BlockAboutAddons Prevent access to the Add-ons Manager and about:addons
BlockAboutConfig Prevent access to about:config
BlockAboutProfiles Prevent access to about:profiles
BlockAboutSupport Prevent access to about:support
Certificates
ImportEnterpriseRoots Read certificates from the Windows certificate store.
Cookies
Allow Sites that are always allowed to set cookies
Block Sites that are blocked from setting cookies
Default Default cookie setting
AcceptThirdParty Accept third-party cookies
ExpireAtSessionEnd When cookies expire
Locked Don't allow cookie preferences to be changed
DisableSetDesktopBackground Disable setting an image as the desktop background
DisableMasterPasswordCreation Remove the master password functionality
DisableAppUpdate Turn off application update

BlockAboutAddons

Prevent access to the Add-ons Manager and about:addons
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\BlockAboutAddons
Policies.json:
BlockAboutAddons
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
disableAddonsManager
Preferences modified:
N/A
Description:

If this policy is set to true, the user can not access the Add-ons Manager or about:addons.

Back to top

BlockAboutConfig

Prevent access to about:addons
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\BlockAboutConfig
Policies.json:
BlockAboutConfig
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
disableAboutConfig
Preferences modified:
N/A
Description:

If this policy is set to true, the user can not access about:config.

Back to top

BlockAboutProfiles

Prevent access to about:profiles
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\BlockAboutProfiles
Policies.json:
BlockAboutProfiles
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
disableAboutProfiles
Preferences modified:
N/A
Description:

If this policy is set to true, the user can not access about:profiles.

Back to top

BlockAboutSupport

Prevent access to about:support
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\BlockAboutSupport
Policies.json:
BlockAboutSupport
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
disableAboutSupport
Preferences modified:
N/A
Description:

If this policy is set to true, the user can not access about:support and the "Troubleshooting Information menu" is disabled.

Back to top

DisableSetDesktopBackground

Disable setting an image as the desktop background.
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\DisableSetDesktopBackground
Policies.json:
DisableSetDesktopBackground
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
removeSetDesktopBackground
Preferences modified:
N/A
Description:

If this policy is set to true, the "Set As Desktop Background..." menuitem is removed.

Back to top

ImportEnterpriseRoots

Read certificates from the Windows certificate store
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Certificates\ImportEnterpriseRoots
Policies.json:
"Certificates": {
  "ImportEnterpriseRoots": [true|false]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
N/A
Preferences modified:
security.enterprise_roots.enabled
Description:

If this policy is set to true, Firefox will read certificates from the Windows certificate store.

Back to top

Cookies - Allow

Sites that are always allowed to set cookies
Data type:
Array of strings (URLS) [Windows:REG_SZ]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\Allow
Policies.json:
"Cookies": {
  "Allow": ["http://example.org", "http://example.com"]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
permissions->domain_name->cookie->1
Preferences modified:
N/A
Description:

If this policy is set, cookies are always allowed for the URLS indicated. If a top level domain is specified (http://example.org), cookies are allowed for all subdomains as well.

Back to top

Cookies - Block

Sites that are blocked from setting cookies
Data type:
Array of strings (URLS) [Windows:REG_SZ]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\Block
Policies.json:
"Cookies": {
  "Block": ["http://example.org", "http://example.com"]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
permissions->domain_name->cookie->2
Preferences modified:
N/A
Description:

If this policy is set, cookies are never allowed for the URLS indicated. If a top level domain is specified (http://example.org), cookies are allowed for all subdomains as well.

Back to top

Cookies - Default

Default cookie setting
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\Default
Policies.json:
"Cookies": {
  "Default": [true|false]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
N/A
Preferences modified:
network.cookie.cookieBehavior
Description:

If this policy is set to false, Firefox will not accept cookies.

Back to top

Cookies - AcceptThirdParty

Accept third-party cookies
Data type:
String [Windows:REG_SZ]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\AcceptThirdParty
Policies.json:
"Cookies": {
  "AcceptThirdParty": ["always"|"never"|"from-visited"]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
N/A
Preferences modified:
network.cookie.cookieBehavior
Description:

If you have enabled cookies, you can use this policy to determine how third-party cookies are handled:

  • always: Always accept third-party cookies
  • never: Never accept third-party cookies
  • from-visted: Accept third-party cookies from sites I've already visited
Back to top

Cookies - ExpireAtSessionEnd

When cookies expire
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\ExpireAtSessionEnd
Policies.json:
"Cookies": {
  "ExpireAtSessionEnd": [true|false]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
N/A
Preferences modified:
network.cookie.lifetimePolicy
Description:

If this policy is set to true, cookies will expire when Firefox is closed.

Back to top

Cookies - Locked

Don't allow cookie preferences to be changed
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\Cookies\Locked
Policies.json:
"Cookies": {
  "Locked": [true|false]
}
Supported on:
  • Firefox (Windows) RR and ESR since version 60
CCK2 Equivalent:
N/A
Preferences modified:
N/A
Description:

If this policy is set to true, cookie preferences cannot be changed.

Back to top

DisableMasterPasswordCreation

Remove master password functionality
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\DisableMasterPasswordCreation
Policies.json:
DisableMasterPasswordCreation
Supported on:
  • Firefox (Linux, Mac, Windows) RR and ESR since version 60
CCK2 Equivalent:
noMasterPassword
Preferences modified:
N/A
Description:

If this policy is set to true, the master password functionality is removed from the browser.

Back to top

DisableAppUpdate

Disable application updates
Data type:
Boolean [Windows:REG_DWORD]
Windows registry location for Windows clients:
Software\Policies\Mozilla\Firefox\DisableAppUpdate
Policies.json:
DisableAppUpdate
Supported on:
  • Firefox (Linux, Mac, Windows) ESR only since version 60
CCK2 Equivalent:
disableFirefoxUpdates
Preferences modified:
N/A
Description:

If this policy is set to true, Firefox updates are disabled and locked.

Back to top