Showing questions tagged: Show all questions
  • Solved
  • Archived

Firefox profile location with Firefox GPO settings defined

We currently use roaming profiles at our site on our Windows 10 computers. Firefox profile data is created in %appdata%\Mozilla\Firefox for our users (which falls in our … (read more)

We currently use roaming profiles at our site on our Windows 10 computers. Firefox profile data is created in %appdata%\Mozilla\Firefox for our users (which falls in our redirected AppData location and therefore is written to our fileserver).

I am looking at implementing some Firefox settings in Group Policy to control certain settings for our users, but I find when I make settings there, profile data lands in %localappdata%\Mozilla\Firefox instead, and this data is *NOT* saved to the fileserver.

Is there a setting in the Firefox ADMX package that allows one to redefine where the Firefox profile data is created? I've looked through the settings in version 2.3 of the Firefox ADMX package, and I'm not finding it.

Asked by john467 1 year ago

Answered by Mike Kaply 1 year ago

  • Solved
  • Archived

How do I set an "about:config" setting via GPO

Hello, I've seen this thread to customize some settings in Firefox but I don't think I've found what I need. So here's my issue : Some people in my company use a software… (read more)

Hello,

I've seen this thread to customize some settings in Firefox but I don't think I've found what I need. So here's my issue : Some people in my company use a software which download JNLP file. I've found this support topic which solve my problem (I've tested with one user). But now, I'd like to spread the workaround via a GPO. I've downloaded the policy template v2.1 ('cause Firefox 79 is installed) but I can't figure out how I force the value to "True" for the browser.download.skipConfirmLaunchExecutable preference in the about:config panel. Is it supported or not yet ? Could anyone lend a hand please ? Thanks in advance.

Jo

Asked by datboxistrash 1 year ago

Answered by Mike Kaply 1 year ago

  • Solved
  • Archived

Mozilla Firefox Block/Allow Extentions via AD GPO

Hello All, I'm trying to block all Mozilla extensions and allow only a few that's approved by IT. Our environment is pretty big over 2k devices and we are using well org… (read more)

Hello All, I'm trying to block all Mozilla extensions and allow only a few that's approved by IT. Our environment is pretty big over 2k devices and we are using well organized AD structure by departments and did similar project with Chrome with no issues. But Mozilla template doesn't have same options as Chrome. Any idea how I can accomplish this ? Thank you.

Asked by ikorinnyi 1 year ago

Answered by ikorinnyi 1 year ago

  • Solved
  • Archived

Need to push out to all users to automatically open .jnlp files using JWS.

Our ERP Systems is using .jnlp files and I want to push out to all our desktops that .jnlp files will launch automatically. I am setting up Autoconfig from a centralize… (read more)

Our ERP Systems is using .jnlp files and I want to push out to all our desktops that .jnlp files will launch automatically. I am setting up Autoconfig from a centralized point, but I do not see the option to push down settings from the handlers.json file. What is the best way to push the customization that gets created in the handlers.json file down to the clients?

Asked by rkline 1 year ago

Answered by Mike Kaply 1 year ago

  • Solved
  • Archived

Mozilla.cfg not forcing all lockPref / not changing default value for some preferences

Hello Everyone, Im implementing DOD compliant settings to Mozilla for our enviroment. I am currently in the testing phase - making sure its all set before deployment, Her… (read more)

Hello Everyone,

Im implementing DOD compliant settings to Mozilla for our enviroment. I am currently in the testing phase - making sure its all set before deployment, Heres where the fun begins.

Ive done the usual - Place the mozilla.cfg in C:\Program Files\Mozilla Firefox Place the autoconfig.js in C:\Program Files\Mozilla Firefox\defaults\pref

and have set the lockPref accordingly for each finding. The issue is that some are being set correctly while others arent being changed at all and most changes arent locked. I have edited the config file to not include the comments (except the top one of course) and changed the \n\r and \r\n to be only \n for the entire file so formatting should not be the issue. I have also changed all commas to match the ones settings that work (no luck) - “” rather than ""

These are working - but doesnt have the lock image

lockPref(“security.default_personal_cert”, “Ask Every Time”; lockPref(“signon.rememberSignons”, false); lockPref(“toolkit.telemetry.archive.enabled”, false); lockPref(“browser.search.update”, false); lockPref(“browser.contentblocking.category”, strict); lockPref(“privacy.trackingprotection.cryptomining.enabled”, true); lockPref(“security.tls.version.max”, 4); lockPref(“dom.disable_window_flip”, true); lockPref(“network.protocol-handler.external.shell”, false);


These have Lock image and cannot be changed -working as it should

lockPref(“toolkit.telemetry.enabled”, false);



These are not working:

lockPref(“extensions.update.enabled”, false); lockPref(“dom.event.contextmenu.enabled”, false); lockPref(“extensions.htmlaboutaddons.recommendations.enabled”, false); lockPref(“datareporting.policy.dataSubmissionEnabled”, false); lockPref(“security.ssl3.rsa_des_ede3_sha”, false); lockPref(“security.enterprise_roots.enabled”, true); lockPref(“security.tls.version.min”, 2); lockPref(“browser.formfill.enable”, false) lockPref(“signon.autofillForms”, false); lockPref(“dom.disable_window_move_resize”, true); lockPref(“devtools.policy.disabled”, true);

These dont even show up in firefox:

lockPref(“xpinstall.enabled”, false); lockPref(“plugin.disable_full_page_plugin_for_types”, PDF, FDF, XFDF, LSL, LSO, LSS, IQY, RQY, XLK, XLS, XLT, POT, PPS, PPT, DOS, DOT, WKS, BAT, PS, EPS, WCH, WCM, WB1, WB3, RTF, DOC, MDB, MDE, WBK, WB1, WCH, WCM, AD, ADP); lockPref(“dom.disable_window_open_feature.status”, true); lockPref(“browser.newtabpage.activity-stream.enabled”, false)

below is the config file


// IMPORTANT: The settings applied within this directory are for STIGS compliance.


// Installed version of Firefox unsupported. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-17988

//NEED MANAGED BY OTHER MEANS


// FireFox is configured to ask which certificate to present to a web site when a certificate is required. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15768

lockPref(“security.default_personal_cert”, “Ask Every Time”;


// FireFox is configured to use a password store with or without a master password. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15776

lockPref(“signon.rememberSignons”, false);


// Fingerprinting protection must be enabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102879

lockPref(“privacy.trackingprotection.fingerprinting.enabled”, true);


// Telemetry must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102875

lockPref(“toolkit.telemetry.enabled”, false);


// Telemetry archive must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102877

lockPref(“toolkit.telemetry.archive.enabled”, false);


// Firefox is configured to allow JavaScript to disable or replace context menus. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15986

lockPref(“dom.event.contextmenu.enabled”, false);


// Firefox automatically updates installed add-ons and plugins. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-19742

lockPref(“extensions.update.enabled”, false);


// Firefox automatically checks for updated version of installed Search plugins. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-19744

lockPref(“browser.search.update”, false);


// Enhanced Tracking Protection must be enabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102883

lockPref(“browser.contentblocking.category”, strict);


// Cryptomining protection must be enabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102881

lockPref(“privacy.trackingprotection.cryptomining.enabled”, true);


// Extension recommendations must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102885

lockPref(“extensions.htmlaboutaddons.recommendations.enabled”, false);


// Background submission of information to Mozilla must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-79053

lockPref(“datareporting.policy.dataSubmissionEnabled”, false);


// Deprecated ciphers must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102889

lockPref(“security.ssl3.rsa_des_ede3_sha”, false);


// The DOD Root Certificate is not installed. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-6318 // --Note: In a Windows environment, use of policy setting "security.enterprise_roots.enabled=true" will point Firefox to the Windows Trusted Root Certification Authority Store, this is not a finding.

lockPref(“security.enterprise_roots.enabled”, true);


// Firefox must be configured to allow only TLS. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15983

lockPref(“security.tls.version.min”, 2); lockPref(“security.tls.version.max”, 4);


// Extensions install must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-64891

lockPref(“xpinstall.enabled”, false);


// Firefox is configured to allow JavaScript to raise or lower windows. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15985

lockPref(“dom.disable_window_flip”, true);


// Firefox formfill assistance option is disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15774

lockPref(“browser.formfill.enable”, false)


// Firefox is configured to autofill passwords. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15775

lockPref(“signon.autofillForms”, false);


// Firefox is not configured to prompt a user before downloading and opening required file types. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15772

lockPref(“plugin.disable_full_page_plugin_for_types”, PDF, FDF, XFDF, LSL, LSO, LSS, IQY, RQY, XLK, XLS, XLT, POT, PPS, PPT, DOS, DOT, WKS, BAT, PS, EPS, WCH, WCM, WB1, WB3, RTF, DOC, MDB, MDE, WBK, WB1, WCH, WCM, AD, ADP);


// FireFox plug-in for ActiveX controls is installed. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15773

//NEED MANAGED BY OTHER MEANS


//Firefox automatically executes or downloads MIME types which are not authorized for auto-download. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15770

//NEED MANAGED BY OTHER MEANS


// Network shell protocol is enabled in FireFox. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15771

lockPref(“network.protocol-handler.external.shell”, false);


// FireFox is not configured to block pop-up windows. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15778

lockPref(“dom.disable_window_open_feature.status”, true);


// FireFox is configured to allow JavaScript to move or resize windows. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-15779

lockPref(“dom.disable_window_move_resize”, true);


// Firefox Development Tools Must Be Disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-97529

lockPref(“devtools.policy.disabled”, true);


// Activity Stream must be disabled. // -https://www.stigviewer.com/stig/mozilla_firefox/2020-06-19/finding/V-102887

lockPref(“browser.newtabpage.activity-stream.enabled”, false)


// Created by: Kaige Royal // Date: 2/7/2021

Asked by royal.kaige 1 year ago

Answered by cor-el 1 year ago

  • Solved
  • Archived

Firefox ESR 78.7.0 error - "Failed to read the configuration file"

We currently have a setup where we're installing Firefox ESR 68.10.0 using a .CFG and .JS file for custom configurations. Everything has been working great, but now we h… (read more)

We currently have a setup where we're installing Firefox ESR 68.10.0 using a .CFG and .JS file for custom configurations. Everything has been working great, but now we have a need to update to the latest version of Firefox ESR due to recently-announced security vulnerabilities. I am testing the upgrade to 78.7.0 using the same .CFG and .JS files, and I get the error "Failed to read the configuration file. Please contact your system administrator." at startup. I tried doing a complete uninstall of the old version and install of the new one, keeping the same config files, but the same error comes up. The support documentation for ESR 78.7.0 makes no indication that these configuration files are to be used, instead mentioning that Group Policies should be used for configuration in a Windows environment. But we have various user groups that require specialized configurations, and using the configuration files has worked best for us. Is there any way to keep using the configuration files? If so, what changes would I need to make to the formatting of the files to get them working? Any help is greatly appreciated!

Asked by drepollet 1 year ago

Answered by Mike Kaply 1 year ago

  • Solved
  • Archived

Can I modify Firefox config (pref.js) using Powershell

I tried to script a PS to make changes to the Pref.js file; however, the changes do not stick? Is this is expected or done by default is there a way that I can modify the… (read more)

I tried to script a PS to make changes to the Pref.js file; however, the changes do not stick? Is this is expected or done by default is there a way that I can modify the file without going to which single system?

PS Script

$TopDir = "$env:APPDATA\Mozilla\Firefox\Profiles" $FileName = 'prefs.js'

$DefaultProfileDir = (Get-ChildItem -LiteralPath $TopDir -Directory). Where({

  $_.FullName -match '\.default'
  }).FullName

$FullFileName = Join-Path -Path $DefaultProfileDir -ChildPath $FileName

$Data = foreach($line in Get-Content $FullFileName) {

if( ($line.IndexOf('network.automatic-ntlm-auth.trusted-uris')) -ne -1)
{
  If ($line.IndexOf('*') -ne -1) {
    $line = $line.replace( '*' , 'abc.com,.abcd.com,.abcde.com')
  }
}
$line

}

$data | Set-Content $FullFileName -Force

Asked by nbaezbiz 2 years ago

Answered by cor-el 2 years ago

  • Solved
  • Archived

Can I disable browser using http3 protocol externally ?

I know users are allow to disable http3 through "about:config", and it works. However, I have to apply to multiple devices by script and the risk page might be a challeng… (read more)

I know users are allow to disable http3 through "about:config", and it works.

However, I have to apply to multiple devices by script and the risk page might be a challenge for me.

I tried to edit prefs.js, but it will still be overwrite even I restart my device. (Re-install is not allowed)

Is there any alternative way to disable http3, such as regedit key?

Or is there method to keep pref.js unchangeable?

Asked by Dali 6 months ago

Answered by Amelia 6 months ago

  • Solved
  • Archived

Manage Extensions

I am trying to manage Firefox extensions using a GPO using code below (Computer Configuration->Administrative Templates->Mozilla->Firefox->Extensions->Exte… (read more)

I am trying to manage Firefox extensions using a GPO using code below (Computer Configuration->Administrative Templates->Mozilla->Firefox->Extensions->Extension Management). The format below aligns with what is listed here "https://github.com/mozilla/policy-templates/blob/master/README.md#extensionsettings" and this is not working as expected. The goal is to only allow users to install the allowed extensions listed and everything else gets blocked. Please help?

Not sure if related but I also have "Extension Update" enabled

{
  "*": {
    "blocked_install_message": "Your admin has blocked adding this extension.",
    "install_sources": ["about:addons","https://addons.mozilla.org/"],
    "installation_mode": "blocked",
    "allowed_types": ["extension"]			
	},
    "abb@amazon.com": {
		"installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"
		}
	},
    "ciscowebexstart1@cisco.com": {
		"installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/cisco-webex-extension/latest.xpi"
		}
	},
    "{bda65ea0-2465-43b6-9b66-d396988c24aa}": {
		"installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/google-hangout/latest.xpi"
		}
	},
		"linkedinConverted@firefox-extension": {
        "installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/linkedin-notifications/latest.xpi"
      }
	},
    "{7bc53591-5218-45a0-b572-4366979097fd}": {
		"installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/markdown-diagrams/latest.xpi"
      }
	},
    "queryamoid@kaply.com": {
		"installation_mode": "allowed",
		"install_url": "https://raw.githubusercontent.com/mkaply/queryamoid/main/updates.json"
      }
	},
    "jid1-93WyvpgvxzGATw@jetpack": {
        "installation_mode": "allowed",
        "install_url": "https://addons.mozilla.org/firefox/downloads/latest/to-google-translate/latest.xpi"
      }
}

Asked by john.sanchez 1 year ago

Answered by cor-el 1 year ago

  • Solved
  • Archived

Setting up Multiple Languages for Firefox using Group Policy

I need to setup a desktop with 4 different languages. All of this works for other browser except for Firefox. I have installed Firefox Quantum 68.9 ESR and trying to use … (read more)

I need to setup a desktop with 4 different languages. All of this works for other browser except for Firefox. I have installed Firefox Quantum 68.9 ESR and trying to use group policy. I have multiple policies associated with groups and languages. How do I perform this with Firefox? Additionally, do I need to install language pack? Thanks

Asked by richard.hussain 2 years ago

Answered by cor-el 2 years ago

  • Solved
  • Archived

GPO Settings

Good Afternoon Im currently configuring OKTA for SSO, part of this setup is to configure a FireFox option, for people that use this particular browser. These are the inst… (read more)

Good Afternoon

Im currently configuring OKTA for SSO, part of this setup is to configure a FireFox option, for people that use this particular browser.

These are the instructions provided by OKTA:- Open the Firefox web browser, enter about:config in the Address bar. If the Proceed with Caution message appears, click Accept the Risk and Continue. In the Search preference name field, enter network.negotiate-auth.trusted-uris. Click Edit, enter <org>.kerberos.okta.com, and click Save.

This works fine when i manually edit the config for myself to test, but i need to deploy this across our org, i downloaded the Mozilla GPOS but i cannot find anywhere i can set this particular setting.

Is it possible to set this particular setting in the GPOs? so i can deploy across our org.


Thanks.

Asked by richard.rostron 10 months ago

Answered by jscher2000 - Support Volunteer 10 months ago

  • Solved
  • Archived

Kiosk Usage

I am currently creating new Images for our touch kiosks and would like to use Firefox. Sadly I am confronted with some problems / strange behaviour. I want to set up a wi… (read more)

I am currently creating new Images for our touch kiosks and would like to use Firefox.

Sadly I am confronted with some problems / strange behaviour.

I want to set up a windows Kiosk with Firefox as shell application. So far this worked but the Firefox window opens around 5 times at every restart, also it does not open again if it is closed. The reopening is a feature of the eshell which reacts to the exit code of the Application. Is there anything you know what causes these behaviours? Google chrome does nothing of these things and simply gets restarted if it is closed, as it should.

The second thing is, the built in Kiosk mode is great but our Application at least needs tabs. Is it possible without too much of a hassle to create such a locked down experience? I'd like to do it with a policy or settings file and not to create my own browser out of firefox, maybe there's a way I have overseeen.

I'd really like to do it with firefox as I personally always had a great experience and I trust the team behind it. Thank you for your support beforehand!

Asked by Ale 12 months ago

Answered by Mike Kaply 11 months ago

  • Solved
  • Archived

deploy the about: config configuration on the company's computers

Hello, Please excuse my poor level in English. In my company I deploy FirefoxESR-68.12.0-fr.msi by GPO. I would like to know how to deploy a config file to modify its con… (read more)

Hello, Please excuse my poor level in English. In my company I deploy FirefoxESR-68.12.0-fr.msi by GPO. I would like to know how to deploy a config file to modify its configuration. More precisely the settings network negotiate-auth delegation-uris and network automatic-ntlm-auth trusted-uris

Thanks for your help

Asked by pierre.terme 1 year ago

Answered by cor-el 1 year ago

  • Solved
  • Archived

How to find the URL to use for ExtensionSettings?

I am using group policy, extension settings. I want to block all extensions, require 1, and allow a handful. I think I have the JSON figured out but finding the URL to … (read more)

I am using group policy, extension settings. I want to block all extensions, require 1, and allow a handful. I think I have the JSON figured out but finding the URL to use is escaping me.

I can find the site in the Mozilla addons, https://addons.mozilla.org/en-US/firefox/addon, but how do I find the exact filename to use? I see that many end in latest.xpi but I'm unsure what that means or how I should know which is correct. I know how to find it in Chrome but I'm now trying for FireFox. I've had a hard time and it's not as clear as the direct GPO implementation as Chrome uses.

My next thing to figure out is when extension settings are mentioned in multiple levels of the GPO hierarchy. That's a separate question and not needed for an answer to this question. I only mention it as someone who knows one part is likely to know the other as well.

Thanks, -g

Asked by GrumpyGreg 11 months ago

Answered by cor-el 11 months ago

  • Solved
  • Archived

Attempting ExtensionSettings via Extension Managmement GPO - Error 'No text was entered...'

Hi, I'm trying to create a Windows GPO to control Addons/Extensions in our FireFox installations. From the doc I've read, the place is Policies|Administrative Templates|M… (read more)

Hi, I'm trying to create a Windows GPO to control Addons/Extensions in our FireFox installations.

From the doc I've read, the place is Policies|Administrative Templates|Mozilla|Firefox|Extensions Policy is "Extension Management"

I set it to enabled and include this text: {

 "*": {
   "blocked_install_message": "My Custom Test Message",
   "installation_mode": "blocked"
 }

}

When I hit apply, I get this error message: "No text was entered for this field. Make sure that you enter text."

If I put nothing (but still enabled) or "A" or A, then it accepts that. It's when I plop in the JSON that it fails.

What am I doing wrong?

I have ESR 91.0.1 and policy 3.0 installed. I do not have Firefox installed on the machine doing the GPO work, that's currently only on the test machine. I do have the policy definitions installed.

-g

Asked by GrumpyGreg 11 months ago

Answered by Mike Kaply 10 months ago

  • Solved
  • Archived

Firefox packaging and auto update

I am trying to package Firefox, with the browsers auto update disabled (updates are handled by the package manager, not the browser; having Firefox prompt at the user may… (read more)

I am trying to package Firefox, with the browsers auto update disabled (updates are handled by the package manager, not the browser; having Firefox prompt at the user may cause confusion). However, I haven't been able to Firefox's nagging with recent (77+) versions.

I have tried writing a policies.json file seems to have no effect. In fact, Firefox didn't even look in system directories like /etc and /lib64/firefox. Is this an Enterprise Firefox feature? Is it even possible to share a single installation of Firefox between users (having their personal prefs in their home directories, ofcourse).

Thanks in advance!

Asked by Folkert 1 year ago

Answered by Mike Kaply 1 year ago

  • Solved

Access to about:debugging while blocking all extensions via GPO

Hello, As the title mentions, applying a block to all extensions via "*" by utilizing Extension Management GPO will block about:debugging. Is there a way to simultaneousl… (read more)

Hello,

As the title mentions, applying a block to all extensions via "*" by utilizing Extension Management GPO will block about:debugging.

Is there a way to simultaneously have all extensions blocked and about:debugging available?

Here's the JSON - { "*": { "installation_mode": "blocked" } }


Appreciate your time and help, - Dom

Asked by Dom Langella 1 month ago

Answered by Mike Kaply 1 month ago

  • Solved

deploying firefox-add-ons via group policies doesn't work anymore after proxy-change

Hello, I used to deploy add-ons via group policies - this worked like a charm: Firefox esr (91.11.0esr x64), ADMX-templates in Sysvol\PolicyDefinitions, Group Policies: … (read more)

Hello,

I used to deploy add-ons via group policies - this worked like a charm: Firefox esr (91.11.0esr x64), ADMX-templates in Sysvol\PolicyDefinitions, Group Policies: User configuration, administrative templates, mozilla, firefox, add-ons --> install add-ons --> https://addons.mozilla.org/firefox/downloads/file/1234567/goodaddon-1.0.01.xpi

A few months ago, we had to change our network-configuration. We were using a proxy before, but our proxy had direct access to the internet. Now our proxy forwards everything to another proxy. Since about that time, add-on-deployment via gpo doesn't work anymore. It could be something else, but i suspect the proxy-change.

I tried to deploy unc-paths, internal websites and different syntaxes; none of this works:

  • http://192.168.100.10/goodaddon-1.0.01.xpi
  • http://internalwebsite/goodaddon-1.0.01.xpi
  • https://192.168.100.10/goodaddon-1.0.01.xpi
  • https://internalwebsite/goodaddon-1.0.01.xpi
  • \\192.168.100.20\netshare\goodaddon-1.0.01.xpi
  • \\internalfileserver\netshare\goodaddon-1.0.01.xpi
  • file://///192.168.100.20/netshare/goodaddon-1.0.01.xpi
  • file://///internalfileserver/netshare/goodaddon-1.0.01.xpi

As you can see I tried using internal sites, so that no proxy would be needed. And I also added these sites to the allowed add-on-installation-sites (computer configuration, same group policy). The sites are all accessible; if I enter these addresses as url, firefox can access the xpi-file.

I know how to pack add-ons into the firefox-setup-file; that still works. But first of all, firefox is already installed on most of my clients. Second, after a fresh installation of firefox with this self-created package, all add-ons are installed, but not activated. And I would like to restrict activation/deactivation of add-ons via gpo.

  1. 1 Are there other ways to deploy add-ons in a domain-network (e.g. script-based)?
  2. 2 Are there any logs where I could find out what exactly goes wrong?
  3. 3 Are there any other syntaxes I could try (group policy urls)?
  4. 4 Can anyone guess what the problem is (why it is not working anymore)?

Help would be very much appreciated.

Best regards.

Asked by mozilla355 2 weeks ago

Answered by mozilla355 1 week ago