Hello,
do you have any ideas on how to enhance the config-for-firefox package to automatically import a CA into Firefox?
Currently, we manually import our .crt file via Certificates > Authorities > Import
with the "Confirm this CA to identify..." option checked.
We could implement a procedure for Firefox users, but if we could use WAPT for this, that would be fantastic.
Thanks in advance
[SOLVED] Importing a Firefox Certificate Authority
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Good morning,
To my knowledge, you can't add a global certificate authority for Firefox without recompiling it...
However, it is possible to add it to the user's Firefox profile as long as that profile exists (i.e., Firefox has been launched once by the user).
The tool to use is called NSS Certutil (which is not the same as Microsoft's)
https://developer.mozilla.org/fr/docs/M ... s_certutil
In the Wapt package, during installation you can copy NSS Certutil and the authority certificates into a common directory.
And in the session-setup function, you can import the certificates with the command
To my knowledge, you can't add a global certificate authority for Firefox without recompiling it...
However, it is possible to add it to the user's Firefox profile as long as that profile exists (i.e., Firefox has been launched once by the user).
The tool to use is called NSS Certutil (which is not the same as Microsoft's)
https://developer.mozilla.org/fr/docs/M ... s_certutil
In the Wapt package, during installation you can copy NSS Certutil and the authority certificates into a common directory.
And in the session-setup function, you can import the certificates with the command
Code: Select all
<chemin vers répertoire certutil>\certutil.exe -A -n "<nom du certificat>" -t "C,," -d "<répertoire profil utilisateur firefox>" -i "<chemin vers le certificat>"Tranquil IT
