From: Michael Kaply <345868+mkaply@users.noreply.github.com>
Date: Mon, 21 Oct 2019 16:52:45 +0000 (-0500)
Subject: Merge pull request #461 from mozilla/70_updates
X-Git-Tag: v1.10~6
X-Git-Url: https://git.p6c8.net/policy-templates.git/commitdiff_plain/9387163a9b1dd93500867fcb3b33598b6d559e89?hp=8e01294f38f48ab1dda5a56d965d622d35a576e5
Merge pull request #461 from mozilla/70_updates
70 updates
---
diff --git a/README.md b/README.md
index 3da66d3..23e5939 100644
--- a/README.md
+++ b/README.md
@@ -59,8 +59,10 @@ Policies can be specified using the Group Policy templates on Windows (https://g
| **[`NewTabPage`](#newtabpage)** | Enable or disable the New Tab page.
| **[`NoDefaultBookmarks`](#nodefaultbookmarks)** | Disable the creation of default bookmarks.
| **[`OfferToSaveLogins`](#offertosavelogins)** | Control whether or not Firefox offers to save passwords.
+| **[`OfferToSaveLoginsDefault`](#offertosaveloginsdefault)** | Set the default value for whether or not Firefox offers to save passwords.
| **[`OverrideFirstRunPage`](#overridefirstrunpage)** | Override the first run page.
| **[`OverridePostUpdatePage`](#overridepostupdatepage)** | Override the upgrade page.
+| **[`PasswordManagerEnabled`](#passwordmanagerenabled)** | Remove (some) access to the password manager.
| **[`Permissions`](#permissions)** | Set permissions associated with camera, microphone, location, and notifications.
| **[`PopupBlocking`](#popupblocking)** | Configure the default pop-up window policy as well as origins for which pop-up windows are allowed.
| **[`Preferences`](#preferences)** | Set and lock some preferences.
@@ -115,9 +117,9 @@ Configure sites that support integrated authentication.
See https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication for more information.
-**Compatibility:** Firefox 60, Firefox ESR 60 (AllowNonFQDN added in 62/60.2)\
+**Compatibility:** Firefox 60, Firefox ESR 60 (AllowNonFQDN added in 62/60.2, AllowProxies added in 70/68.2)\
**CCK2 Equivalent:** N/A\
-**Preferences Affected:** `network.negotiate-auth.trusted-uris`, `network.negotiate-auth.delegation-uris`, `network.automatic-ntlm-auth.trusted-uris`, `network.automatic-ntlm-auth.allow-non-fqdn`, `network.negotiate-auth.allow-non-fqdn`
+**Preferences Affected:** `network.negotiate-auth.trusted-uris`,`network.negotiate-auth.delegation-uris`,`network.automatic-ntlm-auth.trusted-uris`,`network.automatic-ntlm-auth.allow-non-fqdn`,`network.negotiate-auth.allow-non-fqdn`,`network.automatic-ntlm-auth.allow-proxies`,`network.negotiate-auth.allow-proxies`
#### Windows
```
@@ -129,6 +131,8 @@ Software\Policies\Mozilla\Firefox\Authentication\NTLM\1 = "mydomain.com"
Software\Policies\Mozilla\Firefox\Authentication\NTLM\2 = "https://myotherdomain.com"
Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\SPNEGO = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\NTLM = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\SPNEGO = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\Authentication\AllowProxies\NTLM = 0x1 | 0x0
```
#### macOS
```
@@ -157,6 +161,13 @@ Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\NTLM = 0x1 | 0x0
NTLM
|
+ AllowProxies
+
+ SPNEGO
+ |
+ NTLM
+ |
+
```
@@ -171,6 +182,10 @@ Software\Policies\Mozilla\Firefox\Authentication\AllowNonFQDN\NTLM = 0x1 | 0x0
"AllowNonFQDN": {
"SPNEGO": true | false,
"NTLM": true | false
+ },
+ "AllowProxies": {
+ "SPNEGO": true | false,
+ "NTLM": true | false
}
}
}
@@ -1240,14 +1255,20 @@ If `Value` is set to false, tracking protection is disabled and locked in both t
If `Value` is set to true, tracking protection is enabled by default in both the regular browser and private browsing and the `Locked` value determines whether or not a user can change it.
-**Compatibility:** Firefox 60, Firefox ESR 60\
+If `Cryptomining` is set to true, cryptomining scripts on websites are blocked.
+
+If `Fingerprinting` is set to true, fingerprinting scripts on websites are blocked.
+
+**Compatibility:** Firefox 60, Firefox ESR 60 (Cryptomining and Fingerprinting added in 70/68.2)\
**CCK2 Equivalent:** `dontCheckDefaultBrowser`\
-**Preferences Affected:** `privacy.trackingprotection.enabled`,`privacy.trackingprotection.pbmode.enabled`
+**Preferences Affected:** `privacy.trackingprotection.enabled`,`privacy.trackingprotection.pbmode.enabled`,`privacy.trackingprotection.cryptomining.enabled`,`privacy.trackingprotection.fingerprinting.enabled`
#### Windows
```
Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Value = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Locked = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Cryptomining = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Fingerprinting = 0x1 | 0x0
```
#### macOS
```
@@ -1256,9 +1277,12 @@ Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Locked = 0x1 | 0x0
Value
|
-
|
+
+ |
+
+ |
```
@@ -1268,7 +1292,9 @@ Software\Policies\Mozilla\Firefox\EnableTrackingProtection\Locked = 0x1 | 0x0
"policies": {
"EnableTrackingProtection": {
"Value": [true, false],
- "Locked": [true, false]
+ "Locked": [true, false],
+ "Cryptomining": [true, false],
+ "Fingerprinting": [true, false]
}
}
```
@@ -1824,6 +1850,32 @@ Software\Policies\Mozilla\Firefox\OfferToSaveLogins = 0x1 | 0x0
}
}
```
+### OfferToSaveLoginsDefault
+Sets the default value of signon.rememberSignons without locking it.
+
+**Compatibility:** Firefox 70, Firefox ESR 60.2\
+**CCK2 Equivalent:** `dontRememberPasswords`\
+**Preferences Affected:** `signon.rememberSignons`
+
+#### Windows
+```
+Software\Policies\Mozilla\Firefox\OfferToSaveLoginsDefault = 0x1 | 0x0
+```
+#### macOS
+```
+
+ OfferToSaveLoginsDefault
+ |
+
+```
+#### JSON
+```
+{
+ "policies": {
+ "OfferToSaveLoginsDefault": true | false
+ }
+}
+```
### OverrideFirstRunPage
Override the first run page. If the value is blank, no first run page is displayed.
@@ -1874,6 +1926,32 @@ Software\Policies\Mozilla\Firefox\OverridePostUpdatePage = "http://example.org"
"OverridePostUpdatePage": "http://example.org"
}
```
+### PasswordManagerEnabled
+Remove access to the password manager via preferences and blocks about:logins on Firefox 70.
+
+**Compatibility:** Firefox 70, Firefox ESR 60.2\
+**CCK2 Equivalent:** N/A\
+**Preferences Affected:** `prefs.privacy.disable_button.view_passwords`
+
+#### Windows
+```
+Software\Policies\Mozilla\Firefox\PasswordManagerEnabled = 0x1 | 0x0
+```
+#### macOS
+```
+
+ PasswordManagerEnabled
+ |
+
+```
+#### JSON
+```
+{
+ "policies": {
+ "PasswordManagerEnabled": true | false
+ }
+}
+```
### Permissions
Set permissions associated with camera, microphone, location, and notifications
@@ -2068,53 +2146,85 @@ Set and lock certain preferences.
| Preference | Type | Compatibility | Default
| --- | --- | --- | ---
-| app.update.auto | boolean | Firefox 68, Firefox 68 ESR | true
+| accessibility.force_disabled | integer | Firefox 70, Firefox ESR 6.2 | 0
+| If set to 1, platform accessibility is disabled.
+| app.update.auto | boolean | Firefox 68, Firefox ESR 68 | true
| If false, Firefox doesn't automatically install update.
-| browser.cache.disk.enable | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.bookmarks.autoExportHTML | boolean | Firefox 70, Firefox ESR 6.2 | false
+| If true, bookmarks are exported on shutdown.
+| browser.bookmarks.file | string | Firefox 70, Firefox ESR 6.2 | N/A
+| If set, the name of the file where bookmarks are exported and imported.
+| browser.bookmarks.restore_default_bookmarks | string | Firefox 70, Firefox ESR 6.2 | N/A
+| If true, bookmarks are restored to their defaults.
+| browser.cache.disk.enable | boolean | Firefox 68, Firefox ESR 68 | true
| If false, don't store cache on the hard drive.
-| browser.cache.disk.parent_directory | string | Firefox 68, Firefox 68 ESR | Profile temporary directory
+| browser.cache.disk.parent_directory | string | Firefox 68, Firefox ESR 68 | Profile temporary directory
| If set, changes the location of the disk cache.
-| browser.fixup.dns_first_for_single_words | boolean | Firefox 68, Firefox 68 ESR | false
+| browser.fixup.dns_first_for_single_words | boolean | Firefox 68, Firefox ESR 68 | false
| If true, single words are sent to DNS, not directly to search.
-| browser.search.update | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.places.importBookmarksHTML | string | Firefox 70, Firefox ESR 6.2
+| If true, bookmarks are always imported on startup.
+| browser.safebrowsing.phishing.enabled | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, phishing protection is not enabled (Not recommended)
+| browser.safebrowsing.malware.enabled | string | Firefox 70, Firefox ESR 6.2 | true
+| IF false, malware protection is not enabled (Not recommended)
+| browser.search.update | boolean | Firefox 68, Firefox ESR 68 | true
| If false, updates for search engines are not checked.
-| browser.tabs.warnOnClose | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.slowStartup.notificationDisabled | string | Firefox 70, Firefox ESR 6.2 | false
+| If true, a notification isn't shown if startup is slow.
+| browser.tabs.warnOnClose | boolean | Firefox 68, Firefox ESR 68 | true
| If false, there is no warning when the browser is closed.
-| browser.urlbar.suggest.bookmark | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.taskbar.previews.enable | string | Firefox 70, Firefox ESR 6.2 (Windows only) | false
+| If true, tab previews are shown in the Windows taskbar.
+| browser.urlbar.suggest.bookmark | boolean | Firefox 68, Firefox ESR 68 | true
| If false, bookmarks aren't suggested when typing in the URL bar.
-| browser.urlbar.suggest.history | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.urlbar.suggest.history | boolean | Firefox 68, Firefox ESR 68 | true
| If false, history isn't suggested when typing in the URL bar.
-| browser.urlbar.suggest.openpage | boolean | Firefox 68, Firefox 68 ESR | true
+| browser.urlbar.suggest.openpage | boolean | Firefox 68, Firefox ESR 68 | true
| If false, open tabs aren't suggested when typing in the URL bar.
-| datareporting.policy.dataSubmissionPolicyBypassNotification | boolean | Firefox 68, Firefox 68 ESR | false
+| datareporting.policy.dataSubmissionPolicyBypassNotification | boolean | Firefox 68, Firefox ESR 68 | false
| If true, don't show the privacy policy tab on first run.
-| dom.disable_window_flip | boolean | Firefox 68, Firefox 68 ESR | true
+| dom.allow_scripts_to_close_windows | string | Firefox 70, Firefox ESR 6.2 | false
+| If false, web page can close windows.
+| dom.disable_window_flip | boolean | Firefox 68, Firefox ESR 68 | true
| If false, web pages can focus and activate windows.
-| dom.disable_window_move_resize | boolean | Firefox 68, Firefox 68 ESR | false
+| dom.disable_window_move_resize | boolean | Firefox 68, Firefox ESR 68 | false
| If true, web pages can't move or resize windows.
-| dom.event.contextmenu.enabled | boolean | Firefox 68, Firefox 68 ESR | true
+| dom.event.contextmenu.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, web pages can't override context menus.
-| dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl | string | Firefox 68, Firefox 68 ESR | N/A
+| dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl | string | Firefox 68, Firefox ESR 68 | N/A
| See https://support.mozilla.org/en-US/kb/dom-events-changes-introduced-firefox-66
-| dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl | string | Firefox 68, Firefox 68 ESR | N/A
+| dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl | string | Firefox 68, Firefox ESR 68 | N/A
| See https://support.mozilla.org/en-US/kb/dom-events-changes-introduced-firefox-66
-| extensions.getAddons.showPane | boolean | Firefox 68, Firefox 68 ESR | N/A
+| extensions.blocklist.enabled | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, the extensions blocklist is not used (Not recommended)
+| extensions.getAddons.showPane | boolean | Firefox 68, Firefox ESR 68 | N/A
| If false, the Recommendations tab is not displayed in the Add-ons Manager.
-| media.gmp-gmpopenh264.enabled | boolean | Firefox 68, Firefox 68 ESR | true
+| geo.enabled | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, the geolocation API is disabled. | Language dependent
+| intl.accept_languages | string | Firefox 70, Firefox ESR 6.2
+| If set, preferred language for web pages.
+| media.eme.enabled | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, Encrypted Media Extensions are not enabled.
+| media.gmp-gmpopenh264.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the OpenH264 plugin is not downloaded.
-| media.gmp-widevinecdm.enabled | boolean | Firefox 68, Firefox 68 ESR | true
+| media.gmp-widevinecdm.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the Widevine plugin is not downloaded.
-| network.dns.disableIPv6 | boolean | Firefox 68, Firefox 68 ESR | false
+| network.dns.disableIPv6 | boolean | Firefox 68, Firefox ESR 68 | false
| If true, IPv6 DNS lokoups are disabled.
-| network.IDN_show_punycode | boolean | Firefox 68, Firefox 68 ESR | false
+| network.IDN_show_punycode | boolean | Firefox 68, Firefox ESR 68 | false
| If true, display the punycode version of internationalized domain names.
-| places.history.enabled | boolean | Firefox 68, Firefox 68 ESR | true
+| places.history.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, history is not enabled.
-| security.default_personal_cert | string | Firefox 68, Firefox 68 ESR | Ask Every Time
+| print.save_print_settings | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, print settings are not saved between jobs.
+| security.default_personal_cert | string | Firefox 68, Firefox ESR 68 | Ask Every Time
| If set to Select Automatically, Firefox automatically chooses the default personal certificate.
-| security.ssl.errorReporting.enabled | boolean | Firefox 68, Firefox 68 ESR | true
+| security.mixed_content.block_active_content | string | Firefox 70, Firefox ESR 6.2 | true
+| If false, mixed active content (HTTP and HTTPS) is not blocked.
+| security.ssl.errorReporting.enabled | boolean | Firefox 68, Firefox ESR 68 | true
| If false, SSL errors cannot be sent to Mozilla.
-| ui.key.menuAccessKeyFocuses | boolean | Firefox 68, Firefox 68 ESR | true
+| ui.key.menuAccessKeyFocuses | boolean | Firefox 68, Firefox ESR 68 | true
| If false, the Alt key doesn't show the menubar on Windows.
#### Windows
```
diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 7d0bcad..178d687 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -30,6 +30,13 @@
NTLM
+ AllowProxies
+
+ SPNEGO
+
+ NTLM
+
+
BlockAboutAddons
@@ -165,6 +172,10 @@
Locked
+ Cryptomining
+
+ Fingerprinting
+
Extensions
@@ -272,10 +283,14 @@
OfferToSaveLogins
+ OfferToSaveLoginsDefault
+
OverrideFirstRunPage
https://www.example.com
OverridePostUpdatePage
+ PasswordManagerEnabled
+
Permissions
Camera
diff --git a/windows/de-DE/firefox.adml b/windows/de-DE/firefox.adml
index d5a96a4..9f53802 100644
--- a/windows/de-DE/firefox.adml
+++ b/windows/de-DE/firefox.adml
@@ -1,10 +1,11 @@
-
+
Microsoft Windows XP SP2 oder höher
+ No longer supported.
Firefox 60 oder höher, Firefox 60 ESR oder höher
Firefox 62 oder höher, Firefox 60.2 ESR oder höher
Firefox 63 oder höher
@@ -61,6 +62,10 @@ Für weitere Informationen, besuchen Sie https://developer.mozilla.org/en-US/doc
Wenn diese Richtlinieneinstellung aktiviert ist, werden SPNEGO und NTLM auf Nicht-FQDN (Fully Qualified Domain Name) Adressen aktiviert sein.
Wenn diese Richtlinieneinstellung deaktiviert oder nicht konfiguriert ist, sind NTLM und SPNEGO auf Nicht-FQDN Adressen nicht aktiviert.
+ Allow Proxies
+ If this disabled, SPNEGO and NTLM will not authenticate with proxy servers.
+
+If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies.
Zugriff auf Add-ons Manager verhindern
Wenn Sie die Richtlinieneinstellung aktivieren, können Benutzer nicht auf den Add-on Manager oder about:addons zugreifen.
@@ -553,34 +558,65 @@ Wenn Sie die Richtlinieneinstellung deaktivieren oder nicht konfigurieren, verwe
- Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf true gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, ist die Einstellung auf false gesperrt.
- Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf den spezifizierten String-Wert gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, hat sie keinen Effekt.
- Wenn diese Richtlinieneinstellung aktiviert ist, ist sie auf den spezifizierten Wert gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, hat sie keinen Effekt.
+ Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf true gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, ist die Einstellung auf false gesperrt.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf den spezifizierten String-Wert gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, hat sie keinen Effekt.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Wenn diese Richtlinieneinstellung aktiviert ist, ist sie auf den spezifizierten Wert gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, hat sie keinen Effekt.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ This preference is no longer support on Windows. We are investigating creating a policy.
+ Auto (0)
+ Always Off (1)
Jedes Mal nachfragen
Automatisch auswählen
- app.update.auto
+ accessibility.force_disabled
+ app.update.auto (Deprecated)
+ browser.bookmarks.autoExportHTML
+ browser.bookmarks.file
+ browser.bookmarks.restore_default_bookmarks
browser.cache.disk.enable
browser.fixup.dns_first_for_single_words
+ browser.places.importBookmarksHTML
+ browser.safebrowsing.phishing.enabled
+ browser.safebrowsing.malware.enabled
browser.search.update
browser.tabs.warnOnClose
browser.cache.disk.parent_directory
+ browser.slowStartup.notificationDisabled
+ browser.taskbar.previews.enable
browser.urlbar.suggest.bookmark
browser.urlbar.suggest.history
browser.urlbar.suggest.openpage
datareporting.policy.dataSubmissionPolicyBypassNotification
+ dom.allow_scripts_to_close_windows
browser.dom.disable_window_flip
dom.disable_window_move_resize
dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl
dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl
+ extensions.blocklist.enabled
+ geo.enabled
extensions.getAddons.showPane
+ intl.accept_languages
+ media.eme.enabled
media.gmp-gmpopenh264.enabled
media.gmp-widevinecdm.enabled
network.dns.disableIPv6
network.IDN_show_punycode
places.history.enabled
+ print.save_print_settings
security.default_personal_cert
security.ssl.errorReporting.enabled
+ security.mixed_content.block_active_content
@@ -596,6 +632,10 @@ Wenn diese Richtlinieneinstellung deaktiviert oder nicht konfiguriert ist, wird
Always allow NTLM on non FQDNs
Always allow SPNEGO on non FQDNs
+
+ Allow NTLM to automatically authenticate with proxy servers
+ Allow SPNEGO to automatically authenticate with proxy servers
+
@@ -758,6 +798,9 @@ Wenn diese Richtlinieneinstellung deaktiviert oder nicht konfiguriert ist, wird
+
+
+
diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml
index bcc9dca..43d4ffb 100644
--- a/windows/en-US/firefox.adml
+++ b/windows/en-US/firefox.adml
@@ -1,10 +1,11 @@
-
+
Microsoft Windows XP SP2 or later
+ No longer supported.
Firefox 60 or later, Firefox 60 ESR or later
Firefox 62 or later, Firefox 60.2 ESR or later
Firefox 63 or later
@@ -58,9 +59,13 @@ If this policy is disabled or not configured, no websites are trusted to use NTL
For more information, see https://developer.mozilla.org/en-US/docs/Mozilla/Integrated_authentication.
Allow Non FQDN
- If this policy is enabled, you can always allow SPNEGO or NTLM on non FQDNs (fully qualified domain names).
+ If this policy is enabled (and the checkboxes are checked), you can always allow SPNEGO or NTLM on non FQDNs (fully qualified domain names).
If this policy is disabled or not configured, NTLM and SPNEGO are not enabled on non FQDNs.
+ Allow Proxies
+ If this disabled, SPNEGO and NTLM will not authenticate with proxy servers.
+
+If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies.
Block Add-ons Manager
If this policy is enabled, the user cannot access the Add-ons Manager or about:addons.
@@ -553,34 +558,65 @@ If this policy is disabled or not configured, Firefox defaults to a maximum of T
- If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
- If this policy is enabled, the preference is locked to the string entered. If this policy is disabled, it has no effect.
- If this policy is enabled, the preference is locked to the value selected. If this policy is disabled, it has no effect.
+ If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ If this policy is enabled, the preference is locked to the string entered. If this policy is disabled, it has no effect.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ If this policy is enabled, the preference is locked to the value selected. If this policy is disabled, it has no effect.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
+ This preference is no longer support on Windows. We are investigating creating a policy.
+ Auto (0)
+ Always Off (1)
Ask Every Time
Select Automatically
- app.update.auto
+ accessibility.force_disabled
+ app.update.auto (Deprecated)
+ browser.bookmarks.autoExportHTML
+ browser.bookmarks.file
+ browser.bookmarks.restore_default_bookmarks
browser.cache.disk.enable
browser.fixup.dns_first_for_single_words
+ browser.places.importBookmarksHTML
+ browser.safebrowsing.phishing.enabled
+ browser.safebrowsing.malware.enabled
browser.search.update
browser.tabs.warnOnClose
browser.cache.disk.parent_directory
+ browser.slowStartup.notificationDisabled
+ browser.taskbar.previews.enable
browser.urlbar.suggest.bookmark
browser.urlbar.suggest.history
browser.urlbar.suggest.openpage
datareporting.policy.dataSubmissionPolicyBypassNotification
+ dom.allow_scripts_to_close_windows
browser.dom.disable_window_flip
dom.disable_window_move_resize
dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl
dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl
+ extensions.blocklist.enabled
+ geo.enabled
extensions.getAddons.showPane
+ intl.accept_languages
+ media.eme.enabled
media.gmp-gmpopenh264.enabled
media.gmp-widevinecdm.enabled
network.dns.disableIPv6
network.IDN_show_punycode
places.history.enabled
+ print.save_print_settings
security.default_personal_cert
security.ssl.errorReporting.enabled
+ security.mixed_content.block_active_content
@@ -596,6 +632,10 @@ If this policy is disabled or not configured, no menuitem is added.
Always allow NTLM on non FQDNs
Always allow SPNEGO on non FQDNs
+
+ Allow NTLM to automatically authenticate with proxy servers
+ Allow SPNEGO to automatically authenticate with proxy servers
+
@@ -758,6 +798,9 @@ If this policy is disabled or not configured, no menuitem is added.
+
+
+
diff --git a/windows/es-ES/firefox.adml b/windows/es-ES/firefox.adml
index 0124e17..d4e10ed 100644
--- a/windows/es-ES/firefox.adml
+++ b/windows/es-ES/firefox.adml
@@ -1,10 +1,11 @@
-
+
Microsoft Windows XP SP2 o posterior
+ No longer supported.
Firefox 60 o posterior, Firefox 60 ESR o posterior
Firefox 62 o posterior, Firefox 60.2 ESR o posterior
Firefox 63 o posterior
@@ -61,6 +62,10 @@ Para más información, visite https://developer.mozilla.org/en-US/docs/Mozilla/
Si esta polÃtica está habilitada, siempre podrá permitir SPNEGO o NTLM que no sean FQDN (nombres de dominio totalmente calificados).
Si esta polÃtica está deshabilitada o no está configurada, NTLM y SPNEGO no están habilitados en que no sean FQDN.
+ Allow Proxies
+ If this disabled, SPNEGO and NTLM will not authenticate with proxy servers.
+
+If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies.
Bloquear el administrador de complementos
Si esta polÃtica está habilitada, el usuario no podrá acceder al administrador de complementos o en about:addons.
@@ -553,34 +558,65 @@ Si esta polÃtica está deshabilitada o no está configurada, Firefox establecer
- Si esta polÃtica está habilitada, la preferencia se bloquea en true. Si esta polÃtica está deshabilitada, la preferencia está bloqueada en false.
- Si esta polÃtica está habilitada, la preferencia se bloquea en la cadena ingresada. Si esta polÃtica está deshabilitada, no tiene ningún efecto.
- Si esta polÃtica está habilitada, la preferencia se bloquea al valor seleccionado. Si esta polÃtica está deshabilitada, no tiene ningún efecto.
+ Si esta polÃtica está habilitada, la preferencia se bloquea en true. Si esta polÃtica está deshabilitada, la preferencia está bloqueada en false.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Si esta polÃtica está habilitada, la preferencia se bloquea en la cadena ingresada. Si esta polÃtica está deshabilitada, no tiene ningún efecto.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Si esta polÃtica está habilitada, la preferencia se bloquea al valor seleccionado. Si esta polÃtica está deshabilitada, no tiene ningún efecto.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ This preference is no longer support on Windows. We are investigating creating a policy.
+ Auto (0)
+ Always Off (1)
Preguntar siempre
Seleccionar automáticamente
- app.update.auto
+ accessibility.force_disabled
+ app.update.auto (Deprecated)
+ browser.bookmarks.autoExportHTML
+ browser.bookmarks.file
+ browser.bookmarks.restore_default_bookmarks
browser.cache.disk.enable
browser.fixup.dns_first_for_single_words
+ browser.places.importBookmarksHTML
+ browser.safebrowsing.phishing.enabled
+ browser.safebrowsing.malware.enabled
browser.search.update
browser.tabs.warnOnClose
browser.cache.disk.parent_directory
+ browser.slowStartup.notificationDisabled
+ browser.taskbar.previews.enable
browser.urlbar.suggest.bookmark
browser.urlbar.suggest.history
browser.urlbar.suggest.openpage
datareporting.policy.dataSubmissionPolicyBypassNotification
+ dom.allow_scripts_to_close_windows
browser.dom.disable_window_flip
dom.disable_window_move_resize
dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl
dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl
+ extensions.blocklist.enabled
+ geo.enabled
extensions.getAddons.showPane
+ intl.accept_languages
+ media.eme.enabled
media.gmp-gmpopenh264.enabled
media.gmp-widevinecdm.enabled
network.dns.disableIPv6
network.IDN_show_punycode
places.history.enabled
+ print.save_print_settings
security.default_personal_cert
security.ssl.errorReporting.enabled
+ security.mixed_content.block_active_content
@@ -596,6 +632,10 @@ Si esta polÃtica está deshabilitada o no está configurada, no se añadirá ni
Permitir siempre NTLM que no sean FQDN
Permitir siempre SPNEGO que no sean FQDN
+
+ Allow NTLM to automatically authenticate with proxy servers
+ Allow SPNEGO to automatically authenticate with proxy servers
+
@@ -758,6 +798,9 @@ Si esta polÃtica está deshabilitada o no está configurada, no se añadirá ni
+
+
+
diff --git a/windows/firefox.admx b/windows/firefox.admx
index 7e9599e..74bd675 100644
--- a/windows/firefox.admx
+++ b/windows/firefox.admx
@@ -1,12 +1,13 @@

-
+
-
+
+
@@ -117,6 +118,28 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
@@ -2538,9 +2561,54 @@
-
+
-
+
+
+
+ -
+
+
+
+
+ -
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
@@ -2568,6 +2636,46 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
@@ -2588,6 +2696,16 @@
+
+
+
+
+
+
+
+
+
+
@@ -2628,6 +2746,16 @@
+
+
+
+
+
+
+
+
+
+
@@ -2658,6 +2786,16 @@
+
+
+
+
+
+
+
+
+
+
@@ -2668,6 +2806,33 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
@@ -2718,6 +2883,26 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
@@ -2738,21 +2923,21 @@
-
+
-
+
-
+
diff --git a/windows/fr-FR/firefox.adml b/windows/fr-FR/firefox.adml
index a2c23e3..e4ddd99 100644
--- a/windows/fr-FR/firefox.adml
+++ b/windows/fr-FR/firefox.adml
@@ -1,10 +1,11 @@
-
+
Microsoft Windows XP SP2 ou supérieur
+ No longer supported.
Firefox 60 ou supérieur, Firefox 60 ESR ou supérieur
Firefox 62 ou supérieur, Firefox 60.2 ESR ou supérieur
Firefox 63 ou supérieur
@@ -61,6 +62,10 @@ Pour plus d'informations, voir https://developer.mozilla.org/en-US/docs/Mozilla/
Si cette stratégie est activée, vous pouvez toujours autoriser SPNEGO ou NTLM sur des noms de domaine autres que FQDN.
Si cette stratégie est désactivée ou non configurée, NTLM et SPNEGO ne sont pas activés sur des noms de domaine autres que le nom de domaine complet.
+ Allow Proxies
+ If this disabled, SPNEGO and NTLM will not authenticate with proxy servers.
+
+If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies.
Gestion de modules Add-ons
Si cette stratégie est activée, l'utilisateur ne peut pas accéder au gestionnaire de modules complémentaires ou aux modules add:.
@@ -553,34 +558,65 @@ Si cette stratégie est désactivée ou non configurée, Firefox utilise par dé
- If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
- If this policy is enabled, the preference is locked to the string entered. If this policy is disabled, it has no effect.
- If this policy is enabled, the preference is locked to the value selected. If this policy is disabled, it has no effect.
+ If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ If this policy is enabled, the preference is locked to the string entered. If this policy is disabled, it has no effect.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ If this policy is enabled, the preference is locked to the value selected. If this policy is disabled, it has no effect.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ This preference is no longer support on Windows. We are investigating creating a policy.
+ Auto (0)
+ Always Off (1)
Ask Every Time
Select Automatically
- app.update.auto
+ accessibility.force_disabled
+ app.update.auto (Deprecated)
+ browser.bookmarks.autoExportHTML
+ browser.bookmarks.file
+ browser.bookmarks.restore_default_bookmarks
browser.cache.disk.enable
browser.fixup.dns_first_for_single_words
+ browser.places.importBookmarksHTML
+ browser.safebrowsing.phishing.enabled
+ browser.safebrowsing.malware.enabled
browser.search.update
browser.tabs.warnOnClose
browser.cache.disk.parent_directory
+ browser.slowStartup.notificationDisabled
+ browser.taskbar.previews.enable
browser.urlbar.suggest.bookmark
browser.urlbar.suggest.history
browser.urlbar.suggest.openpage
datareporting.policy.dataSubmissionPolicyBypassNotification
+ dom.allow_scripts_to_close_windows
browser.dom.disable_window_flip
dom.disable_window_move_resize
dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl
dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl
+ extensions.blocklist.enabled
+ geo.enabled
extensions.getAddons.showPane
+ intl.accept_languages
+ media.eme.enabled
media.gmp-gmpopenh264.enabled
media.gmp-widevinecdm.enabled
network.dns.disableIPv6
network.IDN_show_punycode
places.history.enabled
+ print.save_print_settings
security.default_personal_cert
security.ssl.errorReporting.enabled
+ security.mixed_content.block_active_content
@@ -596,6 +632,10 @@ If this policy is disabled or not configured, no menuitem is added.
Toujours autoriser NTLM sur des noms de domaine autres que FQDN
Toujours autoriser SPNEGO sur des noms de domaine autres que FQDN
+
+ Allow NTLM to automatically authenticate with proxy servers
+ Allow SPNEGO to automatically authenticate with proxy servers
+
@@ -758,6 +798,9 @@ If this policy is disabled or not configured, no menuitem is added.
+
+
+
diff --git a/windows/it-IT/firefox.adml b/windows/it-IT/firefox.adml
index 6495b2d..d8e6232 100644
--- a/windows/it-IT/firefox.adml
+++ b/windows/it-IT/firefox.adml
@@ -1,10 +1,11 @@
-
+
Microsoft Windows XP SP2 o versione successiva
+ No longer supported.
Firefox 60 o versione successiva, Firefox 60 ESR o versione successiva
Firefox 62 o versione successiva, Firefox 60.2 ESR o versione successiva
Firefox 63 o versione successiva
@@ -61,6 +62,10 @@ Per ulteriori informazioni, vedi https://developer.mozilla.org/en-US/docs/Mozill
Se questo criterio è abilitato, è sempre possibile consentire SPNEGO o NTLM su nomi non FQDN (nomi di dominio completamente qualificati).
Se questo criterio è disabilitato o non configurato, NTLM e SPNEGO non sono abilitati su nomi non FQDN.
+ Allow Proxies
+ If this disabled, SPNEGO and NTLM will not authenticate with proxy servers.
+
+If this policy is enabled (and the checkboxes are checked) or not configured, NTLM and SPNEGO will always authenticate with proxies.
Blocca Gestore componenti aggiuntivi
Se questo criterio è abilitato, l'utente non può accedere al Gestore componenti aggiuntivi o ad about:addons.
@@ -553,34 +558,65 @@ Se questo criterio è disabilitato o non configurato, per impostazione predefini
- Se questo criterio è abilitato, la preferenza è impostata a Vero e resa non modificabile. Se questo criterio è disabilitato, la preferenza è impostata a Falso e resa non modificabile.
- Se questo criterio è abilitato, la preferenza è impostata alla stringa immessa e resa non modificabile. Se questo criterio è disabilitato, non avrà effetto.
- Se questo criterio è abilitato, la preferenza è impostata al valore selezionato e resa non modificabile. Se questo criterio è disabilitato, non avrà effetto.
+ Se questo criterio è abilitato, la preferenza è impostata a Vero e resa non modificabile. Se questo criterio è disabilitato, la preferenza è impostata a Falso e resa non modificabile.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Se questo criterio è abilitato, la preferenza è impostata alla stringa immessa e resa non modificabile. Se questo criterio è disabilitato, non avrà effetto.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ Se questo criterio è abilitato, la preferenza è impostata al valore selezionato e resa non modificabile. Se questo criterio è disabilitato, non avrà effetto.
+
+For a description of the preference, see:
+
+https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+ This preference is no longer support on Windows. We are investigating creating a policy.
+ Auto (0)
+ Always Off (1)
Chiedi ogni volta
Seleziona automaticamente
- app.update.auto
+ accessibility.force_disabled
+ app.update.auto (Deprecated)
+ browser.bookmarks.autoExportHTML
+ browser.bookmarks.file
+ browser.bookmarks.restore_default_bookmarks
browser.cache.disk.enable
browser.fixup.dns_first_for_single_words
+ browser.places.importBookmarksHTML
+ browser.safebrowsing.phishing.enabled
+ browser.safebrowsing.malware.enabled
browser.search.update
browser.tabs.warnOnClose
browser.cache.disk.parent_directory
+ browser.slowStartup.notificationDisabled
+ browser.taskbar.previews.enable
browser.urlbar.suggest.bookmark
browser.urlbar.suggest.history
browser.urlbar.suggest.openpage
datareporting.policy.dataSubmissionPolicyBypassNotification
+ dom.allow_scripts_to_close_windows
browser.dom.disable_window_flip
dom.disable_window_move_resize
dom.keyboardevent.keypress.hack.dispatch_non_printable_keys.addl
dom.keyboardevent.keypress.hack.use_legacy_keycode_and_charcode.addl
+ extensions.blocklist.enabled
+ geo.enabled
extensions.getAddons.showPane
+ intl.accept_languages
+ media.eme.enabled
media.gmp-gmpopenh264.enabled
media.gmp-widevinecdm.enabled
network.dns.disableIPv6
network.IDN_show_punycode
places.history.enabled
+ print.save_print_settings
security.default_personal_cert
security.ssl.errorReporting.enabled
+ security.mixed_content.block_active_content
@@ -596,6 +632,10 @@ Se questo criterio è disabilitato o non configurato, non sarà aggiunta nessuna
Consenti sempre NTLM su nomi di dominio non completamente qualificati
Consenti sempre SPNEGO su nomi di dominio non completamente qualificati
+
+ Allow NTLM to automatically authenticate with proxy servers
+ Allow SPNEGO to automatically authenticate with proxy servers
+
@@ -758,6 +798,9 @@ Se questo criterio è disabilitato o non configurato, non sarà aggiunta nessuna
+
+
+