"NET::ERR_CERT_AUTHORITY_INVALID" errors - only on Chrome/Windows 10

3,499 views
Skip to first unread message

Super Fuzzy

unread,
Feb 4, 2017, 3:07:49 PM2/4/17
to Chromium-discuss
My website is labelled as "Not Secure" only on Chrome in Windows 10.
I can open the same page in Firefox / Windows 10 and also in any browsers including Chrome on Mac.

Developer tools show it is a Certification Error.

I clicked View Certificate button, which tells “This certificate cannot be verified up to a trusted certification authority.

This CA Root certificate is not trusted. To enable trust, install this certificate in the Trusted Root Certification Authorities store.

When I checked Certification Path tab, the following shows up.

x VeriSign Universal Root Certification Authority
 (This CA Root certificate is not trusted because it is not in the Trusted Root Certification Authorities store.)

           Symantec Basic DV SSl CA - G2 (This certificate is OK)

                       www.mywebsite.com (This certificate is OK)

Could someone please help me fix this problem? I am wondering the same error happens for all Windows users watching my website? Or is it just my computer going bonkers?

PhistucK

unread,
Feb 4, 2017, 3:30:38 PM2/4/17
to aiueop...@gmail.com, Chromium-discuss
Looks like something or someone removed that root certificate from your system.
I am using Windows 7 (not 10, sorry) and I can find that root certificate (search for it by going to chrome:settings, scroll down to click on the link that shows the advanced settings and click on the "Manage certificates...", there, go to the "Trusted Root Certification Authorities"). For me, it is the bottommost entry.

Perhaps try running cmd.exe (as an administrator) and enter -
certutil -repairstore

See https://technet.microsoft.com/en-us/library/dn265983.aspx, https://technet.microsoft.com/en-us/library/cc732443(v=ws.11).aspx and similar.

I do not think this is a Chrome issue, but an operating system issue, since Chrome draws the root certificates from Windows (unlike Firefox). I bet Internet Explorer and Edge also show certificate errors.


PhistucK

--
--
Chromium Discussion mailing list: chromium...@chromium.org
View archives, change email options, or unsubscribe:
http://groups.google.com/a/chromium.org/group/chromium-discuss

---
You received this message because you are subscribed to the Google Groups "Chromium-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to chromium-discuss+unsubscribe@chromium.org.

Reply all
Reply to author
Forward
0 new messages