X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/fe8e1e0bea09850dbc62ec01242fc577e62ccd3d..d36a0b2aa65790f58871c47d2830e67c53737498:/windows/en-US/firefox.adml diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml index 759d576..27323b3 100644 --- a/windows/en-US/firefox.adml +++ b/windows/en-US/firefox.adml @@ -1,5 +1,5 @@ - + @@ -37,6 +37,27 @@ Firefox 84 or later, Firefox 78.6 ESR or later Firefox 85 or later, Firefox 78.7 ESR or later Firefox 86 or later, Firefox 78.8 ESR or later + Firefox 88 or later, Firefox 78.10 ESR or later + Firefox 89 or later, Firefox 78.11 ESR or later + Firefox 90 or later, Firefox 78.12 ESR or later + Firefox 91 or later + Firefox 95 or later, Firefox 91.4 ESR or later + Firefox 96 or later, Firefox 91.5 ESR or later + Firefox 96 or later + Firefox 97 or later, Firefox 91.6 ESR or later + Firefox 98 or later + Firefox 99 or later, Firefox 91.8 ESR or later + Firefox 100 or later, Firefox 91.9 ESR or later + Firefox 101 or later, Firefox 91.10 ESR or later + Firefox 102 or later + Firefox 104 or later, Firefox 102.2 ESR or later + Firefox 105 or later, Firefox 102.3 ESR or later + Firefox 106 or later, Firefox 102.4 ESR or later + Firefox 107 or later, Firefox 102.5 ESR or later + Firefox 108 or later, Firefox 102.6 ESR or later + Firefox 109 or later, Firefox 102.7 ESR or later + Firefox 110 or later, Firefox 102.8 ESR or later + Firefox 112 or later Firefox Permissions Camera @@ -59,7 +80,9 @@ User Messaging Disabled Ciphers Encrypted Media Extensions - PDFjs + PDF.js + Picture-in-Picture + Proxy Settings Allowed Sites Allowed Sites (Session Only) Blocked Sites @@ -259,10 +282,17 @@ If this policy is disabled or not configured, system add-ons are installed and u If this policy is disabled or not configured, telemetry is collected and uploaded. Mozilla recommends that you do not disable telemetry. Information collected through telemetry helps us build a better product for businesses like yours. - Display Bookmarks Toolbar + Display Bookmarks Toolbar (Deprecated) If this policy is enabled, the bookmarks toolbar is displayed by default. The user can still hide it. If this policy is disabled or not configured, the bookmarks toolbar is not displayed by default. + Display Bookmarks Toolbar + If this policy is enabled, the default bokmarks toolbar display can be configured. + +If this policy is disabled or not configured, the bookmarks toolbar is displayed on the new tab page by default. + Always + Never + New Tab Display Menu Bar (Deprecated) If this policy is enabled, the menu bar is displayed by default. The user can still hide it. @@ -304,13 +334,21 @@ If this policy is disabled or not configured, extensions will not be managed. For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#extensionsettings. Hardware Acceleration - If this policy is disabled, hardware acceleration and cannot be enabled. + If this policy is disabled, hardware acceleration is disabled and cannot be enabled. If this policy is enabled or not configured, hardware acceleration is enabled. Legacy Profiles If this policy is enabled, Firefox will not try to create different profiles for installations of Firefox in different directories. This is the equivalent of the MOZ_LEGACY_PROFILES environment variable. If this policy is disabled or not configured, Firefox will create a new profile for each unique installation of Firefox. + Revert to legacy SameSite behavior + If this policy is enabled, Firefox will revert to the legacy behavior of SameSite. This means that cookies that don't explicitly specify a SameSite attribute are treated as if they were SameSite=None. + +If this policy is disabled or not configured, Firefox will enforce SameSite=lax. + Revert to legacy SameSite behavior on specific domains + If this policy is enabled, Firefox will revert to the legacy behavior of SameSite for the specified domains. This means that cookies that don't explicitly specify a SameSite attribute are treated as if they were SameSite=None. + +If this policy is disabled or not configured, Firefox will enforce SameSite=lax for all domains. Local File Links If this policy is enabled, you can specify origins where linking to local files is allowed. @@ -360,11 +398,11 @@ If this policy is disabled or not configured, the default cookie policy is follo If this policy is enabled, cookies are blocked for the origins indicated. If a top level domain is specified (http://example.org), cookies are blocked from all subdomains as well. If this policy is disabled or not configured, cookies are not blocked by default. - Accept cookies from websites + Accept cookies from websites (Deprecated) If this policy is disabled, cookies are not accepted from websites by default. If this policy is not configured or enabled, cookies are accepted from websites. - Accept third-party cookies + Accept third-party cookies (Deprecated) If this policy is enabled and cookies are allowed, you can set when to accept third-party cookies. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. @@ -375,14 +413,26 @@ This setting is ignored if this policy is disabled or not configured or if cooki If this policy is enabled and cookies are allowed, they will expire when Firefox is closed. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. - Reject trackers + Reject trackers (Deprecated) If this policy is enabled and cookies are allowed, Firefox will reject tracker cookies by default. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. Do not allow preferences to be changed - If this policy is enabled, cookie preferences cannot be changed by the user. - -If this policy is disabled or not configured, the user can change their cookie preferences. + If this policy is enabled, cookie preferences cannot be changed by the user. + Cookie Behavior + If this policy is enabled, you can configure cookie behavior. + +If this policy is not configured or disabled, cookies are rejected for known trackers. + Cookie Behavior in private browsing + If this policy is enabled, you can configure cookie behavior in private browsing. + +If this policy is not configured or disabled, in private browsing, cookies are rejected for known trackers and third-party cookies are partitioned. + Accept all cookies + Reject third party cookies + Reject all cookies + Reject third party cookies for sites you haven't visited + Reject cookies for known trackers + Reject cookies for known trackers and partition third-party cookies (Total Cookie Protection) If this policy is enabled, access to the camera is always allowed for the origins indicated. If this policy is disabled or not configured, the default camera policy is followed. @@ -495,6 +545,8 @@ If this policy is disabled or not configured, the user can change their Flash pr Override the first run page If this policy is enabled, you can specify a URL to be used as the first run page. If you leave the URL blank, no first run page will be shown. +Starting with Firefox 83, Firefox ESR 78.5, you can also specify multiple URLS separated by a vertical bar (|). + If this policy is disabled or not configured, the first run page is displayed. Override the upgrade page If this policy is enabled, you can specify a URL to be displayed after Firefox is updated. If you leave the URL blank, no upgrade page will be shown. @@ -545,11 +597,11 @@ If this policy is enabled, any shutdown preferences explicitly set via policy ca If this policy is not configured, no shutdown preferences can be changed by the user (previous behavior). Blocked websites - If this policy is enabled, you can specify match patterns that indicate sites to be blocked. The match patterns are documented at https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Match_patterns. Only http/https addresses are supported at the moment. There is a 1000 entry limit. + If this policy is enabled, you can specify match patterns that indicate sites to be blocked. The match patterns are documented at https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Match_patterns. There is a 1000 entry limit. If this policy is disabled or not configured, no websites are blocked. Exceptions to blocked websites - If this policy is enabled, and the website filter is enabled, you can specify match patterns for sites you do not want to block. The match patterns are documented at https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Match_patterns. Only http/https addresses are supported at the moment. There is a 1000 entry limit. + If this policy is enabled, and the website filter is enabled, you can specify match patterns for sites you do not want to block. The match patterns are documented at https://developer.mozilla.org/en-US/Add-ons/WebExtensions/Match_patterns. There is a 1000 entry limit. If this policy is disabled or not configured, there are no exceptions to the website filter. Bookmark 01 @@ -602,7 +654,7 @@ If this policy is disabled or not configured, there are no exceptions to the web Bookmark 48 Bookmark 49 Bookmark 50 - If this policy is enabled, you can configure a bookmark be added to Firefox. Due to a bug, you must select the location. Note that you must specify the bookmarks in order. + If this policy is enabled, you can configure a bookmark be added to Firefox. Due to a bug, you must select the location. Note that you must specify the bookmarks in order. If this policy is disabled or not configured, a new bookmark is not added. Toolbar @@ -629,17 +681,27 @@ If this policy is disabled or not configured, the start page defaults to the pre Homepage Previous Session Homepage (Locked) + Show Home button on toolbar + If this policy is enabled, the home button will appear on the toolbar by default. + +If this policy is disabled, the home button will not appear on the toolbar by default. + +If this policy is not configured, Firefox will determine whether or not the home button appears on the toolbar by default. Password Manager If this policy is disabled, the password manager is not available via preferences. If this policy is enabled or not configured, the password manager is available via preferences. + Password Manager Exceptions + If this policy is enabled, you can specify sites where Firefox won't offer to save passwords. + +If this policy is disabled or not configured, Firefox will offer to save passwords on all sites. Prompt for download location If this policy is disabled, the user is not prompted for a download location. If this policy is enabled, the user is always prompted for a download location. If this policy is not configured, the user is prompted for a download location, but can change the default. - Proxy Settings + Proxy Settings (Moved) If this policy is enabled, you can configure and lock network settings. Select the connection type and then fill in the appropriate sections. Due to a bug, you must select a value for the SOCKS proxy version. @@ -686,6 +748,10 @@ If this policy is disabled or not configured, tracking protection is enabled for If this policy is enabled, tracking protection preferences cannot be changed by the user. If this policy is disabled or not configured, the user can change tracking protection preferences. + Email Tracking + If this policy is enabled, hidden email tracking pixels and scripts on websites are blocked. + +If this policy is disabled or not configured, hidden email tracking pixels and scripts on websites are not blocked. Requested locale Requested locale (string) If this policy is enabled, you can specify a list of requested locales for the application in order of preference. It will cause the corresponding language pack to become active. @@ -761,6 +827,14 @@ If this policy is enabled or not configured, Firefox features will be recommende If this policy is disabled, actions will not be recommended based on what the user types in the URL bar. If this policy is enabled or not configured, actions will be recommended based on what the user types in the URL bar. + Skip Onboarding + If this policy is enabled, onboarding messages will not be shown on the new tab page. + +If this policy is disabled or not configured, onboarding messages will be shown on the new tab page. + More from Mozilla + If this policy is disabled, the More from Mozilla section will not be shown in preferences. + +If this policy is enabled or not configured, the More from Mozilla section will be shown in preferences. TLS_DHE_RSA_WITH_AES_128_CBC_SHA TLS_DHE_RSA_WITH_AES_256_CBC_SHA TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA @@ -772,6 +846,12 @@ If this policy is enabled or not configured, actions will be recommended based o TLS_RSA_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_AES_128_GCM_SHA256 TLS_RSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA + TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA + TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 + TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 If this policy is enabled, the corresponding cipher is disabled. If this policy is disabled, the corresponding cipher is enabled. @@ -785,7 +865,7 @@ If this policy is enabled or not configured, encrypted media extensions (like Wi If this policy is enabled and EncryptedMediaExtensions are disabled, Firefox will not download encrypted media extensions (like Widevine) or ask the user to install them. If this policy is not disabled or not configured, it has no effect. - Enable PDFjs + Enable PDF.js If this policy is disabled, the built-in PDF viewer is not used. If this policy is enabled or not configured, the built-in PDF viewer is used. @@ -793,10 +873,14 @@ If this policy is enabled or not configured, the built-in PDF viewer is used.If this policy is enabled, the built-in PDF viewer will honor document permissions like preventing the copying of text. If this policy is not disabled or not configured, document permissions are ignored. - Picture-in-Picture - If this policy is disabled, the Picture-in-Picture toggle does not appear on videos. + Enabled + If this policy is disabled, the Picture-in-Picture toggle does not appear on videos. If this policy is enabled or not configured, the Picture-in-Picture toggle is available on videos. + Locked + If this policy is enabled, Picture-in-Picture settings cannot be changed by the user. + +If this policy is disabled or not configured,Picture-in-Picture settings can be changed by the user. Primary (Master) Password If this policy is enabled, a primary password is required. @@ -810,11 +894,113 @@ If this policy is disabled or not configured, Firefox defaults are used. For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#handlers. Preferences - If this policy is enabled, you can use JSON to configure preferences. + Note: In order to use this policy, you must clear all settings in the old Preferences (Deprecated) section. + +If this policy is enabled, you can use JSON to configure preferences. If this policy is disabled or not configured, preferences are not modified. For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + Bookmarks (JSON) + If this policy is enabled, you can use JSON to configure bookmarks, including [] to clear all bookmarks. + +If this policy is disabled or not configured, the individual bookmark policies are used. + +If this policy is enabled along with individual bookmarks, those bookmarks will not be added. + +This policy has no effect on Managed Bookmarks. + +For detailed information on the JSON, see https://github.com/mozilla/policy-templates/blob/master/README.md#bookmarks. + Managed Bookmarks + If this policy is enabled, you can use JSON to configure managed bookmarks. + +If this policy is disabled or not configured, managed bookmarks are not added. + +For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#managedbookmarks. + Define domains allowed to access Google Workspace + If this policy is enabled, users can only access Google Workspace for the specified domains (separated by a comma). To allow access to Gmail, you can add consumer_accounts. + +If this policy is disabled or not configured, users can access any account on Google Workspace as well as Gmail. + Background updater + If this policy disabled, the application will not try to install updates when the application is not running. + +If this policy is enabled or not configured, application updates may be installed (without user approval) in the background, even when the application is not running. The operating system might still require approval. + Auto Launch Protocols From Origins + If this policy is enabled, you can define a list of external protocols that can be used from listed origins without prompting the user. + +If this policy is disabled or not configured, any site that invokes an external protocol will ask the user for permission. + +For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#autolaunchprotocolsfromorigins. + Windows SSO + If this policy is enabled, Firefox will use credentials stored in Windows to sign in to Microsoft, work, and school accounts. + +If this policy is disabled or not configured, credentials must be entered manually. + Use System Print Dialog + If this policy is enabled, Firefox will use the system print dialog instead of showing print preview before printing. + +If this policy is disabled or not configured, Firefox will show print preview before printing. + Disable warnings based on file extension for specific file types on domains + If this policy is enabled, you can define a list of domains and file type extensions that will be exempt from executable warnings. + +If this policy is disabled or not configured, warnings are shown for all executable file types. + +For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#exemptdomainfiletypepairsfromfiletypedownloadwarnings. + Start Downloads in Temporary Directory + If this policy is enabled, Firefox will start downloads in a temporary directory and automatically deleted when you close the browser. + +If this policy is disabled or not configured, Firefox will to the download folder and will not be automatically deleted when you close the browser. + Force direct intranet site navigation on single word entries in the address bar + If this policy is enabled, typing single word entries in the address bar will attempt to navigate to intranet sites first, falling back to search if the DNS request fails. + +If this policy is disabled or not configured, typing single word entries in the address bar will search. + Pin updates to a specific version + If this policy is enabled, you can specify a Firefox version as xx. or xx.xx. and Firefox will not be updated beyond that major or minor version. + +If this policy is disabled or not configured, Firefox will update normally. + Do not allow proxy settings to be changed + If this policy is enabled, proxy settings cannot be changed by the user. + +If this policy is disabled or not configured, the user can change their proxy settings. + Connection Type + If this policy is enabled, you can set the connection type. + +If this policy is disabled or not configured, Firefox defaults to using the system proxy. + HTTP Proxy + If this policy is enabled, you can set the HTTP Proxy used when manual proxy configuration is specified. + +If this policy is disabled or not configured, Firefox does not use an HTTP Proxy. + Use HTTP proxy for HTTPS + If this policy is enabled, the HTTP Proxy is used for HTTPS when manual proxy configuration is specified. + +If this policy is disabled or not configured, Firefox does not use an HTTPS Proxy unless specified. + HTTPS Proxy + If this policy is enabled, you can set the HTTPS Proxy used when manual proxy configuration is specified. + +If this policy is disabled or not configured, Firefox does not use an HTTPS Proxy. + SOCKS Host + If this policy is enabled, you can set the SOCKS Host and version used when manual proxy configuration is specified. + +If this policy is disabled or not configured, Firefox does not use a SOCKS Host. + Automatic proxy configuration URL + If this policy is enabled, you can set the automatic proxy configuration URL. + +If this policy is disabled or not configured, Firefox does not use an automatic proxy configuration URL. + Proxy Passthrough + If this policy is enabled, the proxy settings are bypassed for the locations specified. + +If this policy is disabled or not configured, Firefox does not bypass the proxy. + Do not prompt for authentication if password is saved + If this policy is enabled, Firefox will not prompt for proxy authentication when a password is saved. + +If this policy is disabled or not configured, Firefox will always prompt for proxy authentication. + Proxy DNS when using SOCKS v5 + If this policy is enabled, DNS is proxied when using SOCKS v5. + +If this policy is disabled or not configured, DNS is not proxied when using SOCKS v5. + Disable Third Party Module Blocking + If this policy is enabled, users are not allowed to block third-party modules from the about:third-party page. + +If this policy is disabled or not configured, users users are allowed to block third-party modules from the about:third-party page. If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false. For a description of the preference, see: @@ -923,6 +1109,12 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + + + + @@ -998,6 +1190,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + @@ -1078,6 +1273,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + @@ -1094,8 +1292,10 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. Search Top Sites + Sponsored Top Sites Download History Recommended by Pocket + Sponsored Pocket Stories Snippets Don't allow settings to be changed @@ -1108,6 +1308,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + + + + + + + + + + + + + + + + Host including port: + + + SOCKS Version: + + + + + + + + + No proxy for + + + Example: .mozilla.org, .net.nz, 192.168.1.0/24 + Connections to localhost, 127.0.0.1/8, and ::1 are never proxied. +