I’d highly recommend you have a Group Policy Central Store setup as it makes managing this stuff a whole lot easier. Next is to get the Group Policy Definitions from Mozilla and load them onto your Active Directory Group Policy. Once you have your list of Extensions it should look like something similar to the below (I’ve removed the tracking string at the end). When you are at the add-on page, right-click on the Add to Firefox button and select Copy Link Location and save that for later. For our example, as mentioned we will be installing uBlock Origin, Privacy Badger and HTTPS everywhere. Visit the add-on store and start searching for what you’re after. Once Firefox is being deployed we need to get these extensions onto the machines, so the first part is getting the URLs of the extensions you wish to deploy. In our case, I used Config Manager and since we’re upgrading and I’ve setup a Supersedence rule like below.
There are much better guides than what I can fit in here so please Google if you’re unsure. The MSI should be in a network share accessible by all machines, you would then be imported either into Policies > Software Settings > Software installation for Group Policy (then Right-Click, New > Package) or an Application under the Software Library for Config Manager and pushed out. In a managed environment you’d either use Group Policy to deploy software or System Center Configuration Manager or some other form of MDM (ala InTune). If you are after the Extended Support Release (ESR), visit the FrontMotion download page (they also offer a number of other services such as a custom packager). Mozilla have now been building them for a shot while via their Enterprise Deployment Support page for beta and standard releases. To deploy Firefox (or any windows application), you generally want to use an MSI based installer (for better control and management). In this article I’ll go through setting up uBlock Origin, HTTPS Everywhere and Privacy Badger which are our go to Extensions for end-user protection.
Recently I learnt that Mozilla begun developing Group Policy Objects not long ago and that now allows for enterprise management straight into Firefox without the fuss. We’ve deployed Internal Root CAs using the CCK2 method to improve our user experience with Deep Packet SSL inspection however setting up configurations and extensions and having that consistent was a challenge.
So we’ve been deploying Firefox for quite a while pretty much everywhere we can however, only recently have we started standardising the deployments across the organisation’s that we manage.
0 kommentar(er)
