jthibeault
asked on
Managing Firefox in AD Environment
I have users in our environment using IE, Chrome and Firefox. The company wants me to manage settings across all three platform uniformly or as close as i can get. IE is easy, but Firefox, sheesh what a nightmare. Here is what i need to do:
Manage allowed cookies
Manage allowed pop ups
Manage homepage (lock it)
Three fairly simple things. I need to add trusted sites as well but these are the three basics. I have used something called cck wizard located here:
https://addons.mozilla.org/en-US/firefox/addon/cck/
It works great, I can change all of those settings and then some. One issue, it outputs an XPI file that i cant seem to deploy cleanly. I can get it so that GPMC pushes the file to the users default profile extensions directory for firefox, but they get a big scary prompt to install it and i know people will freak out. So, I would like to deploy this XPI silently to about 800 people in the domain.
Has anyone had experience with this and have any good suggestions? There is also a product called policypak that looks great but at $2500 minimum ill tell people to click on the big scary message.
One last thing, the different version of firefox may come into play here as well, I am testing this on 25, but i think a lot of our people are on 10.
Thanks as always in advance geniuses.
Manage allowed cookies
Manage allowed pop ups
Manage homepage (lock it)
Three fairly simple things. I need to add trusted sites as well but these are the three basics. I have used something called cck wizard located here:
https://addons.mozilla.org/en-US/firefox/addon/cck/
It works great, I can change all of those settings and then some. One issue, it outputs an XPI file that i cant seem to deploy cleanly. I can get it so that GPMC pushes the file to the users default profile extensions directory for firefox, but they get a big scary prompt to install it and i know people will freak out. So, I would like to deploy this XPI silently to about 800 people in the domain.
Has anyone had experience with this and have any good suggestions? There is also a product called policypak that looks great but at $2500 minimum ill tell people to click on the big scary message.
One last thing, the different version of firefox may come into play here as well, I am testing this on 25, but i think a lot of our people are on 10.
Thanks as always in advance geniuses.
ASKER
Yes all of that I understand and was hoping wouldn't be the case. I mean in this company we were flexible enough to allow these other browser in the first place so we aren't super controlling or haven't been in the past.
The xpi extension I have actually locks the user from changing the settings but it not manageable as if there is an update I need to push out, it would have to override this.
I know you can set the homepage in the registry but again, if they change it, the "policy" won't switch back until they reboot which people probably don't do often.
The xpi extension I have actually locks the user from changing the settings but it not manageable as if there is an update I need to push out, it would have to override this.
I know you can set the homepage in the registry but again, if they change it, the "policy" won't switch back until they reboot which people probably don't do often.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
It isnt really anything I can use in our environment but seems to have been the best alternative.
Which means: if you really need policies, use IE, as it's the only browser that is fully compliant with them.
That said, I've found that it's better to focus security efforts on the proxy server and block bad websites, rather than control everyone's browser.