Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




2694 posts

Uber Geek
+1 received by user: 769


# 214116 28-Apr-2017 12:17
Send private message

I have various devices that I connect to over the LAN using https which have self-signed certificates (routers, printers, etc). Since they are only being accessed over the LAN I am perfectly happy with self-signed.

 

To avoid security warnings, and to allow Chrome to save the login details, I import the self-signed certificates as Trusted Root Authorities on my PC.

 

However, Chromes latest update to version 58 has broken this.

 

Everything I am reading says it is because of the certificates not having a SAN, however Chrome is reporting two problems with the certificate. One says "Subject Alternative Name Missing" but the other says "ERR_CERT_AUTHORITY_INVALID".

 

What little I can find about this change says that replacing the certs with new self-signed ones that have a SAN will sort both problems, however when I do this it only resolves the first error. I still get the second error "ERR_CERT_AUTHORITY_INVALID" and the cert is still not trusted by Chrome. I have imported the new cert as a Trusted Root Authority.

 

Does anyone now how I can get Chrome to trust a self-signed certificate on version 58?





 Home:                                                           Work:
Home Work


Create new topic


2694 posts

Uber Geek
+1 received by user: 769


  # 1771956 28-Apr-2017 15:22
One person supports this post
Send private message

Figured it out.

 

Chrome now not only insists on a certificate having a SAN, but the CN now has to be a FQDN. So hostname or IP address is no good.


Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Scientists unveil image of quantum entanglement
Posted 13-Jul-2019 06:00


Hackers to be challenged at University of Waikato
Posted 12-Jul-2019 21:34


OPPO Reno Z now available in New Zealand
Posted 12-Jul-2019 21:28


Sony introduces WF-1000XM3 wireless headphones with noise cancellation
Posted 8-Jul-2019 16:56


Xero announces new smarter tools, push into the North American market
Posted 19-Jun-2019 17:20


New report by Unisys shows New Zealanders want action by social platform companies and police to monitor social media sites
Posted 19-Jun-2019 17:09


ASB adds Google Pay option to contactless payments
Posted 19-Jun-2019 17:05


New Zealand PC Market declines on the back of high channel inventory, IDC reports
Posted 18-Jun-2019 17:35


Air New Zealand uses drones to inspect aircraft
Posted 17-Jun-2019 15:39


TCL Electronics launches its first-ever 8K TV
Posted 17-Jun-2019 15:18


E-scooter share scheme launches in Wellington
Posted 17-Jun-2019 12:34


Anyone can broadcast with Kordia Pop Up TV
Posted 13-Jun-2019 10:51


Volvo and Uber present production vehicle ready for self-driving
Posted 13-Jun-2019 10:47


100,000 customers connected to fibre broadband network through Enable
Posted 13-Jun-2019 10:35


5G uptake even faster than expected
Posted 12-Jun-2019 10:01



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.