Skip to content
Firefox administrator reference

DisableSecurityBypass

Prevent the user from bypassing security in certain cases.

These policies only affect what happens when an error is shown, they do not affect any settings in preferences.

Compatibility: Firefox 60, Firefox ESR 60
CCK2 Equivalent: N/A
Preferences Affected: security.certerror.hideAddException, browser.safebrowsing.allowOverride

Values

Section titled “Values”
  • InvalidCertificate: Prevents adding an exception when an invalid certificate is shown.
  • SafeBrowsing: Prevents selecting "ignore the risk" and visiting a harmful site anyway.

Windows (GPO)

Section titled “Windows (GPO)”
Software\Policies\Mozilla\Firefox\DisableSecurityBypass\InvalidCertificate = 0x1 | 0x0
Software\Policies\Mozilla\Firefox\DisableSecurityBypass\SafeBrowsing = 0x1 | 0x0

Windows (Intune)

Section titled “Windows (Intune)”

OMA-URI:

./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox/P_DisableSecurityBypass_InvalidCertificate

Value (string):

<enabled/> or <disabled/>

OMA-URI:

./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox/P_DisableSecurityBypass_SafeBrowsing

Value (string):

<enabled/> or <disabled/>

macOS

Section titled “macOS”
<dict>
  <key>DisableSecurityBypass</key>
  <dict>
    <key>InvalidCertificate</key>
    <true/> | <false/>
    <key>SafeBrowsing</key>
    <true/> | <false/>
  </dict>
</dict>

policies.json

Section titled “policies.json”
{
  "policies": {
    "DisableSecurityBypass": {
      "InvalidCertificate": true | false,
      "SafeBrowsing": true | false
    }
  }
}