23May

Enabling NTLM Authentication (Single Sign-On) in Firefox

HowTo

This HowTo will describe how to enable NTLM authentication (Single Sign-On) in Firefox.

How many of you have noticed that when you are using Internet Explorer and you browse to your companies intranet page that it will automatically authenticate you but when you use Firefox you will be prompted with a login box?

I recently, in searching for solutions to allow NTLM authentication with Apache, stumbled across how to set a preference in Firefox that will pass the NTLM authentication information to a web server. The preference is network.automatic-ntlm-auth.trusted-uris.

So how do you do it?

1) Open Firefox and type “about:config” in the address bar. (without the quotes of course)
2) In the ‘Filter’ field type the following “network.automatic-ntlm-auth.trusted-uris”
3) Double click the name of the preference that we just searched for
4) Enter the URLs of the sites you wish to pass NTLM auth info to in the form of:

http://intranet.company.com,http://email.company.lan

5) Notice that you can use a comma separated list in this field.
6) Updated: I have created VBScript that can be used to insert this information into a users prefs.js file by using group policy or standalone if for some reason you want to use it for that.

The script is available to be downloaded here.

After downloading the script you will want to extract it from the ZIP archive and then modify the line starting with strSiteList.

NOTE: This script will not perform its function if the user has Firefox open at the time the script is executed. Running the script through group policy will work without problem unless for some reason your group policy launches Firefox before the execution of this script.

You can read through the rest of the script for additional information. If you have questions, comments or concerns please let me know.

8 comments
Wednesday, May 23rd, 2007 at 12:06 pm and is filed under HowTo. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site. You can Print This Post Print This Post

Comments

  1. Gravatar Posted by frances on Wednesday 27th June

    Good clear instructions.

  2. Gravatar Posted by Rob on Wednesday 9th April

    Now can you get it to pass kerberos auth?

  3. Gravatar Posted by Sol on Wednesday 25th June

    network.automatic-ntlm-auth.trusted-uris seems to be removed in firefox 3…

  4. Gravatar Posted by Matt on Monday 30th June

    @Sol: I just checked and that configuration is indeed still in Firefox 3.

  5. Gravatar Posted by Dan on Friday 8th August

    @Sol: you probably mistyped something. Just use “ntlm” as your filter, there will only be three or four results, and the trusted-urls one is definitely in there in FF3.

Pingbacks

  1. Enabling NTLM Authentication (Single Sign-On) in Firefox | Sivel.net Pingback on Wednesday 9th April
  2. Podcast #5 - stackoverflow Pingback on Tuesday 13th May
  3. Mind Gravy » Blog Archive » links for 2008-05-23 Pingback on Friday 23rd May

Leave a reply