mkaply
commented
6 years ago That's odd. There should be no difference on High Sierra. Are there any errors on the console?
Open lhnguyen1 opened 6 years ago
mkaply
commented
6 years ago That's odd. There should be no difference on High Sierra. Are there any errors on the console?
bHKSG3kp
commented
6 years ago This may be relevant to this issue; CAs added from files where the filename contains a '.' anywhere before the '.crt' suffix fail to load. i.e. ( from file: firefox/cck2.cfg )
- "url": "resource://example_v0.1/certs/example.com.crt", <--- fails
+ "url": "resource://example_v0.1/certs/example_com.crt", <--- succeedsIn CCK2-2.2.6 this produces an error:
Error: Fownload failed (2152857621 for resource://example_v0.1/certs/example.com.crt
download/listener.onDownloadComplete@resource://cck2/CCK2.jsm:1297:21
openModalWindow@resource://gre/components/nsPrompter.js:364:5
ModalPrompter.prototype.openPrompt@resource://gre/components/nsPrompter.js:628:9
Prompter.prototype.alert@resource://gre/components/nsPrompter.js:59:9
errorCritical@resource://cck2/CCK2.jsm:1241:3
download/listener.onDownloadComplete@resource://cck2/CCK2.jsm:1297:7In CCK2-2.2.8 the CAs fail to load if named similarly, and it may produce an error on the console, but I inadvertently worked around it (thinking it could be file permissions related) by renaming the CA files...
lhnguyen1
commented
6 years ago My CAs doesn't contain any '.' before the '.crt' suffix. I don't see any errors or anything abnormal in the console either.
mkaply
commented
5 years ago I'm finally getting around to testing this and everything is working fine for me...
I do know that sometimes the certificates don't show up in the cert manager even though they are installed.
lhnguyen1
commented
5 years ago The certificates land on the computer correctly, but it seems that however firefox processes the .cfg file, it skips the certificates. In our latest test runs, it also skipped add-ons. (but installed correctly in the directories). Firefox successfully processes items before and after the certificates and add-ons items in the .cfg file. We chmod the permissions for the whole .app to 755, thinking it is a permission issue with no luck as well.
We since started testing using JSON/Policies for Firefox 63, because of the enterprise root option.
mkaply
commented
5 years ago It only does those on firstrun or when the version of the CCK2 config changes. Can you try bumping the version?
CCK2 built with 2.2.7 installed on 10.11.6 works fine installing the Certificate authorities but when installing on a High Sierra machine CCK2 installs but doesn't install the certificate authorities.