Firewall changes required after updating to Firefox v132

After updating to v132 I have noticed a significant increase in the load times for some websites that our users connect to. Using v131.0.3 I usually see < 1 second loa… (baca lebih lanjut)

After updating to v132 I have noticed a significant increase in the load times for some websites that our users connect to. Using v131.0.3 I usually see < 1 second load times for the two websites I am monitoring but after upgrading to v132 it is consistently taking 18-19 seconds for the same page. I have tried uninstalling v132 and reverting to v131 and it immediately goes back to the much faster load times. I have also tried installing various v133 releases and I see the same performance issue as for v132.

The environment I am working in is behind a network firewall with relatively restrictive internet access and I am wondering whether there are sites that Firefox is trying to connect to for the new anti-tracking or suspicious activity features (or anything else) that are being blocked and are therefore causing timeouts and retries that are bumping the total load time up.

Can anyone think of anything else I could check or change?

Ditanyakan oleh Steve G NZ 1 minggu yang lalu

Jawaban terakhir oleh markwarner22 1 minggu yang lalu

Conditional access policy

Login to o365 email does not work on Firefox browsers after enabling the Conditional Access policy based on compatible devices Firefox does not send device details, resu… (baca lebih lanjut)

Login to o365 email does not work on Firefox browsers after enabling the Conditional Access policy based on compatible devices

Firefox does not send device details, resulting in a device incompatibility message

Does Firefox support this?

There is an example of missing device ID in the attachment

Ditanyakan oleh spie.michal 3 minggu yang lalu

Jawaban terakhir oleh Mike Kaply 3 minggu yang lalu

Firefox ESR Update

We use Firefox ESR in our environment today, Is it possible to have a policy that would display "update required" message to end-users, or have it automatically update wi… (baca lebih lanjut)

We use Firefox ESR in our environment today, Is it possible to have a policy that would display "update required" message to end-users, or have it automatically update without users opening the browsers.

Ditanyakan oleh Ayodeji David 1 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 1 bulan yang lalu

Auto updating in stages

Hi, I am in a company where there is 100 and more devices with firefox on it. Right now we are facing a problem where some of it are using version way back into the days … (baca lebih lanjut)

Hi, I am in a company where there is 100 and more devices with firefox on it. Right now we are facing a problem where some of it are using version way back into the days such as version 100 115 117 and such. We enabled auto updating but it only updates to version 127 whereas the latest version is 132. We are required to open firefox again for multiple time b4 it gets the latest version. Is there any way to jump those stages and straight updates to the latest version?

Ditanyakan oleh LucasLau 1 bulan yang lalu

Jawaban terakhir oleh Max Christian Pohle 1 bulan yang lalu

Managed/Enterprise Browser

I want to deploy a managed/enterprise version of Firefox to my entire company. Is that an option? Is there an Admin console where we can configure default URLs and manage… (baca lebih lanjut)

I want to deploy a managed/enterprise version of Firefox to my entire company. Is that an option? Is there an Admin console where we can configure default URLs and manage extensions?

Ditanyakan oleh Alison Grant 1 bulan yang lalu

Jawaban terakhir oleh TyDraniu 1 bulan yang lalu

install command of version 18.05

i want to add win32 app on intune and i need the ( install & uninstall command of my version 18.05 ) below uploaded images more details about my version that I downl… (baca lebih lanjut)

i want to add win32 app on intune and i need the ( install & uninstall command of my version 18.05 )

below uploaded images more details about my version that I download it in my device.

Ditanyakan oleh wejdan.bawazeer 1 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 1 bulan yang lalu

Firefox Update for Windows 7 Pro 64 Bit

No matter which option I choose, I keep getting a message that tells me Firefox cannot be updated. The Oesr version wont update either. It tells me to update to 115.17 Oe… (baca lebih lanjut)

No matter which option I choose, I keep getting a message that tells me Firefox cannot be updated. The Oesr version wont update either. It tells me to update to 115.17 Oesr and when I click on update I keep getting this error.

Ditanyakan oleh Fabulous Heathen 1 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 1 bulan yang lalu

Log-in with a certificate is not possible

With Firefox 115.14.0esr, 115.2esr and 128.xesr we can`t log in into a company website with a certificate. After the certificate login we end up on the WebSeal again. Htt… (baca lebih lanjut)

With Firefox 115.14.0esr, 115.2esr and 128.xesr we can`t log in into a company website with a certificate. After the certificate login we end up on the WebSeal again. Http status 302 for pkmslogin.form and pkmscertpromptstagen is called ~12x repeatedly with 302 error each time and then jump back to the login screen.

Ditanyakan oleh desislava.ivanova 3 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 2 bulan yang lalu

Upgrading to Firefox ESR 128.2.0 from 115.15.0

Hi, Looking to upgrade our org to ESR 128.2.0 due to compatibility issues - most notably, embedded PDFs not loading due to Promise.withResolvers() not being implemented… (baca lebih lanjut)

Hi,

Looking to upgrade our org to ESR 128.2.0 due to compatibility issues - most notably, embedded PDFs not loading due to Promise.withResolvers() not being implemented on versions prior to 121.

Curious to know if there are any issues or concerns with upgrading manually/pushing this version out - would like to ensure we don't cause further issues in attempting to resolve one.

Ditanyakan oleh ngreyling 2 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 2 bulan yang lalu

Support ECH or ESNI in 128.2.0esr

Hello, I installed Firefox 128.2.0esr. I set the next parameters in GPO for settings DNSOverHTTPS: "DNSOverHTTPS": { "Enabled": true, "Provi… (baca lebih lanjut)

Hello,

I installed Firefox 128.2.0esr. I set the next parameters in GPO for settings DNSOverHTTPS: "DNSOverHTTPS": {

                      "Enabled":  true,

"ProviderURL": "https://safe.dot.dns.yandex.net/dns-query", "Locked": true, "Fallback": true }. But when checking via https://www.cloudflare.com/ru-ru/ssl/encrypted-sni/#results I get (screenshot in attachment). As you can see from the screenshot, DNS and SNI did not receive the coveted check marks. Secure DNS We weren’t able to detect whether you were using a DNS resolver over secure transport. Contact your DNS provider or try using 1.1.1.1 for fast & secure DNS. DNSSEC Attackers cannot trick you into visiting a fake website by manipulating DNS responses for domains that are outside their control. TLS 1.3 Nobody snooping on the wire can see the certificate of the website you made a TLS connection to. Secure SNI Anybody listening on the wire can see the exact website you made a TLS connection to.

In my browser / about:config: network.trr.mode = 2 network.trr.uri = https://safe.dot.dns.yandex.net/dns-query

In 128.2.0esr there is no protection against ESNI interceptions and ECH is enabled by default? Or is the problem that the DNS provider does not support the technology from Mozilla? Or what other settings we need use (via GPO)?

Thank you.

Ditanyakan oleh Mark Talala 3 bulan yang lalu

Jawaban terakhir oleh Valentin 3 bulan yang lalu

Kerberos authentication working for Chrome, Edge, Opera, and Brave, but not Firefox

Firefox (129.0.2) displays "401 - Unauthorized: Access is denied due to invalid credentials" (see attached image) I have tried various combinations of setting and not se… (baca lebih lanjut)

Firefox (129.0.2) displays "401 - Unauthorized: Access is denied due to invalid credentials" (see attached image)

I have tried various combinations of setting and not setting the following in Firefox:

  • network.negotiate-auth.trusted-uris
  • network.negotiate-auth.delegation-uris
  • network.auth.use-sspi

For the URI settings I have tried both .domainname.domainextension and https://servicename.domainname.domainextension

In Windows 10 Control Panel -> Internet Options, the site is in "Trusted sites" using a domain wildcard, and also "Local intranet" and both "Automatic logon" and "Enable Integrated Windows Authentication" are enabled. I suspect those setting aren't relevant since other browsers are authenticating without error or prompt, but calling this out to show that I've covered that base.

The web service is served by IIS 10.0 on Windows Server 2022 and the authentication provider list only includes Negotiate, but I don't believe this issue has anything to do with IIS or its configuration as, again, other browsers are authenticating without error or prompt.

Anything else to check?

Thank you for any guidance you can offer.

Ditanyakan oleh bryan 4 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 4 bulan yang lalu

ADMX Help

Hello, I am reaching out to gain information on ADMX GPO policies. We are retiring Policy Pak which used to add all the policies and secure Firefox for Enterprise. Wha… (baca lebih lanjut)

Hello,

I am reaching out to gain information on ADMX GPO policies. We are retiring Policy Pak which used to add all the policies and secure Firefox for Enterprise. What we noticed is that Policy Pak used the app set to apply these policies and we are noticing that native GPO's for the most part to match the Policy Pak policies is not as accurate for GPO's My ask here is there any Most Viable Product suggestions to apply Native GPO's for securing Firefox.

Ditanyakan oleh chris_weiderhold 5 bulan yang lalu

Jawaban terakhir oleh Mike Kaply 4 bulan yang lalu

Require device sign in to fill and manage passwords BUT with GPO?

I am working on deploying Firefox with a GPO and I noticed that a saved password can be easily viewed just by going into the password manager. I found a way to disable th… (baca lebih lanjut)

I am working on deploying Firefox with a GPO and I noticed that a saved password can be easily viewed just by going into the password manager. I found a way to disable the password manager all together, but then you can't save passwords. I am look for a way just to Require device sign in to fill and manage passwords as it says so its not just clicking the eyeball to see the password. I saw this article ( https://support.mozilla.org/en-US/kb/firefox-password-authentification-prompt ) which is how I got the description for this and that seems to be exactly what I want, But I cannot find this setting anywhere in the GPO. Anyone know where it is OR perhaps maybe you could add it?

Ditanyakan oleh awebber1 4 bulan yang lalu

Jawaban terakhir oleh cor-el 4 bulan yang lalu

Locking down firefox for primary school

Hi All, I'm using Firefox on 24 PC's in a primary school computer Lab, I have had reports of students installing extensions and plugins that i wish to stop, also i've ha… (baca lebih lanjut)

Hi All,

I'm using Firefox on 24 PC's in a primary school computer Lab, I have had reports of students installing extensions and plugins that i wish to stop, also i've had issues with students not signing out of their email and other students gaining access.

Im looking for solutions for the following and was hoping someone could point me in the right direction -

1. Disabling the installations of extensions and plugins. 2. Clearing browsing history/logging out of any accounts. 3. Locking settings so students can't change settings.

Any help would be greatly appreciated. Adam

Ditanyakan oleh adam183 4 bulan yang lalu

Jawaban terakhir oleh James 4 bulan yang lalu