Share via

Need Help: Firefox SSO Setup Using Intune with Preferences and Policies"

TechUST 616 Reputation points
2025-07-07T19:02:45.3+00:00

I need help in applying Firefox settings through Intune to enable Windows Single Sign-On (SSO) for Microsoft, work, and school accounts. i need two changes as below

  1. About:config setting

Create the preference:

network.automatic-ntlm-auth.trusted-uris

Set value to:

"xyz.com, abc.com"

  1. Enterprise policy configuration via JSON

{

"policies": {

"WindowsSSO": true,

"Authentication": {

  "SPNEGO": ["https://xyz.com", "https://abc.com"]

}

}

}

My questions:

Can both the about:config preference and the enterprise policy settings be applied using a single JSON or ps1 script through Intune?

Or do they need to be managed separately (one via preference, one via enterprise policy)?

What’s the best way to deplo

y this via Intune? If someone can share one script to deploy the same, would be great.

Thanks in advance!

Microsoft Security | Intune | Security
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Prathista Ilango 515 Reputation points Microsoft Employee
    2025-10-14T19:41:32.9633333+00:00

    Hello TechUST,

    Hope you have sorted this out. If not, suggestion is to deploy separately because for Enterprise policy configuration, importing ADMX and creating a configuration profile is the most straight forward option.

    For preferences, you can use custom OMA-URI.

    1. On Intune Portal -> Device -> Windows -> Configuration -> Create policy
    2. Select Windows 10 and later -> Templates -> Custom
    3. Go through the wizard and add OMA URI like below, OMA-URI: ./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox~Authentication/Authentication_SPNEGO
      Value(String):
      <enabled/> <data id="Authentication" value="1mydomain2https://myotherdomain.com"/> User's image

    This should help with your requirement. You can script the entire thing into a single deployment as well, but this is more straight forward and easy to monitor.

    Refer to: https://mozilla.github.io/policy-templates/#authentication

    https://support.mozilla.org/en-US/kb/managing-firefox-intune

    Also refer to: https://learn.microsoft.com/en-us/intune/intune-service/configuration/administrative-templates-import-custom

    Hope this helps!

    If you found the information above helpful, please Click Yes. This will assist others in the community who encounter a similar issue, enabling them to quickly find the solution and benefit from the guidance provided.

    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.