1

I am trying to access an HTTPS site with Chrome and it is throwing my a self-signed certificate error: net::ERR_CERT_AUTHORITY_INVALID. I have tried clicking the red lock/warning sign button in the URL box of the browser, clicked Details, clicked View Certificate, and clicked on the dropdown of Details. It just shows the information about the Certificate and an Ok button, and there is no way to export it, as I was hoping to export and then import it via my Chrome browser.

I trust the website and I visit it frequently, so is it bothersome to constantly, bypass it manually through the warning sign.

So is there a way to permanently ignore the self-signed certificate error using Chrome?

Improve this question
10
  • Add the certificate to your certificate store. How you do that depends on the OS your using l.
    – Ramhound
    Commented Oct 12, 2016 at 11:58
  • @Ramhound I am using Windows
    – Ly Maneug
    Commented Oct 12, 2016 at 16:36
  • You should update your question to reflect that fact, and then clarify, what you have or have not done with regards to that. "So is there a way to permanently ignore the self-signed certificate error using Chrome?" It is possible to have the warning go away permanently for a given chrome session, but how you do that, depends on which version of Chrome your using. In Chrome 50, if you type badidea, it allow continued access to the website with a bad ssl certificate. What it is in the current version would have to be researched by you.
    – Ramhound
    Commented Oct 12, 2016 at 16:41
  • @Ramhound Currently I am using Chrome 53. Do different Chrome versions require different methods? Or is there one method that works on all versions? Would prefer the latter although it takes longer.
    – Ly Maneug
    Commented Oct 12, 2016 at 16:50
  • 3
    Does this answer your question? How can I get Chrome accepting self signed certificates?
    – sleske
    Commented Jul 28, 2022 at 11:01

1 Answer 1

Reset to default
0

This seemed to work:

  1. Download rootsupd.exe

  2. Extract the files using the command rootsupd.exe /c /t:C:\temp\extroot

  3. From C:\temp\extroot, run the following four commands (from an elevated command prompt):

    updroots.exe authroots.sst
updroots.exe updroots.sst
updroots.exe -l roots.sst
updroots.exe -d delroots.sst
Improve this answer
1
  • 1
    Self-signed certificates should never be used, as they have no Chain of Trust and are therefore insecure and pointless; the recommended way is to create a self-signed CA, using that CA to sign the certificate via an openssl.cnf - please see this answer for how to do so. Once the CA has signed the cert, add the CA to the Trusted Root Certification Authorities via certmgr.msc, and if using an ICA, also add the ICA to the Intermediate Certification Authorities.
    – JW0914
    Commented Mar 29, 2022 at 12:14

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .