Can I add security exceptions from the command line?

[j4nd3r53n]

I would expect the andswer to this queston to be 'Yes' - so how can it be done? In my situation, I adminstrate a large number of servers (>1500), all of which come with a BMC ('Baseboard management controller') of some sort with a web service accessed via https. They have been installed with a self-signed certificate, which generally matches the serial number, whereas I enroll their addresses in DNS under a more meaningful name. This, in turn, means that I have to confirm security exceptions for all of them - so, I'd like to know if this isn't possible to do with a script - ie from the command line? (Please note, I do know that it isn't a difficult task, clicking on the excepton dialog, but that isn't what I am asking; I simply want to know because I am curoius).

===EDIT===

Actually, one scenario where you might want/need this, is if you have to access these BMCs via a 'bastion server': quite often, in my experience, you'll find that the server estate can only be accessed by logging on to a single entry point, so you have to eg use 'ssh -X ...' to log in, then run firefox or similar after you have logged in - this can make the whole experience excruciating in some cases.

[Brummelchen]

I guess not, this is all
https://developer.mozilla.org/en-US/doc ... ne_Options

[morat]

You can use certutil to update the Firefox certificate databases from the command line.

Setting Up Certificate Authorities (CAs) in Firefox
https://support.mozilla.org/en-US/kb/se ... es-firefox

certutil
https://docs.microsoft.com/en-us/window ... s/certutil

I have no experience with certutil, so I can't help you.

[dickvl]

See also:
https://support.mozilla.org/en-US/kb/cu ... liciesjson
https://github.com/mozilla/policy-templ ... /README.md