?
Solved

Firefox groupo policy

Posted on 2012-04-10
7
Medium Priority
?
837 Views
Last Modified: 2012-05-10
Hi All,


I haveadded my own self certificate to all our desktop and laptop computers.

it would seem the geeks at firefox still want to flag this as an issue.

I found these instructions on the internet to disable their "self signed" warning message for a specific site.



Bypassing the warning
You can tell Firefox to bypass these certificate warnings. You should only bypass the warning if you're sure that the site is legitimate. Legitimate public sites will not ask you to do this. An invalid certificate can be an indication of a web page that will defraud you or steal your identity.

On the warning page, click Or you can add an exception....
Click Add Exception.... The Add Security Exception dialog will appear.
Click Get Certificate.
Read the text describing the problems with this site.
Click Confirm Security Exception if you want to trust the site.


Does anyone know who to do this via group policy?


Thanks
0
Comment
Question by:detox1978
7 Comments
 
LVL 1

Accepted Solution

by:
Norautron earned 668 total points
ID: 37826906
Hi!
I have tried to control Firefox via GPO, but i never found a solution.. The one ADM file i managed to import to GPO, had lots of settings, but they never applyed! I don't think that FF will release one. Just wanted to share my experience, since i used a lot of time on it.:)

Good luck!
0
 
LVL 19

Expert Comment

by:Miguel Angel Perez Muñoz
ID: 37826954
0
 
LVL 10

Assisted Solution

by:scriven_j
scriven_j earned 1332 total points
ID: 37826994
There is an edition of Firefox which has been created to allow you to use Group Policy to lock it down / configure it.

You can download it and ADM templates from here:-

http://www.frontmotion.com/Firefox/fmfirefox.htm

I've used this for several years and is the best way I have found to apply Group Policy to Firefox.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 2

Author Comment

by:detox1978
ID: 37827046
Drashiel, this is what i have done, so it works on chrome, IE etc... but Firefox has an additional self signed alert.

scriven_j, users already have firefox installed, so i dont fancy installing a separate version.
0
 
LVL 10

Expert Comment

by:scriven_j
ID: 37827073
I don't know of any other method, sorry!
0
 
LVL 2

Author Comment

by:detox1978
ID: 37896372
When users browse the website they get an option to add the URL to the exceptions list, when I add it the message is suppressed.

You'd think this info would be stored in the registry, but I couldn't find it anywhere.

Any further ideas?
0
 
LVL 10

Assisted Solution

by:scriven_j
scriven_j earned 1332 total points
ID: 37897226
I'd use something like Process Monitor:-

http://technet.microsoft.com/en-us/sysinternals/bb896645

Have it running, make the change and then you should be able to work out where it is stored.  Has to be a config file or registry entry....  If it's a registry entry you can add it to a policy if it's a file, then you would need to script something to roll it out automatically.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Following on from our article on "The Murky World of Consent and opt in", we thought we would issue some helpful guidance, not only on consent itself but knowing what information you are capturing, what you are doing with this data and how you can p…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

612 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question