Этот сайт имеет ограниченную функциональность, пока мы проводим техническое обслуживание для улучшения его работы. Если какая-либо статья не решила вашу проблему и вы хотите задать вопрос, наше сообщество поддержки ждёт вас: @FirefoxSupport в Твиттере и /r/firefox на Reddit.

Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Подробнее

How to properly implement group policy ExtensionSettings control

  • 4 ответа
  • 2 имеют эту проблему
  • 461 просмотр
  • Последний ответ от Mike Kaply

more options

I've downloaded the latest admx files and tried pasting the sample JSON into the Computer section of the group policy. I used the JSON from https://github.com/mozilla/policy-templates/blob/9387163a9b1dd93500867fcb3b33598b6d559e89/README.md#extensionsettings

I think that sample is supposed to block all but 1 firefox extension, but it's still letting me install any extension. For this feature, I'm running Firefox 70.0 64-bit on Windows 10 How do I properly configure the group policy so that only approved extensions are allowed?

I've downloaded the latest admx files and tried pasting the sample JSON into the Computer section of the group policy. I used the JSON from https://github.com/mozilla/policy-templates/blob/9387163a9b1dd93500867fcb3b33598b6d559e89/README.md#extensionsettings I think that sample is supposed to block all but 1 firefox extension, but it's still letting me install any extension. For this feature, I'm running Firefox 70.0 64-bit on Windows 10 How do I properly configure the group policy so that only approved extensions are allowed?

Выбранное решение

You don't need the policies part of your JSON code. That is the main part of the code if you are using a policies.json file, but since you are using Group Policy instead, it's not needed and actually causes the code to stop working.

The same for the ExtensionsSettings part. Again, since we are using Group Policy, Firefox already knows the specific policy that you are referring to, so you don't need to specify it.

So the example code inserted into the Extension Management policy should be the following:

 {
      "*": {
            "blocked_install_message": "Custom error message.",
            "install_sources": ["https://addons.mozilla.org/"],
            "installation_mode": "blocked"
      },
      "uBlock0@raymondhill.net": {
            "installation_mode": "allowed",
            "install_url": "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"
      }
}

Hope this helps.

Прочитайте этот ответ в контексте 👍 1

Все ответы (4)

more options

Agreed, what would be the actual syntax/data to put in the "Extension Management" setting in the GPO? I just want to block extensions on devices, it would be great if I could whitelist a few extensions as well.

more options

Glad to see that jhalder also wants the answer (means I'm not alone).

Just to clear up any possible misunderstanding, I pasted the following into the group policy "Extension Management" - but it doesn't seem to have any effect.

{

 "policies": {
   "ExtensionSettings": {
     "*": {
       "blocked_install_message": "Custom error message.",
       "install_sources": ["https://addons.mozilla.org/"],
       "installation_mode": "blocked"
     },
     "uBlock0@raymondhill.net": {
       "installation_mode": "allowed",
       "install_url": "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"
     }
   }
 }

}

more options

Выбранное решение

You don't need the policies part of your JSON code. That is the main part of the code if you are using a policies.json file, but since you are using Group Policy instead, it's not needed and actually causes the code to stop working.

The same for the ExtensionsSettings part. Again, since we are using Group Policy, Firefox already knows the specific policy that you are referring to, so you don't need to specify it.

So the example code inserted into the Extension Management policy should be the following:

 {
      "*": {
            "blocked_install_message": "Custom error message.",
            "install_sources": ["https://addons.mozilla.org/"],
            "installation_mode": "blocked"
      },
      "uBlock0@raymondhill.net": {
            "installation_mode": "allowed",
            "install_url": "https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi"
      }
}

Hope this helps.

more options

I've updated the documentation to try to make this clearer. Sorry about that.