Where did you install Firefox from? Help Mozilla uncover 3rd party websites that offer problematic Firefox installation by taking part in our campaign. There will be swag, and you'll be featured in our blog if you manage to report at least 10 valid reports!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Firefox 78 ESR cannot accept certificate exclusion for HSTS-enabled Website

  • 2 replies
  • 1 has this problem
  • 1 view
  • Last reply by any_mail

any_mail
any_mail
more options

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network.

Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely.

How to reenable possibility to add exceprion for hsts enabled websites?

Windows 7 Firefox ESR 78 Portable.

For now I downgraded to FF 68.

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network. Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely. How to reenable possibility to add exceprion for hsts enabled websites? Windows 7 Firefox ESR 78 Portable. For now I downgraded to FF 68.
Attached screenshots

Modified by any_mail

Chosen solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Read this answer in context 👍 2

All Replies (2)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Chosen Solution

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

any_mail
any_mail Question owner
more options

cor-el said
It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate. You can try to set security.enterprise_roots.enabled = true on the about:config page. You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Thak you. It work well.