Published Date : 15 Mar 2024
Content Ref: TEC9634581
Operating System
(none)
Part No
(none)
Summary
Covers how policies can be applied through on-premises Group Policy to the Firefox browser to allow SLO to work.
Procedure
Note: The instructions below will configure the required exemption for Mozilla Firefox on an Active Directory network to allow RM Unify Single Log Out to function correctly. They will guide you to create a policy object which applies to all computers on your Active Directory network. If you wish to position the policy elsewhere in your Active Directory structure, you may do so.
Check if you are using a Group Policy Central Store
Log on to a domain controller for the network you are updating.
Open an Administrative Windows® PowerShell® window and run the following command: Get-SmbShare -Name SYSVOL
Navigate to the path displayed in the command output.
Navigate to the 'FQDN.of.domain\Policies' folder. Note: Replace 'FQDN.of.domain' with the FQDN of the domain you are updating.
Check for the presence of a PolicyDefinitions folder.
If the folder exists, you are using a Central Policy Store. Please refer to the Central Policy Store Import section below.
If the folder does not exist, you are using a Decentralized Policy Store. Please refer to the Decentralized Policy Store section below.
Download the latest version of the 'policy_templates_vX.X.zip' file and save it to a location on the computer.
From the extracted files, copy the following items from the Windows folder to a domain controller for your network:
firefox.admx
mozilla.admx
en-US (folder)
Log on to the domain controller the files were copied to.
Copy the ADMX files and the 'en-US' folder to the PolicyDefinitions folder you located in the first section. Note: This only needs to be done on one domain controller. DFSR will replicate the files to other domain controllers automatically.
Continue to the 'Configure the Group Policy Object' section.
Download the latest version of the 'policy_templates_vX.X.zip' file and save it to a location on the computer.
From the extracted files, copy the following items from the Windows folder to all the domain controllers for your network:
firefox.admx
mozilla.admx
en-US (folder)
Log on to the domain controllers the files were copied to.
Copy the ADMX files and the 'en-US' folder to the 'C:\Windows\PolicyDefinitions' location. Note: The files must be copied to the PolicyDefinitions folder on all the domain controllers for the network.
Continue to the 'Configure the Group Policy Object' section.
Configure the Group Policy Object
Right-click Start and click Run.
Type gpmc.msc and press Enter.
Right-click the FQDN for your domain and click 'Create a GPO in this domain, and Link it here…'.
For the GPO, enter Firefox - RM Unify SLO Exemption and click OK.
Right-click the new GPO and click Edit.
Navigate to the 'Computer Configuration\Policies\Administrative Templates\Mozilla\Firefox\Tracking Protection' location.
Double-click the Exceptions setting.
Click the Enabled radio button and click Show.
In the Value column, click the text field and type the following address: https://sts.platform.rmunify.com.
Click OK.
Click OK in the Exceptions setting window.
Close the Group Policy Management Editor and Group Policy Management windows.
If this article has not helped provide a solution then it is also possible to
log a call...