How do I deal with NET:ERR_CERT_AUTHORITY_INVALID in Chrome?












59















My work place intercepts SSL connections, looks at their contents, and then passes the data to and from my machine and remote hosts - a kind of man-in-the-middle attack. This is not uncommon in corporate or enterprise environments.



Now I have a virtual machine running on my computer. The virtual machine does not have the certificates the actual machine has which enable the MITM to work transparently. As a result, I get this message:



NET::ERR_CERT_AUTHORITY_INVALID message in Chrome



What can I do to resolve this?










share|improve this question























  • Install the fake certificates on the virtual machine.

    – Ramhound
    Jun 2 '16 at 21:04











  • @Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

    – Richard
    Jun 2 '16 at 21:33











  • @Ramhound: The difficult I had was in finding said certificates.

    – Richard
    Jun 2 '16 at 21:34
















59















My work place intercepts SSL connections, looks at their contents, and then passes the data to and from my machine and remote hosts - a kind of man-in-the-middle attack. This is not uncommon in corporate or enterprise environments.



Now I have a virtual machine running on my computer. The virtual machine does not have the certificates the actual machine has which enable the MITM to work transparently. As a result, I get this message:



NET::ERR_CERT_AUTHORITY_INVALID message in Chrome



What can I do to resolve this?










share|improve this question























  • Install the fake certificates on the virtual machine.

    – Ramhound
    Jun 2 '16 at 21:04











  • @Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

    – Richard
    Jun 2 '16 at 21:33











  • @Ramhound: The difficult I had was in finding said certificates.

    – Richard
    Jun 2 '16 at 21:34














59












59








59


20






My work place intercepts SSL connections, looks at their contents, and then passes the data to and from my machine and remote hosts - a kind of man-in-the-middle attack. This is not uncommon in corporate or enterprise environments.



Now I have a virtual machine running on my computer. The virtual machine does not have the certificates the actual machine has which enable the MITM to work transparently. As a result, I get this message:



NET::ERR_CERT_AUTHORITY_INVALID message in Chrome



What can I do to resolve this?










share|improve this question














My work place intercepts SSL connections, looks at their contents, and then passes the data to and from my machine and remote hosts - a kind of man-in-the-middle attack. This is not uncommon in corporate or enterprise environments.



Now I have a virtual machine running on my computer. The virtual machine does not have the certificates the actual machine has which enable the MITM to work transparently. As a result, I get this message:



NET::ERR_CERT_AUTHORITY_INVALID message in Chrome



What can I do to resolve this?







google-chrome ssl certificate man-in-the-middle






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Jun 2 '16 at 19:36









RichardRichard

1,48211119




1,48211119













  • Install the fake certificates on the virtual machine.

    – Ramhound
    Jun 2 '16 at 21:04











  • @Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

    – Richard
    Jun 2 '16 at 21:33











  • @Ramhound: The difficult I had was in finding said certificates.

    – Richard
    Jun 2 '16 at 21:34



















  • Install the fake certificates on the virtual machine.

    – Ramhound
    Jun 2 '16 at 21:04











  • @Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

    – Richard
    Jun 2 '16 at 21:33











  • @Ramhound: The difficult I had was in finding said certificates.

    – Richard
    Jun 2 '16 at 21:34

















Install the fake certificates on the virtual machine.

– Ramhound
Jun 2 '16 at 21:04





Install the fake certificates on the virtual machine.

– Ramhound
Jun 2 '16 at 21:04













@Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

– Richard
Jun 2 '16 at 21:33





@Ƭᴇcʜιᴇ007: Corporate ID didn't want to touch the issue. Don't let the word "corporate" throw you, this is a perfectly legitimate question about certificate authorities.

– Richard
Jun 2 '16 at 21:33













@Ramhound: The difficult I had was in finding said certificates.

– Richard
Jun 2 '16 at 21:34





@Ramhound: The difficult I had was in finding said certificates.

– Richard
Jun 2 '16 at 21:34










6 Answers
6






active

oldest

votes


















41














First thing's first:



DO NOT DO THE FOLLOWING IF YOU DO NOT TRUST THE CERTIFICATE ISSUER



Doing this allows a man-in-the-middle to see all of your communications. This fix should only be employed if you are in a situation which warrants it, not if you're sitting at a coffee shop and having problems connecting to things.



That said...



The first step is to acquire the certificate of the MITM.



To do so, click the little HTTPS lock and hit details:



Page details



Click "View Certificate" in the dialog that comes up.



Certificate details pane



Hit "Details" in the Certificate viewer and select the top certificate, which should be from an address other than the one you were trying to get to (see picture):



Certificate viewer



Then hit "Export" and save the certificate file.



Now, go to Settings → Advanced → Manage Certificates... → Authorities



Settings menu



And hit "Import". Select the certificate file you saved previously and hit all of the check boxes that appear, authorizing it to certify everything.



Manage certificates menu






share|improve this answer


























  • // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

    – Nathan Basanese
    Oct 4 '16 at 9:29











  • @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

    – Richard
    Oct 4 '16 at 14:24






  • 2





    I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

    – Sam
    Mar 7 '17 at 22:30






  • 6





    "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

    – DanH
    Mar 21 '17 at 12:56






  • 3





    Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

    – Nick Dong
    Apr 24 '17 at 9:08





















18














I hope I'm not reviving this too late in the game, but I was looking for this answer and figured out how to make Richard's solution work with Chrome 59.0.3071.115 for the Mac.




  1. Load the page with the self-signed certificate that's causing Chrome to throw the error

  2. Hit the triple-horizontal-dots in the top right to get to More Tools > Developer Tools; click on the Security tab

  3. Click "View certificate"

  4. In the little window that pops up, there should be a picture of a certificate. Click/drag that to some location in Finder.

  5. Triple-horizontal-dots > Settings > Advanced > Manage certificates

  6. If the keychain is locked (lock in the top-left corner of the window that pops up), unlock it using your system password

  7. Select "login" under Keychains (on the top-left) and "Certificates" under Category (on the bottom-left)

  8. Click/drag the certificate that you downloaded over to the right side of the Keychain Access window

  9. Lock the lock at the top left of the Keychain Access window

  10. Close and re-open Chrome (make sure Chrome fully closed -- force quit if you need to)

  11. In Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!






share|improve this answer


























  • Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

    – Radmation
    Aug 27 '18 at 16:45






  • 1





    Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

    – Nico
    Oct 26 '18 at 22:04











  • The directions on how to install this certificate is golden. Thanks!

    – Shanimal
    Jan 16 at 4:30



















11














If you've just installed an SSL cert on your website after getting this error, you may need to restart Chrome. Easiest way is to go to chrome://restart so that it reopens all your tabs.



I was getting this error even though SSL Labs was telling me I had an A+ cert. Chrome was just being dumb and not refreshing properly.






share|improve this answer



















  • 2





    Easier for our support team to tell users how to fix it

    – Developia
    Nov 24 '17 at 15:02



















2














For me I had to upgrade my browser version to the latest and it worked.






share|improve this answer































    1














    If you click the advanced link you are given the option to prodeed anyway.



    enter image description here



    Subsequently, when you visit the same site, the warning won't be shown, but the address bar will show "Not secure". If you click on the words "Not secure, you are informed that you have chosen to disable warnings for this site, but you can re-enable them.



    enter image description here






    share|improve this answer































      0














      One more option: less common but worth knowing.



      Your computer may have an old certificate on it and ignore the current one.



      I had to go to the Keychain app on a Mac and delete the expired/untrusted certificates so it would download new ones.






      share|improve this answer






















        protected by Ramhound Nov 6 '18 at 22:50



        Thank you for your interest in this question.
        Because it has attracted low-quality or spam answers that had to be removed, posting an answer now requires 10 reputation on this site (the association bonus does not count).



        Would you like to answer one of these unanswered questions instead?














        6 Answers
        6






        active

        oldest

        votes








        6 Answers
        6






        active

        oldest

        votes









        active

        oldest

        votes






        active

        oldest

        votes









        41














        First thing's first:



        DO NOT DO THE FOLLOWING IF YOU DO NOT TRUST THE CERTIFICATE ISSUER



        Doing this allows a man-in-the-middle to see all of your communications. This fix should only be employed if you are in a situation which warrants it, not if you're sitting at a coffee shop and having problems connecting to things.



        That said...



        The first step is to acquire the certificate of the MITM.



        To do so, click the little HTTPS lock and hit details:



        Page details



        Click "View Certificate" in the dialog that comes up.



        Certificate details pane



        Hit "Details" in the Certificate viewer and select the top certificate, which should be from an address other than the one you were trying to get to (see picture):



        Certificate viewer



        Then hit "Export" and save the certificate file.



        Now, go to Settings → Advanced → Manage Certificates... → Authorities



        Settings menu



        And hit "Import". Select the certificate file you saved previously and hit all of the check boxes that appear, authorizing it to certify everything.



        Manage certificates menu






        share|improve this answer


























        • // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

          – Nathan Basanese
          Oct 4 '16 at 9:29











        • @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

          – Richard
          Oct 4 '16 at 14:24






        • 2





          I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

          – Sam
          Mar 7 '17 at 22:30






        • 6





          "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

          – DanH
          Mar 21 '17 at 12:56






        • 3





          Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

          – Nick Dong
          Apr 24 '17 at 9:08


















        41














        First thing's first:



        DO NOT DO THE FOLLOWING IF YOU DO NOT TRUST THE CERTIFICATE ISSUER



        Doing this allows a man-in-the-middle to see all of your communications. This fix should only be employed if you are in a situation which warrants it, not if you're sitting at a coffee shop and having problems connecting to things.



        That said...



        The first step is to acquire the certificate of the MITM.



        To do so, click the little HTTPS lock and hit details:



        Page details



        Click "View Certificate" in the dialog that comes up.



        Certificate details pane



        Hit "Details" in the Certificate viewer and select the top certificate, which should be from an address other than the one you were trying to get to (see picture):



        Certificate viewer



        Then hit "Export" and save the certificate file.



        Now, go to Settings → Advanced → Manage Certificates... → Authorities



        Settings menu



        And hit "Import". Select the certificate file you saved previously and hit all of the check boxes that appear, authorizing it to certify everything.



        Manage certificates menu






        share|improve this answer


























        • // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

          – Nathan Basanese
          Oct 4 '16 at 9:29











        • @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

          – Richard
          Oct 4 '16 at 14:24






        • 2





          I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

          – Sam
          Mar 7 '17 at 22:30






        • 6





          "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

          – DanH
          Mar 21 '17 at 12:56






        • 3





          Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

          – Nick Dong
          Apr 24 '17 at 9:08
















        41












        41








        41







        First thing's first:



        DO NOT DO THE FOLLOWING IF YOU DO NOT TRUST THE CERTIFICATE ISSUER



        Doing this allows a man-in-the-middle to see all of your communications. This fix should only be employed if you are in a situation which warrants it, not if you're sitting at a coffee shop and having problems connecting to things.



        That said...



        The first step is to acquire the certificate of the MITM.



        To do so, click the little HTTPS lock and hit details:



        Page details



        Click "View Certificate" in the dialog that comes up.



        Certificate details pane



        Hit "Details" in the Certificate viewer and select the top certificate, which should be from an address other than the one you were trying to get to (see picture):



        Certificate viewer



        Then hit "Export" and save the certificate file.



        Now, go to Settings → Advanced → Manage Certificates... → Authorities



        Settings menu



        And hit "Import". Select the certificate file you saved previously and hit all of the check boxes that appear, authorizing it to certify everything.



        Manage certificates menu






        share|improve this answer















        First thing's first:



        DO NOT DO THE FOLLOWING IF YOU DO NOT TRUST THE CERTIFICATE ISSUER



        Doing this allows a man-in-the-middle to see all of your communications. This fix should only be employed if you are in a situation which warrants it, not if you're sitting at a coffee shop and having problems connecting to things.



        That said...



        The first step is to acquire the certificate of the MITM.



        To do so, click the little HTTPS lock and hit details:



        Page details



        Click "View Certificate" in the dialog that comes up.



        Certificate details pane



        Hit "Details" in the Certificate viewer and select the top certificate, which should be from an address other than the one you were trying to get to (see picture):



        Certificate viewer



        Then hit "Export" and save the certificate file.



        Now, go to Settings → Advanced → Manage Certificates... → Authorities



        Settings menu



        And hit "Import". Select the certificate file you saved previously and hit all of the check boxes that appear, authorizing it to certify everything.



        Manage certificates menu







        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Jan 26 at 9:22









        Community

        1




        1










        answered Jun 2 '16 at 19:43









        RichardRichard

        1,48211119




        1,48211119













        • // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

          – Nathan Basanese
          Oct 4 '16 at 9:29











        • @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

          – Richard
          Oct 4 '16 at 14:24






        • 2





          I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

          – Sam
          Mar 7 '17 at 22:30






        • 6





          "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

          – DanH
          Mar 21 '17 at 12:56






        • 3





          Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

          – Nick Dong
          Apr 24 '17 at 9:08





















        • // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

          – Nathan Basanese
          Oct 4 '16 at 9:29











        • @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

          – Richard
          Oct 4 '16 at 14:24






        • 2





          I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

          – Sam
          Mar 7 '17 at 22:30






        • 6





          "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

          – DanH
          Mar 21 '17 at 12:56






        • 3





          Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

          – Nick Dong
          Apr 24 '17 at 9:08



















        // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

        – Nathan Basanese
        Oct 4 '16 at 9:29





        // , My dialog for Certificate Viewer does not include two tabs, nor can I export the certificate file. On what version of Chrome or Chromium did you test this?

        – Nathan Basanese
        Oct 4 '16 at 9:29













        @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

        – Richard
        Oct 4 '16 at 14:24





        @NathanBasanese: I'm sorry; I'm not sure what version it was. I've since changed locations.

        – Richard
        Oct 4 '16 at 14:24




        2




        2





        I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

        – Sam
        Mar 7 '17 at 22:30





        I had to restart chrome before this was working correctly on windows (kill chrome task). Great guide

        – Sam
        Mar 7 '17 at 22:30




        6




        6





        "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

        – DanH
        Mar 21 '17 at 12:56





        "Details" link is not displayed in Chrome OSX 57.0.2987.110 (64-bit)

        – DanH
        Mar 21 '17 at 12:56




        3




        3





        Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

        – Nick Dong
        Apr 24 '17 at 9:08







        Chrome 57.0.2987.133 (64-bit) , OSX 10.9.4. I open Security tab from Inspect Element in develop tools. And I can see the detail of certificate. But there is no Export either. I can export the certificate using firefox. But when I opened Manage Certificates in Chrome and was trying to import the certificate to chrome. Chrome open system certificate manager instead of chrome certificate manager. Then I tryed type chrome://settings/certificates to address bar, it only redirect to chrome://settings.

        – Nick Dong
        Apr 24 '17 at 9:08















        18














        I hope I'm not reviving this too late in the game, but I was looking for this answer and figured out how to make Richard's solution work with Chrome 59.0.3071.115 for the Mac.




        1. Load the page with the self-signed certificate that's causing Chrome to throw the error

        2. Hit the triple-horizontal-dots in the top right to get to More Tools > Developer Tools; click on the Security tab

        3. Click "View certificate"

        4. In the little window that pops up, there should be a picture of a certificate. Click/drag that to some location in Finder.

        5. Triple-horizontal-dots > Settings > Advanced > Manage certificates

        6. If the keychain is locked (lock in the top-left corner of the window that pops up), unlock it using your system password

        7. Select "login" under Keychains (on the top-left) and "Certificates" under Category (on the bottom-left)

        8. Click/drag the certificate that you downloaded over to the right side of the Keychain Access window

        9. Lock the lock at the top left of the Keychain Access window

        10. Close and re-open Chrome (make sure Chrome fully closed -- force quit if you need to)

        11. In Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!






        share|improve this answer


























        • Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

          – Radmation
          Aug 27 '18 at 16:45






        • 1





          Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

          – Nico
          Oct 26 '18 at 22:04











        • The directions on how to install this certificate is golden. Thanks!

          – Shanimal
          Jan 16 at 4:30
















        18














        I hope I'm not reviving this too late in the game, but I was looking for this answer and figured out how to make Richard's solution work with Chrome 59.0.3071.115 for the Mac.




        1. Load the page with the self-signed certificate that's causing Chrome to throw the error

        2. Hit the triple-horizontal-dots in the top right to get to More Tools > Developer Tools; click on the Security tab

        3. Click "View certificate"

        4. In the little window that pops up, there should be a picture of a certificate. Click/drag that to some location in Finder.

        5. Triple-horizontal-dots > Settings > Advanced > Manage certificates

        6. If the keychain is locked (lock in the top-left corner of the window that pops up), unlock it using your system password

        7. Select "login" under Keychains (on the top-left) and "Certificates" under Category (on the bottom-left)

        8. Click/drag the certificate that you downloaded over to the right side of the Keychain Access window

        9. Lock the lock at the top left of the Keychain Access window

        10. Close and re-open Chrome (make sure Chrome fully closed -- force quit if you need to)

        11. In Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!






        share|improve this answer


























        • Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

          – Radmation
          Aug 27 '18 at 16:45






        • 1





          Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

          – Nico
          Oct 26 '18 at 22:04











        • The directions on how to install this certificate is golden. Thanks!

          – Shanimal
          Jan 16 at 4:30














        18












        18








        18







        I hope I'm not reviving this too late in the game, but I was looking for this answer and figured out how to make Richard's solution work with Chrome 59.0.3071.115 for the Mac.




        1. Load the page with the self-signed certificate that's causing Chrome to throw the error

        2. Hit the triple-horizontal-dots in the top right to get to More Tools > Developer Tools; click on the Security tab

        3. Click "View certificate"

        4. In the little window that pops up, there should be a picture of a certificate. Click/drag that to some location in Finder.

        5. Triple-horizontal-dots > Settings > Advanced > Manage certificates

        6. If the keychain is locked (lock in the top-left corner of the window that pops up), unlock it using your system password

        7. Select "login" under Keychains (on the top-left) and "Certificates" under Category (on the bottom-left)

        8. Click/drag the certificate that you downloaded over to the right side of the Keychain Access window

        9. Lock the lock at the top left of the Keychain Access window

        10. Close and re-open Chrome (make sure Chrome fully closed -- force quit if you need to)

        11. In Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!






        share|improve this answer















        I hope I'm not reviving this too late in the game, but I was looking for this answer and figured out how to make Richard's solution work with Chrome 59.0.3071.115 for the Mac.




        1. Load the page with the self-signed certificate that's causing Chrome to throw the error

        2. Hit the triple-horizontal-dots in the top right to get to More Tools > Developer Tools; click on the Security tab

        3. Click "View certificate"

        4. In the little window that pops up, there should be a picture of a certificate. Click/drag that to some location in Finder.

        5. Triple-horizontal-dots > Settings > Advanced > Manage certificates

        6. If the keychain is locked (lock in the top-left corner of the window that pops up), unlock it using your system password

        7. Select "login" under Keychains (on the top-left) and "Certificates" under Category (on the bottom-left)

        8. Click/drag the certificate that you downloaded over to the right side of the Keychain Access window

        9. Lock the lock at the top left of the Keychain Access window

        10. Close and re-open Chrome (make sure Chrome fully closed -- force quit if you need to)

        11. In Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!







        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Jan 31 at 13:58









        Ramhound

        20.3k156085




        20.3k156085










        answered Jul 28 '17 at 1:28









        Paul FernandezPaul Fernandez

        18112




        18112













        • Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

          – Radmation
          Aug 27 '18 at 16:45






        • 1





          Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

          – Nico
          Oct 26 '18 at 22:04











        • The directions on how to install this certificate is golden. Thanks!

          – Shanimal
          Jan 16 at 4:30



















        • Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

          – Radmation
          Aug 27 '18 at 16:45






        • 1





          Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

          – Nico
          Oct 26 '18 at 22:04











        • The directions on how to install this certificate is golden. Thanks!

          – Shanimal
          Jan 16 at 4:30

















        Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

        – Radmation
        Aug 27 '18 at 16:45





        Click drag not working on windows 10. Also I see no "login" in the manage certificates window...

        – Radmation
        Aug 27 '18 at 16:45




        1




        1





        Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

        – Nico
        Oct 26 '18 at 22:04





        Great, thanks! One more step for me (Chrome as of Oct 26, 2018): in Keychain, right-click your cert, "Get Info", "Trust" and "Always Trust" for SSL!

        – Nico
        Oct 26 '18 at 22:04













        The directions on how to install this certificate is golden. Thanks!

        – Shanimal
        Jan 16 at 4:30





        The directions on how to install this certificate is golden. Thanks!

        – Shanimal
        Jan 16 at 4:30











        11














        If you've just installed an SSL cert on your website after getting this error, you may need to restart Chrome. Easiest way is to go to chrome://restart so that it reopens all your tabs.



        I was getting this error even though SSL Labs was telling me I had an A+ cert. Chrome was just being dumb and not refreshing properly.






        share|improve this answer



















        • 2





          Easier for our support team to tell users how to fix it

          – Developia
          Nov 24 '17 at 15:02
















        11














        If you've just installed an SSL cert on your website after getting this error, you may need to restart Chrome. Easiest way is to go to chrome://restart so that it reopens all your tabs.



        I was getting this error even though SSL Labs was telling me I had an A+ cert. Chrome was just being dumb and not refreshing properly.






        share|improve this answer



















        • 2





          Easier for our support team to tell users how to fix it

          – Developia
          Nov 24 '17 at 15:02














        11












        11








        11







        If you've just installed an SSL cert on your website after getting this error, you may need to restart Chrome. Easiest way is to go to chrome://restart so that it reopens all your tabs.



        I was getting this error even though SSL Labs was telling me I had an A+ cert. Chrome was just being dumb and not refreshing properly.






        share|improve this answer













        If you've just installed an SSL cert on your website after getting this error, you may need to restart Chrome. Easiest way is to go to chrome://restart so that it reopens all your tabs.



        I was getting this error even though SSL Labs was telling me I had an A+ cert. Chrome was just being dumb and not refreshing properly.







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered Nov 3 '17 at 18:00









        mpenmpen

        4,135114063




        4,135114063








        • 2





          Easier for our support team to tell users how to fix it

          – Developia
          Nov 24 '17 at 15:02














        • 2





          Easier for our support team to tell users how to fix it

          – Developia
          Nov 24 '17 at 15:02








        2




        2





        Easier for our support team to tell users how to fix it

        – Developia
        Nov 24 '17 at 15:02





        Easier for our support team to tell users how to fix it

        – Developia
        Nov 24 '17 at 15:02











        2














        For me I had to upgrade my browser version to the latest and it worked.






        share|improve this answer




























          2














          For me I had to upgrade my browser version to the latest and it worked.






          share|improve this answer


























            2












            2








            2







            For me I had to upgrade my browser version to the latest and it worked.






            share|improve this answer













            For me I had to upgrade my browser version to the latest and it worked.







            share|improve this answer












            share|improve this answer



            share|improve this answer










            answered Jun 12 '17 at 5:33









            David OkwiiDavid Okwii

            1264




            1264























                1














                If you click the advanced link you are given the option to prodeed anyway.



                enter image description here



                Subsequently, when you visit the same site, the warning won't be shown, but the address bar will show "Not secure". If you click on the words "Not secure, you are informed that you have chosen to disable warnings for this site, but you can re-enable them.



                enter image description here






                share|improve this answer




























                  1














                  If you click the advanced link you are given the option to prodeed anyway.



                  enter image description here



                  Subsequently, when you visit the same site, the warning won't be shown, but the address bar will show "Not secure". If you click on the words "Not secure, you are informed that you have chosen to disable warnings for this site, but you can re-enable them.



                  enter image description here






                  share|improve this answer


























                    1












                    1








                    1







                    If you click the advanced link you are given the option to prodeed anyway.



                    enter image description here



                    Subsequently, when you visit the same site, the warning won't be shown, but the address bar will show "Not secure". If you click on the words "Not secure, you are informed that you have chosen to disable warnings for this site, but you can re-enable them.



                    enter image description here






                    share|improve this answer













                    If you click the advanced link you are given the option to prodeed anyway.



                    enter image description here



                    Subsequently, when you visit the same site, the warning won't be shown, but the address bar will show "Not secure". If you click on the words "Not secure, you are informed that you have chosen to disable warnings for this site, but you can re-enable them.



                    enter image description here







                    share|improve this answer












                    share|improve this answer



                    share|improve this answer










                    answered Sep 14 '18 at 13:33









                    user3185563user3185563

                    1111




                    1111























                        0














                        One more option: less common but worth knowing.



                        Your computer may have an old certificate on it and ignore the current one.



                        I had to go to the Keychain app on a Mac and delete the expired/untrusted certificates so it would download new ones.






                        share|improve this answer




























                          0














                          One more option: less common but worth knowing.



                          Your computer may have an old certificate on it and ignore the current one.



                          I had to go to the Keychain app on a Mac and delete the expired/untrusted certificates so it would download new ones.






                          share|improve this answer


























                            0












                            0








                            0







                            One more option: less common but worth knowing.



                            Your computer may have an old certificate on it and ignore the current one.



                            I had to go to the Keychain app on a Mac and delete the expired/untrusted certificates so it would download new ones.






                            share|improve this answer













                            One more option: less common but worth knowing.



                            Your computer may have an old certificate on it and ignore the current one.



                            I had to go to the Keychain app on a Mac and delete the expired/untrusted certificates so it would download new ones.







                            share|improve this answer












                            share|improve this answer



                            share|improve this answer










                            answered Jul 10 '18 at 21:42









                            NohlNohl

                            12




                            12

















                                protected by Ramhound Nov 6 '18 at 22:50



                                Thank you for your interest in this question.
                                Because it has attracted low-quality or spam answers that had to be removed, posting an answer now requires 10 reputation on this site (the association bonus does not count).



                                Would you like to answer one of these unanswered questions instead?



                                Popular posts from this blog

                                Probability when a professor distributes a quiz and homework assignment to a class of n students.

                                Aardman Animations

                                Are they similar matrix