? The GPO-base configuration seems to be global for every client.

At this moment i don't see a solution for our problem. Do you see one?

Asked by maik.w 3 months ago

Last reply by Mike Kaply 3 months ago

  • Archived

Sparky build messed up - where my passwords?

So I have been some issues with my Debian bookworm (Gnome bugged out) and changed to Sparky ( not a massive update I know, it's the same repo anyway) . Once Sparky Firefo… (read more)

So I have been some issues with my Debian bookworm (Gnome bugged out) and changed to Sparky ( not a massive update I know, it's the same repo anyway) . Once Sparky Firefox upgraded to the latest version, I noticed some interesting behavior (tor running in the background and etc). I wasn't careful with playing gods with storage & cache, so had to again reinstall sparky. To my surprise my all passwords, bookmarks. add-ons are gone. I had just one account (was also using the dev browser for some time), so really it's awkward ad upsetting situation, any troubleshooting steps you can suggest?

Asked by nonzero 1 year ago

Last reply by Mike Kaply 1 year ago

  • Solved

Firefox ESR (Windows) Policy Wildcards - Is it possible?

Good afternoon, We're currently trying to set up a Hardening Guide for Firefox ESR but are struggling with a few policies and setting wildcards. For example, we're tr… (read more)

Good afternoon,

We're currently trying to set up a Hardening Guide for Firefox ESR but are struggling with a few policies and setting wildcards.

For example, we're trying to set an origin in Cookies > Block Settings to something like "*", and we get the error "Ignoring parameter "*" - not a valid origin."

In Chrome / Edge you can set a wildcard like this: [*.]google.com for example - we receive the same error message for this.

Can you do such a thing for Firefox ESR without having to list every site you want to block?

ESR Version: 115.6.0esr (64-bit)

Kind Regards, Ethan Jerrum

Asked by ethan.jerrum 1 month ago

Answered by Mike Kaply 1 month ago

  • Archived

Disable update popup?

So we update Firefox via PatchMyPC from SCCM. We don't want to disable Firefox Updates. The issue is how do you stop the Update notification popup every time you start Fi… (read more)

So we update Firefox via PatchMyPC from SCCM. We don't want to disable Firefox Updates. The issue is how do you stop the Update notification popup every time you start Firefox. You don't have this issue on Edge and Chrome

Asked by Menesh Harji 1 year ago

Last reply by Mike Kaply 1 year ago

  • Solved

Do we have GPO setting for this preference "network.captive-portal-service.enabled" ?

In my environment, we have Firefox version 117. Users get this pop up "You must log in to this network before you can access the Internet" (see snip 1) when they launch f… (read more)

In my environment, we have Firefox version 117. Users get this pop up "You must log in to this network before you can access the Internet" (see snip 1) when they launch firefox. In order to get rid of we can toggle this preference setting to TRUE ""network.captive-portal-service.enabled" in the user's browser, which works fine. But i want to control this setting from GPO. I'm unable to find the GPO for the same in the GPO hive for FF. See snip 2 for 'Preferences' related GPOs.

Asked by pivashis 3 months ago

Answered by Mike Kaply 3 months ago

Configure policies for Firefox

Hi there, We would like to disable ECH on our browsers as it is interfering with our Anti-virus Website blocks. I have identified the settings that need to be changed in… (read more)

Hi there,

We would like to disable ECH on our browsers as it is interfering with our Anti-virus Website blocks. I have identified the settings that need to be changed in about:config and was able to configure 2 of them to be controlled via a registry key but was not able to for another 3 as their keys should be placed in a different Key in the registry. I have searched all over but cannot identify the name for this Key.

The settings I need to manage are in the image. I was able to configure the settings beginning with network.dns but I am not sure how to manage the settings beginning with security.tls.ech

Any help would be much appreciated

Asked by Dhiren Hirani 4 months ago

Last reply by Dennis Jackson 4 months ago

  • Archived

SIlent Push of SSL Certificate

I work for the local County and we recently got a new content provider that allows for SSL Inspection (Barracuda 410) but it requires a certificate to be installed on eve… (read more)

I work for the local County and we recently got a new content provider that allows for SSL Inspection (Barracuda 410) but it requires a certificate to be installed on every device to work. I am aware of Edge having a way to create a custom installer that would allow us to preinstall the proper certificate, but was wondering if Firefox had the same thing. I am also needing to know that if we push out the version of Firefox with the certificate preinstalled, would it auto import our user's data from their current install of standard Firefox?

Asked by jkemmerer 11 months ago

Last reply by Mike Kaply 11 months ago

  • Archived

Add exception to self-signed URL system wide

Hello everyone. We are using a software in my company that runs a local server with a self-signed certificate. In order to access the software right now we need to inst… (read more)

Hello everyone.

We are using a software in my company that runs a local server with a self-signed certificate. In order to access the software right now we need to instruct the users to manually bypass the warning page for potencial security risks.

Is there a way to use an autoconfig or policy to automatically add the exception to that specific URL? I see that copying the cert_override.txt file in users profiles will add the exception, but I'd like to avoid that. I've also looked at a question with a similar problem here, but I couldn't get this specific solution to work on my end (Firefox ESR 91): https://support.mozilla.org/en-US/questions/1287443

Asked by marcelohmoraes 1 year ago

Last reply by Mike Kaply 1 year ago

  • Archived

GPO Search Engine: spaces replaced with pluses instead of %20

Good day. I have created a custom Search Engine via a GPO. The search engine is added to Firefox without issue. However, when a user enters in a search with a space,… (read more)

Good day.

I have created a custom Search Engine via a GPO.

The search engine is added to Firefox without issue. However, when a user enters in a search with a space, Firefox replaces the space with a "plus" instead of a %20. The search engine does not know how to interpret a "plus," so the search engine returns 'no results found.' I use the same search string in a Chrome GPO, and it works as Chrome replaces a space with a %20. Is there a way I can tweak the Search engine GPO to use %20 instead of a "plus" for a space?

Thanks.

Peter

Asked by peterc5 6 months ago

Last reply by Mike Kaply 3 weeks ago