Configure Mozilla Firefox to use system proxy settings

Before you begin

  1. Make sure that you distribute the trusted man-in-the-middle root Certificate Authority (CA) certificate to computers or TLS clients in your network.
  2. On Windows, configure Firefox to recognize the trusted root certificates that are in your enterprise Windows certificate store. For more information, see Enable enterprise trusted root certificates in Firefox. To apply this setting to Firefox browsers across your network, see Enable enterprise trusted root certificates across a network.

If you are setting up ETP Client as a local proxy on the user’s machine or you’ve set up proxy chaining, complete this procedure to configure Firefox to use the system proxy settings. As part of this process, you configure a JSON file and add it to the Firefox distribution directory. You can distribute this file with a patch or system management solution such as KACE.

How to

  1. Create a policies.json file. Do the following:
    {
        "policies":
        {
            "Proxy":
            {
                "Mode": "system",
                "Locked": true
            },
            "Certificates":
            {
                "ImportEnterpriseRoots": true
            }
        }
    }
    
  2. Save the file.
  3. If no distribution folder is available in the following locations, create one:
    1. On Windows: C:\Program Files\Mozilla Firefox\
      Note: This path is the default location where Firefox is installed on Windows 32-bit. This path may vary depending on the location where your organization installs Firefox.
    2. On Mac: Firefox.app/Contents/Resources/
  4. Place the JSON file in the distribution Firefox directory.
  5. Restart Firefox.
  6. Use your enterprise patch or system management solution such as Microsoft System Center Configuration Manager or KACE to distribute this update to Firefox browsers across your organization.