Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


Paul1977

5041 posts

Uber Geek


#214116 28-Apr-2017 12:17
Send private message

I have various devices that I connect to over the LAN using https which have self-signed certificates (routers, printers, etc). Since they are only being accessed over the LAN I am perfectly happy with self-signed.

 

To avoid security warnings, and to allow Chrome to save the login details, I import the self-signed certificates as Trusted Root Authorities on my PC.

 

However, Chromes latest update to version 58 has broken this.

 

Everything I am reading says it is because of the certificates not having a SAN, however Chrome is reporting two problems with the certificate. One says "Subject Alternative Name Missing" but the other says "ERR_CERT_AUTHORITY_INVALID".

 

What little I can find about this change says that replacing the certs with new self-signed ones that have a SAN will sort both problems, however when I do this it only resolves the first error. I still get the second error "ERR_CERT_AUTHORITY_INVALID" and the cert is still not trusted by Chrome. I have imported the new cert as a Trusted Root Authority.

 

Does anyone now how I can get Chrome to trust a self-signed certificate on version 58?





 Home:                                                           Work:
Home Work


Create new topic
Paul1977

5041 posts

Uber Geek


  #1771956 28-Apr-2017 15:22
Send private message

Figured it out.

 

Chrome now not only insists on a certificate having a SAN, but the CN now has to be a FQDN. So hostname or IP address is no good.


Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00


eero Pro 7 Review
Posted 23-Jul-2025 12:07


BeeStation Plus Review
Posted 21-Jul-2025 14:21


eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01


WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32


RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26


Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24


Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05


Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01


Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01


Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22


Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46


Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42


D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34


Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.