Creating an MDM configuration profile to support monitoring in Mozilla Firefox and enable Outlook Web Access monitoring on macOS endpoints
The following instructions describe the process of creating an MDM configuration profile to deploy the new Mozilla Firefox extension as well as a signed certificate to enable Outlook Web Access monitoring in Firefox on macOS endpoints. For illustration purposes, the instructions assume that you plan to deploy the extension using Jamf, an IT management application. The browser extension is supported only on Mozilla Firefox 64.0 and later versions.
Before you begin, make sure that you have completed the following steps:
- Create a browser policy (.plistfile) which you can upload to Jamf. Mozilla provides a template that you can use to define policies for the Firefox browser.For more information about Firefox policy templates, see https://github.com/mozilla/policy-templates/blob/master/README.md.To download the policy template, visit https://github.com/mozilla/policy-templates/blob/master/mac/org.mozilla.firefox.plist.You can either create a new.plistfile based on Mozilla's policy template or modify the existing.plistfile based on your organization's requirements. For example:<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0"> <dict> <key>EnterprisePoliciesEnabled</key> <true/> <key>Certificates</key> <dict> <key>ImportEnterpriseRoots</key> <true/> </dict> <key>ExtensionSettings</key> <dict> <key>[email protected]</key> <dict> <key>installation_mode</key> <string>force_installed</string> <key>install_url</key> <string>file:////Library/Manufacturer/Endpoint Agent/dlp-firefox-addon.xpi</string> </dict> </dict> </dict> </plist>
- In Jamf, select a configuration profile.
- Navigate toApplication & Custom Settings, and then clickAdd.
- UnderCreation Method, selectUpload File (PLIST file).
- In thePreference Domainfield, typeorg.mozilla.firefox.
- Click theUpload PLIST filebutton, and then browse to and select the.plistfile that you created in Step 1.
- ClickSave.
You can refer to the
System > Agents > Overview
page of the Enforce Server administration console to view and troubleshoot any failed deployments.