How I can configure trusted URL sites by Group Policy?
I download Firefox 60. Download ADMX, but I can't found options similar trusted.uris how from about:config. I found only: Authentication_SPNEGO, Authentication_Delegated, Authentication_NTLM.
If I insert links of my sites LDAP authorization in these settings, then the browser, when I try to open them, will still request a login with a password If I manual add ulr to about:config -> trusted:uris - Then everything is successfully authorized
被采纳的解决方案
The trusted-uris preference is SPNEGO, so if you configure SPNEGO, you are configuring those URLS. From the documentation here:
https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication
"network.negotiate-auth.trusted-uris lists the sites that are permitted to engage in SPNEGO authentication with the browser"
定位到答案原位置 👍 1所有回复 (3)
选择的解决方案
The trusted-uris preference is SPNEGO, so if you configure SPNEGO, you are configuring those URLS. From the documentation here:
https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication
"network.negotiate-auth.trusted-uris lists the sites that are permitted to engage in SPNEGO authentication with the browser"
Thanks! Got it!
Only there was one nuance... I configured:
network.negotiate-auth.delegation-uris network.negotiate-auth.trusted-uris
to http:// (our sites in intranet without Interner connection, and we trust to all our http:// sites =) )
Our site authentication by kerberos.
And when I open any sites in developer tools - Network tab I see that all links / resources first get 401 error and only after the site tries to download all the links received in response 401 errors, only then it starts to load them again but it seems on behalf of the current user and then everything is fine - 200 code.
In the access logs the web server and it turned out that the first treatment went anonymously on all links, and only then on behalf of the current user
由strelkovandrey于修改
If you're thinking this is a bug, please open a bugzilla bug. Thanks!