Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Cuireadh an snáithe seo sa chartlann. Cuir ceist nua má tá cabhair uait.

Firefox 78 ESR cannot accept certificate exclusion for HSTS-enabled Website

  • 2 fhreagra
  • 1 leis an bhfadhb seo
  • 1 view
  • Freagra is déanaí ó any_mail

any_mail
any_mail
more options

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network.

Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely.

How to reenable possibility to add exceprion for hsts enabled websites?

Windows 7 Firefox ESR 78 Portable.

For now I downgraded to FF 68.

Hello, After upgrade FF ESR 68 -> ESR 78 i lost the possibility to connect to HSTS enabled websites (tested on duckduckgo.com and my nextcloud) on work network. Work network issue intermediate certificate and with FF 78 i am forced to install that zscaler certificate to make website work, I cannot accept that certificate temporarely. How to reenable possibility to add exceprion for hsts enabled websites? Windows 7 Firefox ESR 78 Portable. For now I downgraded to FF 68.
Attached screenshots

Athraithe ag any_mail ar

Réiteach roghnaithe

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Read this answer in context 👍 2

All Replies (2)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Réiteach Roghnaithe

It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate.

You can try to set security.enterprise_roots.enabled = true on the about:config page.

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

any_mail
any_mail Úinéir na ceiste
more options

cor-el said
It looks that you have other software installed on your computer that intercepts the connection and act as a man-in-the-middle. Firefox doesn't trust this certificate and you would have to install its root certificate. You can try to set security.enterprise_roots.enabled = true on the about:config page. You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Thak you. It work well.