You are here: Network Composer User Guide V9 > Admin Tab > Configuration > Filter Options > SSL Certificates Tite > Windows Server 2008 Mozilla Firefox

Windows Server 2008 - Mozilla Firefox

The following steps will guide you through adding the Mozilla Firefox SSL Certificate Authority to the Default Domain Policy. When users log in to the system, the Group Policy Object will set their Firefox settings.


To install the Firefox SSL Certificate Authority

  1. From the Windows Server, select Start > Administrative Tools > Group Policy Management.


  1. From the tree structure, Double-click the Domain where you want to apply the Firefox SSL certificate.
  1. Double-click Group Policy Objects.
  2. Right-click Default Domain Policy.
  3. Select Edit.

  1. From the Group Policy Management Editor (GPME), do the following:
  1. Double-click User Configuration.
  2. Right-click Administrative Templates.
  3. Select Add/Remove Templates.


  1. From the Add/Remove Templates, click Add.


  1. From Policy Templates, browse to the folder where you saved the FirefoxADM files.
  1. Select firefoxdefaults.adm.
  2. Click Open.


  1. From Add/Remove Templates, the firefoxdefaults template appears in the list.


  1. From the GPME, select Default Domain Policy > User Configuration > Policies > Window Settings.
  1. Click Scripts (Logon/Logoff).
  2. In the right pane, double-click Logon.


  1. From Login Properties, click Add.

You are going to add the Firefox script, which applies default values to the Firefox template you just added to the Default Domain Policy.


  1. From Add a Script, click Browse.


  1. The Browse window opens.

This dialog automatically opens with the Logon folder in the drop down list. The Logon folder is a subfolder of the GUID policy folder.



Note: Your GUID number will be different than shown in the graphic as all GUIDs are unique numbers.


Important: This step requires that you keep the Browse window open (graphic below) while opening a new Explore window. Follow all steps to successfully install the SSL certificate files. You must complete Harvesting the SSL Certificate Files from Firefox before proceeding.

Follow the steps below to copy and paste the certificate .db files from the Explore window to the Browse window.

  1. Keep the Browse window open on your display.
  2. Open a new Explore window and browse to the folder where you saved the firefox_login.vbs file.
  1. Copy the firefox_login.vbs file from the Explore window, and paste it into the Browse window.

The file appears in the Browse dialog.


  1. The file appears in the Add a Script dialog. Click OK.


  1. From Logon Properties > Script tab, the Firefox script appears in the list.


  1. We recommend moving the .db files to the sysvol folder so that they reside within the policy GUID folder for the following reasons:
  1. Open Explore, and browse to the folder where you saved the .db files. See Extract the FirefoxADM Files 
  1. From GPME, select Default Domain Policy >User Configuration > Policies >Administrative Template > Classic Administrative Templates (ADM) > Mozilla Firefox Default Settings.

  1. From Firefox Certificates, do the following:
  1. Select Enabled.
  2. Set the location of the Master folder where the .db certificate files are stored. The directory location is the directory structure for the GUID Policy folder.
  3. Select Replace User’s Current Certificate Files, If Found from the drop-down list.
  4. Click OK.

  1. The Firefox certificate script is now added and enabled to the Default Domain Policy. You can configure other Mozilla Firefox settings by Double-clicking on any setting listed in the left pane.

For all other support issues or questions regarding FirefoxADM, see