We help IT Professionals succeed at work.

Active Directory an Firefox

Hello EE. I have a question about Firefox. We use a Proxy server and enforce through GPO. We have a mix of IE and Firefox on our network. The GPO works on IE but is there a way to do it with Firefox? I read some postings here on EE but they were a little old. Is there an easy way to accomplish this? Something that does not take a guru to implement.
Comment
Watch Question

CERTIFIED EXPERT
Top Expert 2013
Commented:
No way natively to do it with group policy (there are not firefox settings).  You could try things like the firefox adm that is  out there   http://sourceforge.net/projects/firefoxadm/

IE will be easier to manage natively.

Thanks

Mike

Commented:
I have one customer that enforces this by having rules in their firewall router that says that port 80 and 443 requests are only accepted from specific machines including the proxy server. Firefox is installed to "Automatically Detect Proxy" and they have wpad.dat on their wpad.domain web server pointing to their proxy. If the setting are left alone, Firefox works when people connect to the local network and it still works when they go home. If they change the settings, they don't get to see the Internet.
Pieter JordaanSenior Systems Administrator - Web hosting and Network Security.
Commented:
Hi

Are you trying to make Firefox connect through the proxy server automatically ?
Your question is unclear.

The very best way to make devices on your network automatically detect the proxy settings, is to use wpad.

There are many howtos on the web.
Wiki - http://en.wikipedia.org/wiki/Web_Proxy_Autodiscovery_Protocol

BitFreeze.
InSearchOfIT Director

Author

Commented:
Well, the way it is now I have a GPO that configures "Automatic Browser Configuration" in Internet Explorer Maintenance to use a pac file pointing to our smoothwall web filter appliance . I would like to do something similar for Firefox user. Unfortunately we cannot make IE the required browser because of issues we have had with accessing certain sites that Firefox didn't.
Pieter JordaanSenior Systems Administrator - Web hosting and Network Security.

Commented:

GPO's only works with microsoft products.

wpad is universal.
InSearchOfIT Director

Author

Commented:
Ok. Thanks for the info. Let  me see what info I can find on wpad.
Commented:
If you are going to use wpad, let me tell you some gotchas. If you want it to work with Macintosh computers, don't use the wpad feature of DHCP, it is causes failures in Macs. You need a web server at wpad.mydomain.local port 80 and your DHCP server must be configured to set the local domain as mydomain.local (substitute your real internal domain name). If your web server has a case sensitive file system, like linux and not Windows, you will need two copies of the wpad file because some machines will ask for Wpad.dat and some will ask for wpad.dat.
InSearchOfIT Director

Author

Commented:
I used the firefox.adm method and it seems to work because it was easy add and configure. I was a little unsure about wpad.

Explore More ContentExplore courses, solutions, and other research materials related to this topic.