This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Locking in Automatically install updates (recommended)

  • 10 replies
  • 1 has this problem
  • 1 view
  • Last reply by cor-el

more options

Would anyone care to share if it is possible to lock the pref "Automatically install updates (recommended)" option. I have found where I can lock in the check for updates updates but specifically we are looking to take away the ability for our user to switch it from "Automatically install updates (recommended)" to "Check for updates but let you choose to install them" .

Would anyone care to share if it is possible to lock the pref "Automatically install updates (recommended)" option. I have found where I can lock in the check for updates updates but specifically we are looking to take away the ability for our user to switch it from "Automatically install updates (recommended)" to "Check for updates but let you choose to install them" .

All Replies (10)

more options

That would be via Preferences -> app.update.auto = true


{
  "policies": {
    "Preferences": {
      "app.update.auto": true
    }
  }
}

Modified by cor-el

more options

Thank you for the response, while your answer is correct I'm really looking for a way to lock that setting in. Using your method a user can still go in and change it to "check for updates but let you choose when to install them"

more options

If you use the policies.json file with the above posted policy then the pref will be locked to true.

  • "Preferences": {"app.update.auto": true}

You can check this on the about:config page.

  • Preference Name: app.update.auto Status: Locked Type: Boolean Value: true

It is weird (likely a bug) that you can click the second radio choice (check and choose) on the Options/Preferences page. A reload of about:about:preferences still shows that the first setting (automatically) is still selected.

more options

(As noted in the following reply, this information is for Windows only)

At some point, app.update.auto got migrated to a wholly different implementation that doesn't use a preference but instead uses a JSON file. On mine, it's here, and set to false:

C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\update-config.json

That's for the Release version. For Nightly, it's here, and set to true:

C:\ProgramData\Mozilla\updates\6F193CCC56814779\update-config.json

Newer versions of Firefox will migrate the old preference automatically, setting app.update.auto.migrated to true. After that, the preference should be ignored. (Filter about:config on up*migr to see a related preference.)

Perhaps if you clear or flip the .migrated preference then your policy could override the previous preference (saved in the JSON file) for existing installations. Of course, that still wouldn't disable the UI for changing it again, so that isn't very efficient.


As as aside, I notice I now have a vast profusion of empty folders under

C:\ProgramData\Mozilla\updates\

and I don't know why. Possibly running moz-regression? I deleted all the empty ones.

Modified by jscher2000 - Support Volunteer

more options

This update-config.json file in the updates folder (UpdRootD) seems to be a Windows only feature. https://dxr.mozilla.org/mozilla-release/source/toolkit/modules/UpdateUtils.jsm

See also:

  • Bug 1579332 - app.update.auto set to true and locked in about:config does not lock Check box in about:preferences

(please do not comment in bug reports
https://bugzilla.mozilla.org/page.cgi?id=etiquette.html
)

more options

When I do the radio button switching for "let me to auto" the file is created in C:\ProgramData\Mozilla\updates\308046B0AF4A39CB\update-config.json I still can't seem to lock it out but this is certainly a step in the right direction for me to at least be able to make sure all the machines are set to this easily enough.

Thank you all for the info.

more options

I'll say it here this is a way to stop Auto Update from happening but it will check and tell you there is a update but for this options is barred from mentioning it here.

more options

WestEnd said

I'll say it here this is a way to stop Auto Update from happening but it will check and tell you there is a update but for this options is barred from mentioning it here.

Yes, that is the exact issue: the question is how to prevent users from making this change on the Options page:

more options

jscher2000 said

WestEnd said
I'll say it here this is a way to stop Auto Update from happening but it will check and tell you there is a update but for this options is barred from mentioning it here.

Yes, that is the exact issue: the question is how to prevent users from making this change on the Options page:

That is correct, I know how to completely disable auto update and that is how we have done things for years and we have managed the updates internally. however times have changed and now we are looking into doing the auto update route but we want to make sure they ALL get updated. And not being able to lock that option puts users at risk.

more options

I will move the thread to Firefox for Enterprise as that forum is more suitable for this issue.