Closed Bug 1848815 Opened 1 year ago Closed 1 year ago

Add a user-facing setting to enable enterprise roots import, and enable it by default

Categories

(Core :: Security: PSM, enhancement, P1)

enhancement

Tracking

()

RESOLVED FIXED
120 Branch
Tracking Status
relnote-firefox --- 120+
firefox120 --- fixed

People

(Reporter: molly, Assigned: molly)

References

(Blocks 1 open bug)

Details

Attachments

(1 file)

No description provided.
Pushed by mhowell@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/f65d71f51234
Add a user-facing setting to enable enterprise roots import, and enable it by default. r=keeler,settings-reviewers,fluent-reviewers,desktop-theme-reviewers,flod,Itiel,Gijs

Backed out for causing xpcshell assertion failures on nsNSSComponent.cpp.

Flags: needinfo?(mhowell)
Pushed by mhowell@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/e2f01ea9db72
Add a user-facing setting to enable enterprise roots import, and enable it by default. r=keeler,settings-reviewers,fluent-reviewers,desktop-theme-reviewers,flod,Itiel,Gijs

Backed out for bc failure on browser_aboutCertError_mitm.js

Backout link: https://hg.mozilla.org/integration/autoland/rev/4163d8d52ecc86c30a3518ca5080fe60265015b2
Log link: https://treeherder.mozilla.org/logviewer?job_id=428884383&repo=autoland&lineNumber=3587

Please also check:

Pushed by mhowell@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/81b65e80ca14
Add a user-facing setting to enable enterprise roots import, and enable it by default. r=keeler,settings-reviewers,fluent-reviewers,desktop-theme-reviewers,flod,Itiel,Gijs,valentin
Status: ASSIGNED → RESOLVED
Closed: 1 year ago
Resolution: --- → FIXED
Target Milestone: --- → 120 Branch
Flags: needinfo?(mhowell)

Release Note Request (optional, but appreciated)
[Why is this notable]: We expect/hope that this will fix a large number of certificate errors for users trying to get to intranet sites on managed networks, or who have security software configured to analyze web traffic.

[Suggested wording]: By default, Firefox will now use TLS trust anchors (e.g., certificates) added to the operating system by the user or an administrator. This works on Windows, macOS, and Android, and it can be turned off in the "Privacy & Security" section of Firefox settings, under "Certificates".

relnote-firefox: --- → ?
Regressions: 1871011
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Created:
Updated:
Size: