X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/4cc86996596b69ddd055786d44e4d13d662c8883..0f1242f9df53feb73bd8956d7d4a97b6f30c7e9c:/windows/en-US/firefox.adml?ds=inline diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml index 66247e7..67c0dad 100644 --- a/windows/en-US/firefox.adml +++ b/windows/en-US/firefox.adml @@ -1,15 +1,24 @@ - + Microsoft Windows XP SP2 or later + No longer supported. Firefox 60 or later, Firefox 60 ESR or later Firefox 62 or later, Firefox 60.2 ESR or later Firefox 63 or later Firefox 64 or later, Firefox 60.4 ESR or later + Firefox 66 or later, Firefox 60.6 ESR or later + Firefox 67 or later, Firefox 60.7 ESR or later + Firefox 68 or later, Firefox 68 ESR or later + Firefox 68.0.1 or later, Firefox 68.0.1 ESR or later Firefox 60 ESR or later + Firefox 69 or later, Firefox 68.1 ESR or later + Firefox 70 or later, Firefox 68.2 ESR or later + Firefox 71 or later, Firefox 68.3 ESR or later + Firefox 72 or later, Firefox 68.4 ESR or later Firefox Permissions Camera @@ -26,6 +35,7 @@ Flash Home page Search + Preferences Allowed Sites Blocked Sites Custom Update URL @@ -51,9 +61,17 @@ If this policy is disabled or not configured, no websites are trusted to use NTL For more information, see https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication. Allow Non FQDN - If this policy is enabled, you can always allow SPNEGO or NTLM on non FQDNs (fully qualified domain names). + If this policy is enabled (and the checkboxes are checked), you can always allow SPNEGO or NTLM on non FQDNs (fully qualified domain names). If this policy is disabled or not configured, NTLM and SPNEGO are not enabled on non FQDNs. + Allow Proxies + If this policy is disabled, SPNEGO and NTLM will not authenticate with proxy servers. + +If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies. + Do not allow authentication preferences to be changed + If this policy is disabled, authentication preferences can be changed by the user. + +If this policy is enabled or not configured, authentication preferences cannot be changed by the user. Block Add-ons Manager If this policy is enabled, the user cannot access the Add-ons Manager or about:addons. @@ -74,6 +92,10 @@ If this policy is disabled or not configured, the user can access Troubleshootin If this policy is enabled, the user cannot set an image as their desktop background. If this policy is disabled or not configured, users can set images as their desktop background. + Captive Portal + If this policy is disabled, captive portal support is disabled. + +If this policy is enabled or not configured, captive portal support is enabled. Import Enterprise Roots If this policy is enabled, Firefox will read certificates from the Windows certificate store. @@ -82,6 +104,14 @@ If this policy is disabled or not configured, Firefox will not read certificates If this policy is enabled, Firefox will install the listed certificates into Firefox. It will look in %USERPROFILE%\AppData\Local\Mozilla\Certificates and %USERPROFILE%\AppData\Roaming\Mozilla\Certificates. If this policy is disabled or not configured, Firefox will not install additional certificates. + Default Download Directory + If this policy is enabled, you can set the default directory for downloads. ${home} can be used for the native home path. + +If this policy is disabled or not configured, the default Firefox download directory is used. + Download Directory + If this policy is enabled, you can set and lock the directory for downloads. ${home} can be used for the native home path. + +If this policy is disabled or not configured, the default Firefox download directory is used and the user can change it. Configure DNS Over HTTPS If this policy is enabled, the default configuration for DNS over HTTPS can be changed. @@ -91,7 +121,7 @@ If this policy is disabled or not configured, DNS Over HTTPS uses the default Fi If this policy is disabled or not configured, users can create a master password. Disable Update - If this policy is enabled, the browser does not receive udpates. + If this policy is enabled, the browser does not receive updates. If this policy is disabled or not configured, the browser receives updates. Disable Built-in PDF Viewer (PDF.js) @@ -128,6 +158,10 @@ If this policy is disabled or not configured, the "Forget" button is a If this policy is enabled, Firefox will not remember form or search history. If this policy is disabled or not configured, Firefox will remember form and search history. + Do not allow passwords to be revealed in saved logins + If this policy is enabled, users cannot show passwords in saved logins. + +If this policy is disabled or not configured, users can show passwords in saved logins. Disable Pocket If this policy is enabled, Pocket is not available. @@ -192,14 +226,46 @@ If this policy is disabled or not configured, no extensions are uninstalled.If this policy is enabled, you can specify a list of extension IDs that the user will be unable to uninstall or disable. If this policy is disabled or not configured, no extensions are locked + Extension Update + If this policy is disabled, extensions will not be updated automatically. + +If this policy is enabled or not configured, extensions will be updated automatically. + Extension Management + If this policy is enabled, you can use JSON to describe the extension management policy. + +If this policy is disabled or not configured, extensions will not be managed. + +For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#extensionsettings. Hardware Acceleration If this policy is disabled, hardware acceleration and cannot be enabled. If this policy is enabled or not configured, hardware acceleration is enabled. + Legacy Profiles + If this policy is enabled, Firefox will not try to create different profiles for installations of Firefox in different directories. This is the equivalent of the MOZ_LEGACY_PROFILES environment variable. + +If this policy is disabled or not configured, Firefox will create a new profile for each unique installation of Firefox. + Local File Links + If this policy is enabled, you can specify origins where linking to local files is allowed. + +If this policy is disabled or not configured, websites can't link to local files. + Network Prediction + If this policy is disabled, network prediction (DNS prefetching) will be disabled. + +If this policy is enabled or not configured, network prediction (DNS prefetching) will be enabled. + New Tab Page + If this policy is disabled, the new tab page will be blank. + +If this policy is enabled or not configured, the new tab page will be the default. Offer to save logins If this policy is enabled or not configured, Firefox will offer to save website logins and passwords. If this policy is disabled, Firefox will not offer to save website logins and passwords. + Offer to save logins (default) + If this policy is enabled or not configured, Firefox will offer to save website logins and passwords. + +If this policy is disabled, Firefox will not offer to save website logins and passwords. + +In either case, the user will be able to change the value (it is not locked). If this policy is enabled, pop-up windows are always allowed for the origins indicated. If a top level domain is specified (http://example.org), pop-up windows are allowed for all subdomains as well. If this policy is disabled or not configured, the default pop-up policy is followed. @@ -291,7 +357,7 @@ If this policy is disabled or not configured, any site that is not in the Block If this policy is disabled or not configured, the user can change location preferences. If this policy is enabled, notifications can always be sent for the origins indicated. -If this policy is disabled or not configured, the default nofication policy is followed. +If this policy is disabled or not configured, the default notification policy is followed. If this policy is enabled, notifications are always blocked for the origins indicated. If this policy is disabled or not configured, notifications are not blocked by default. @@ -303,6 +369,10 @@ If this policy is disabled or not configured, any site that is not in the Block If this policy is enabled, notification preferences cannot be changed by the user. If this policy is disabled or not configured, the user can change their notification preferences. + Customize Firefox Home + If this policy is enabled, you can choose the sections displayed on Firefox Home and prevent the user from changing them. + +If this policy is disabled or not configured, the default sections are displayed and the user can change them. If this policy is enabled, Flash is activated by default for the origins indicated unless Flash is completely disabled. If a top level domain is specified (http://example.org), Flash is allowed for all subdomains as well. If this policy is disabled or not configured, the default Flash policy is followed. @@ -327,8 +397,8 @@ If this policy is disabled or not configured, the first run page is displayed.If this policy is enabled, you can specify a URL to be displayed after Firefox is updated. If you leave the URL blank, no upgrade page will be shown. If this policy is disabled or not configured, the upgrade is displayed. - Clear all data when browser is closed - If this policy is enabled, all data is cleared when Firefox is closed. This includes Browsing & Download History, Cookies, Active Logins, Cache, Form & Search History, Site Preferences and Offline Website Data. + Clear data when browser is closed + If this policy is enabled, you can choose data to be cleared when Firefox is closed. If this policy is disabled or not configured, data is not cleared when the browser is closed. Blocked websites @@ -415,6 +485,16 @@ If this policy is disabled or not configured, the start page defaults to the pre None Homepage Previous Session + Password Manager + If this policy is disabled, the password manager is not available via preferences. + +If this policy is enabled or not configured, the password manager is available via preferences. + Prompt for download location + If this policy is disabled, the user is not prompted for a download location. + +If this policy is enabled, the user is always prompted for a download location. + +If this policy is not configured, the user is prompted for a download location, but can change the default. Proxy Settings If this policy is enabled, you can configure and lock network settings. @@ -440,6 +520,7 @@ If this policy is disabled, tracking protection is disabled and locked in both t If this policy is enabled, private browsing is enabled by default in both the browser and private browsing and you can choose whether or not to prevent the user from changing it. Requested locale + Requested locale (string) If this policy is enabled, you can specify a list of requested locales for the application in order of preference. It will cause the corresponding language pack to become active. If this policy is disabled or not configured, the application will use the default locale. @@ -475,6 +556,95 @@ If this policy is disabled or not configured, search engines can be installed fr If this policy is enabled, you can specify the names of engines to be removed or hidden. If this policy is disabled or not configured, search engines will not be removed or hidden. + Search Suggestions + If this policy is disabled, search suggestions will be disabled. + +If this policy is enabled, search suggestions will be enabled. + +If this policy is not configured, search suggestions will be enabled, but the user can turn them off. + Minimum SSL version enabled + If this policy is enabled, Firefox will not use SSL/TLS versions less than the value specified. + +If this policy is disabled or not configured, Firefox defaults to a minimum of TLS 1.0. + Maximum SSL version enabled + If this policy is enabled, Firefox will not use SSL/TLS versions greater than the value specified. + +If this policy is disabled or not configured, Firefox defaults to a maximum of TLS 1.3. + TLS 1.0 + TLS 1.1 + TLS 1.2 + TLS 1.3 + Support Menu + If this policy is enabled, a new menuitem is added to the help menu with support information. + +If this policy is disabled or not configured, no menuitem is added. + If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false. + +For a description of the preference, see: + +https://github.com/mozilla/policy-templates/blob/master/README.md#preferences + If this policy is enabled, the preference is locked to the string entered. If this policy is disabled, it has no effect. + +For a description of the preference, see: + +https://github.com/mozilla/policy-templates/blob/master/README.md#preferences + If this policy is enabled, the preference is locked to the value selected. If this policy is disabled, it has no effect. + +For a description of the preference, see: + +https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + This preference is no longer support on Windows. We are investigating creating a policy. + Auto (0) + Always Off (1) + Ask Every Time + Select Automatically + accessibility.force_disabled + app.update.auto (Deprecated) + browser.bookmarks.autoExportHTML + browser.bookmarks.file + browser.bookmarks.restore_default_bookmarks + browser.cache.disk.enable + browser.fixup.dns_first_for_single_words + browser.places.importBookmarksHTML + browser.safebrowsing.phishing.enabled + browser.safebrowsing.malware.enabled + browser.search.update + browser.tabs.warnOnClose + browser.cache.disk.parent_directory + browser.slowStartup.notificationDisabled + browser.taskbar.previews.enable + browser.urlbar.suggest.bookmark + browser.urlbar.suggest.history + browser.urlbar.suggest.openpage + datareporting.policy.dataSubmissionPolicyBypassNotification + dom.allow_scripts_to_close_windows + dom.disable_window_flip + dom.disable_window_move_resize + dom.event.contextmenu.enabled + dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl + dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl + extensions.blocklist.enabled + geo.enabled + extensions.getAddons.showPane + intl.accept_languages + media.eme.enabled + media.gmp-gmpopenh264.enabled + media.gmp-widevinecdm.enabled + network.dns.disableIPv6 + network.IDN_show_punycode + places.history.enabled + print.save_print_settings + security.default_personal_cert + security.ssl.errorReporting.enabled + security.mixed_content.block_active_content + ui.key.menuAccessKeyFocuses + browser.newtabpage.activity-stream.default.sites + extensions.htmlaboutaddons.recommendations.enabled + media.peerconnection.enabled + media.peerconnection.ice.obfuscate_host_addresses.whitelist + security.osclientcerts.autoload + security.tls.hello_downgrade_check + widget.content.gtk-theme-override @@ -489,6 +659,10 @@ If this policy is disabled or not configured, search engines will not be removed Always allow NTLM on non FQDNs Always allow SPNEGO on non FQDNs + + Allow NTLM to automatically authenticate with proxy servers + Allow SPNEGO to automatically authenticate with proxy servers + @@ -514,6 +688,8 @@ If this policy is disabled or not configured, search engines will not be removed Don't allow tracking protection preferences to be changed. + Block cryptomining scripts. + Block fingerprinting scripts. @@ -574,6 +750,9 @@ If this policy is disabled or not configured, search engines will not be removed + + + @@ -626,6 +805,58 @@ If this policy is disabled or not configured, search engines will not be removed Enable DNS over HTTPS. Don't allow DNS over HTTPS preferences to be changed. + + + + + Title: + + + URL: + + + Access key: + + + + + + + + + + + + + + + + + + Cache + Cookies + Download History + Form & Search History + Browsing History + Active Logins + Site Preferences + Offline Website Data + + + Search + Top Sites + Download History + Recommended by Pocket + Snippets + Don't allow settings to be changed + + + +