Showing questions tagged: Show all questions
  • Archived

Upgrade Problem

Every time you open Firefox, you will prompt old version bookmarks, history, and passwords, and you can't use them. Choose to opt out or create a new personal file. There… (read more)

Every time you open Firefox, you will prompt old version bookmarks, history, and passwords, and you can't use them. Choose to opt out or create a new personal file. There are also prompts for the upgrade, and the downgrading version is unsuccessful pls help me

Asked by yi yan 1 year ago

Last reply by Mike Kaply 1 year ago

  • Archived

Firefox 102 with IBM Webseal PKI logon

Forgive me if I am not describing this correctly but really need help, if you ask me questions back, I will be happy to answer once I find that answer to your question. T… (read more)

Forgive me if I am not describing this correctly but really need help, if you ask me questions back, I will be happy to answer once I find that answer to your question. The issue we are experiencing is not my area of expertiese but no one in my org can find an answer so here I am.

We have not migrated our enterprise above Firefox ESR 91.x as of yet, we have some internal sites that use IBM Webseal to provide SSO and some of that functionality is broken in version 102.x and above. There are three options on the frontend page to use RSA token, PKI logon and username/password: each one a separate choice for the end user experience. RSA and Username/password work without issue but PKI logon does not, once you click on the logon button it is supposed to grab the certificate from your PKI card and use it to logon to the web application, but it does not seem to complete this process instead it proceeds to another page almost immediately that reads Error An attempt to authenticate with a client certificate failed. A valid client certificate is required to make this connection. Click here to return to the authentication page. DPWWA1124W A client certificate could not be authenticated. Our web developers have opened a ticket with IBM and from what I was told after troubleshooting and traffic capture, they never see the certificate make it to the backend for authentication and it is a Firefox issue because Google and MS Edge work just fine. Because of this IBM closed the case.

Has anyone experienced this issue and know of a fix or is there any suggestions as to what we can look for as an attempt to fix this issue? What has changed between version 91.x to 102.x ESR (we have tried the RRs and it is an issue there also)? Is this a bug in Firefox?

Asked by JohnVee 1 year ago

Last reply by JohnVee 1 year ago

  • Archived

ESR 115 Windows - background update without user ever logging in or launching FF?

Hello, We want to run Firefox in our environment which is constantly scanned by a security scanner, and deducts points for applications which have a vulnerability that h… (read more)

Hello,

We want to run Firefox in our environment which is constantly scanned by a security scanner, and deducts points for applications which have a vulnerability that has an available patch, but the patch has not been installed. These are on shared Windows terminal servers. Firefox is one of two browsers, Edge being the other one.

If users do not launch firefox at least once, then Firefox never gets updated.

Yes, we have the background update service installed, but it sets itself to manual, and if I try to start it, it simply gives the error "error 1: incorrect function"

How can we configure Firefox 115ESR to be able to run this service automatically, check for updates, and install, without a user on a particular terminal server ever having launched the application once?

Asked by zach.heise 8 months ago

Last reply by Mike Kaply 7 months ago

  • Archived

Unable to access application on Mozilla Firefox v112.0.1(64 bit)

Dear Team, Our application is accessible on Firefox v101.0.1. But recently we have upgraded our desktops with Firefox v112.0.1. The same application accessible on Firefox… (read more)

Dear Team, Our application is accessible on Firefox v101.0.1. But recently we have upgraded our desktops with Firefox v112.0.1. The same application accessible on Firefox 101.0.1 is not able to accessible on v112.0.1.

The error code we could see on browser is SEC_ERROR+PKCS11_GENERAL_ERROR. We have already raised a case with HTTP support team but they have suggested to check at browser level. We had also collected traces from firefox but unable to upload the same. Kindly help here at the earliest. Thanks, Shruti Fegade

Asked by shfegade 11 months ago

Last reply by Mike Kaply 11 months ago

  • Archived

Security issues with access to IP adress

I have seen many references to this problem that Mozilla does not seem to want to fix. I have to log in to my (remote) server regulary using the server IP address - ther… (read more)

I have seen many references to this problem that Mozilla does not seem to want to fix.

I have to log in to my (remote) server regulary using the server IP address - there is not a domain name.

Every time (cookies/history always cleared on exit) it presents the message "Warning: Potential Security Risk Ahead" and then have to click advanced then accept the risk. Under previous versions I use, this could be stored so you do not have to go thrugh this process EVERY time on logging in to the server.

Everyone knows you can NOT assign a security certificate to an IP address so why does Mozilla not take this into consideration?

Will they change this in future versions?

Is there a work around (no config changes seem to work or chrome changes)

rgds JR UK

Asked by firefox2030 1 year ago

Last reply by Mike Kaply 9 months ago

  • Archived

Why do SanitizeOnShutdown and Preferences look different from other policies on the Enterprise Policies page?

Are these supposed to look different, or am I just doing something wrong? In the image I included here, SanitizeOnShutdown and Preferences look different from FirefoxHome… (read more)

Are these supposed to look different, or am I just doing something wrong? In the image I included here, SanitizeOnShutdown and Preferences look different from FirefoxHome and look incorrect. I removed other policies to make this simpler, but all of the other policies with multiple policy values look just like FirefoxHome. It appears that SanitizeOnShutdown is at least working since my history is indeed getting cleared on shutdown, but I'm unsure whether this actually works when I set these to the settings they should be since they should all be false other than Locked. Am I doing something wrong here or are these two policies supposed to look like that for some reason? Thank you in advance for the help!

``` {

   "policies": {

"DisablePrivateBrowsing": true,

       "SanitizeOnShutdown": {
           "Cache": false,
           "Cookies": false,
           "Downloads": false,
           "FormData": false,
           "History": true,
           "Sessions": false,
           "SiteSettings": false,
           "OfflineApps": false,

"Locked": true

       },
       "FirefoxHome": {
           "TopSites": false,
           "Search": false,
           "SponsoredTopSites": false,
           "Pocket": false,
           "SponsoredPocket": false,
           "Highlights": false,
           "Snippets": false,
           "Locked": true
       }

"Preferences": {

   	    "browser.contentblocking.category": {
   			"Value": "strict",
   			"Status": "locked"
   		},
   		"extensions.htmlaboutaddons.recommendations.enabled": {
   		    "Value": false,
   		    "Status": false
   		}

}

   }

} ```

Asked by Terwassolam21434 9 months ago

Last reply by Terwassolam21434 9 months ago

  • Solved
  • Archived

Firefox 102.3.0 ESR, installs extension without permission

Hello, I am managing Firefox for a very large organization. We have several extension that we deploy using registry keys and we don't allow users to install additional a… (read more)

Hello,

I am managing Firefox for a very large organization. We have several extension that we deploy using registry keys and we don't allow users to install additional addons. However, since version 102.3 I noticed some extensions that are present on the machine as .xpi files, but should not install unless a specific application is also present, are also being activated. They are enabled in the add-on manager, the information is present in the "extensions.json" and "extension-preferences.json" files. This should not happen. Is there any way to prevent the activation of these files?

Thank you!

Asked by antoniu-laurentiu.imbrea 1 year ago

Answered by antoniu-laurentiu.imbrea 1 year ago

  • Archived

Windows 10: Automatic updates by GPO fails

Hi, i'm running Firefox on +70 Windows 10 PCs in three labs in a university. I've applied a computer configuration GPO with AppAutoUpdate enabled, BackgroundAppUpdate en… (read more)

Hi,

i'm running Firefox on +70 Windows 10 PCs in three labs in a university. I've applied a computer configuration GPO with AppAutoUpdate enabled, BackgroundAppUpdate enabled and DisableAppUpdate disabled to my PCs, but it looks like i don't get automatic updates. In my labs i see some workstations have Firefox 108.0.1, but most workstations still have Firefox 107.0.1...

As my users can switch between workstations and labs, this leads to the annoying 'older version' message box when a user worked on a PC which already got the update and later uses another PC which didn't get the update. The users are also forced to create a 'new' profile then, which is quite problematic because of the size of the roaming profiles.

Any hints?

Asked by HTW IMI 1 year ago

Last reply by Mike Kaply 1 year ago

  • Solved

HTTPs Only Mode

Hello, I have a problem with setting up HTTPs only Mode in my Organization, I read a lot about that, but I dont see the "dom.security.https_only_mode" switch in GPO, we h… (read more)

Hello, I have a problem with setting up HTTPs only Mode in my Organization, I read a lot about that, but I dont see the "dom.security.https_only_mode" switch in GPO, we have the newest admx for Firefox. We need that to specific container, but still I dont know how to set it up, even via regedit, or preferences. Can someone describe me when can I set it up ? It could be using json file (which exactly file and how?), registry or just gpo. Regards, M.

Asked by marcin.markiewicz 5 months ago

Answered by Mike Kaply 5 months ago

  • Archived

Intune OMA-URI extensions

I am trying trying to install the keeper extension via intune but am having trouble with the oma-uri. It looks right to me but I might be missing something. Prior to runn… (read more)

I am trying trying to install the keeper extension via intune but am having trouble with the oma-uri. It looks right to me but I might be missing something. Prior to running this I followed https://mzl.la/3vYAIYT and added the Firefox ADMX. Both run successfully but it does not add the extension. Firefox version 116.0.3

OMA-URI: ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox~Extensions/ExtensionSettings

String: <enabled/> <data id="ExtensionSettings" value=' {

 "*": {
   "blocked_install_message": Opps, this may have been a mistake reach out to IT.",
   "install_sources":["about:addons","https://addons.mozilla.org/"],
   "installation_mode": "allowed",
   "allowed_types": ["extension" ,"theme"]
 },
 "KeeperFFStoreExtension@KeeperSecurityInc": {
   "installation_mode": "normal_installed",
   "install_url": "https://addons.mozilla.org/firefox/downloads/latest/keeper-password-manager/latest.xpi",

"default_area": "navbar"

 },

}'/>

Asked by ParisTheGreat 9 months ago

Last reply by Mike Kaply 8 months ago

  • Solved
  • Archived

I can’t change the min and max TLS versions with either policies.json or mozilla.cfg

I need to set the max TLS version to 1.3 and the min version to 1.2 on my shstems. The max and min TLS versions are set to 4 and 3 by default in about:config. If I use lo… (read more)

I need to set the max TLS version to 1.3 and the min version to 1.2 on my shstems. The max and min TLS versions are set to 4 and 3 by default in about:config. If I use lockPref(“security.tls.version.max”,”3”), it is still 4 in about:config for some reason. If I set the min version to 2, it is still 3. This also doesn’t work if I use “SSLVersionMin”: “tls1.2” how can I fix this issue? Thank you in advance!

Asked by Terwassolam21434 9 months ago

Answered by jscher2000 - Support Volunteer 9 months ago

  • Archived

Does Firefox ESR still supports NTLM v1 ?

This might be a simple question. Does Firefox ESR still supports NTLM v1 ? Can we still add the value "network.negotiate-auth.delegation-uris" in preference. Does th… (read more)

This might be a simple question. Does Firefox ESR still supports NTLM v1 ? Can we still add the value "network.negotiate-auth.delegation-uris" in preference. Does that enabled NTLM v1. Is there any document or release notes that states Firefox is disabling this setting from Firefox 78 and later. Some how I am not able to find it in release notes.

Asked by raam.bc 1 year ago

Last reply by Mike Kaply 1 year ago

  • Archived

Disable update popup?

So we update Firefox via PatchMyPC from SCCM. We don't want to disable Firefox Updates. The issue is how do you stop the Update notification popup every time you start Fi… (read more)

So we update Firefox via PatchMyPC from SCCM. We don't want to disable Firefox Updates. The issue is how do you stop the Update notification popup every time you start Firefox. You don't have this issue on Edge and Chrome

Asked by Menesh Harji 1 year ago

Last reply by Mike Kaply 1 year ago

  • Archived

Auto Updates with Firefox ESR

I recently deployed Mozilla Firefox 102.4 ESR here in our environment expecting that when a new version is released Firefox would automatically update on clients computer… (read more)

I recently deployed Mozilla Firefox 102.4 ESR here in our environment expecting that when a new version is released Firefox would automatically update on clients computers. Well today I noticed at a new release is out but isn't automatically updating on end users workstations. Does Firefox ESR not automatically update?

Asked by thomas.williams1156 1 year ago

Last reply by Mike Kaply 10 months ago

  • Archived

GPO Search Engine: spaces replaced with pluses instead of %20

Good day. I have created a custom Search Engine via a GPO. The search engine is added to Firefox without issue. However, when a user enters in a search with a space,… (read more)

Good day.

I have created a custom Search Engine via a GPO.

The search engine is added to Firefox without issue. However, when a user enters in a search with a space, Firefox replaces the space with a "plus" instead of a %20. The search engine does not know how to interpret a "plus," so the search engine returns 'no results found.' I use the same search string in a Chrome GPO, and it works as Chrome replaces a space with a %20. Is there a way I can tweak the Search engine GPO to use %20 instead of a "plus" for a space?

Thanks.

Peter

Asked by peterc5 9 months ago

Last reply by Mike Kaply 4 months ago

  • Solved
  • Archived

Extensions policy allowed not working (Intune ADMX)

Hi! Using Intune, we are setting some settings in Firefox. One that is a bit troublesome is the ExtensionSettings Currently looks like this: { "*": { "blocked_ins… (read more)

Hi!

Using Intune, we are setting some settings in Firefox. One that is a bit troublesome is the ExtensionSettings

Currently looks like this:

{

 "*": {
   "blocked_install_message": "Blocked.",
   "installation_mode": "blocked"
 },
 "uBlock0@raymondhill.net": {
   "installation_mode": "allowed"
 },
 "addon@darkreader.org": {
   "installation_mode": "allowed"
 },
 "@react-devtools": {
   "installation_mode": "allowed"
 }

}

I get the Blocked message if I try any of the allowed extentions like uBlock, Dark Reader or React Dev Tools.

I can add that uBlock had "force_installed" (With URL since that is required for force) and that worked fine.

Asked by janfredrik 7 months ago

Answered by janfredrik 7 months ago

Links sometimes open in new windows instead of new tabs

Software used: Firefox ESR 102.15.1 on RedHat Enterprise Linux 8 with the Xfce4 desktop environment in version 4.16.3. I run two Firefox windows on two different virtual… (read more)

Software used: Firefox ESR 102.15.1 on RedHat Enterprise Linux 8 with the Xfce4 desktop environment in version 4.16.3.

I run two Firefox windows on two different virtual desktops. Most open tabs in each of them are tied to the workflow I use on each desktop, in case this is somehow important.

Problem description: Sometimes, Ctrl+clicking on HTTP or HTTPS links will open the resource in a new window instead of in a new tab. This appears to be random, and does not depend on the link target. It is also not properly reproducible, so the same link may work just fine and open the resource in a new tab as expected on another attempt to Ctrl+click it.

Properties like browser.link.open_newwindow or browser.link.open_newwindow.override.external are unmodified and set at their default values.

I can drag the new window's only tab back into the browser window in which I originally clicked on such a link, but this is becoming tedious. Sometimes I overlook this, resulting in a chaos of multiple open Firefox windows with multiple open tabs in each of them.

The behavior I would expect: When Ctrl+clicking on links, their resources should always open in a new tab, never in a new window, unless it's a link with a protocol that Firefox by itself won't handle and where it will have to rely on another program to open it (e.g. ftp://, ssh:// or mailto:somebody@somedomain.com).

My request: I would like this to be fixed if it's a real bug. If I am somehow responsible myself without knowing why, please just let me know what I might be doing wrong.

If there are some workarounds for this, e.g. some properties I could set in about:config, help with those would be appreciated as well.

Most information I can find about similar problems is pretty old by now and pre-dates Firefox 102.15.1 by many releases and years. All suggestions I could find about what one would need to change in about:config to fix this seem to be the default by now anyway.

Thank you very much!

Asked by michael.lackner1 5 months ago

Last reply by michael.lackner1 5 months ago

  • Archived

Login Loop for embedded Stream Video

We have configured Windows Single Sign On to Microsoft 365 in Firefox 102.6.0esr (64-Bit). We have embedded a Video from the new Microsoft Stream on SharePoint Online in… (read more)

We have configured Windows Single Sign On to Microsoft 365 in Firefox 102.6.0esr (64-Bit).

We have embedded a Video from the new Microsoft Stream on SharePoint Online into a SharePoint 2019 onpremise Site via the provided iFrame. Here every user gets an endless Login Loop (see Screenshot).

If you open the deeplink to the video, Single Sign On works perfectly.

And this also works in Microsoft Edge, why the Microsoft support is not willing to analyse this issue further.

Do you have any ideas how to narrow down the problem?

Asked by Jens.Voigt 1 year ago

Last reply by Mike Kaply 1 year ago

  • Solved
  • Archived

Dragging and Dropping email attachments into a formula not working

Version: Firefox ESR 102.9.0 (64-bit) - Windows 10 Enterprise 22H2 Customers have been complaining for about 6 months that they can no longer drag and drop email attach… (read more)

Version: Firefox ESR 102.9.0 (64-bit) - Windows 10 Enterprise 22H2

Customers have been complaining for about 6 months that they can no longer drag and drop email attachments from Outlook (Microsoft Office Professional Plus 2019 - Exchange) into a Help Desk formula. I tested dragging from Outlook desktop and from the web version.

Drag and Drop works when using Edge and Chrome.

This is not a major issue, since customers can use the other browsers, but since they would prefer to use Firefox, a fix would really be appreciated.  :-)

Asked by fischer404 1 year ago

Answered by Mike Kaply 1 year ago

  • Archived

What does pref.browser.language.disable_button.remove do?

I am reviewing my user.js and pref.js files in anticipation of deploying policy settings in GPO. As a part of the review, I am trying to document what each of the prefere… (read more)

I am reviewing my user.js and pref.js files in anticipation of deploying policy settings in GPO. As a part of the review, I am trying to document what each of the preferences in those files actually do, in order to be able to see in the future why a setting was set the way it was.

I am presently at the preference "pref.browser.language.disable_button.remove". Based on the name of the preference, I would think that if set to true, it would disable the remove button in the Webpage Language Settings window. (Hamburger menu -> Settings -> General -> Language -> Choose your preferred language for displaying pages)

When I set it to true, it does not disable the remove button but when I use the remove button, the preference is set to false.

Am I misunderstanding the purpose of this preference or is there more to using this preference than just setting its value in about:config?

Also, I see there are a number of other preferences that contain disable_button but that only one, "pref.privacy.disable_button.view_passwords", has a GPO policy for setting. I would expect that these preferences containing disable_button would all work in a similar way just each for a different button in the Firefox GUI.

If it matters, I'm running Firefox 115.3.1esr 64-bit en-ca on Windows 10.

Asked by Numbers 8 months ago

Last reply by Mike Kaply 7 months ago