Monday, September 22, 2008

Chrome SSL Certificate Fun

One warning that has become very annoying to me in Firefox and Chrome is the self-signed certificate warning. Many sites on IBM's intranet use self-signed certificates and I hate having to wade through this screen the first time. Chrome uses the the operating systems certificate store so you simply need to add the certificate to your trusted root certificate authorities to bypass the signed certificate problem in Chrome. I found a way to import the certificate using IE on the Chrome Google Group

To import the certificate:

    • Go to the site in IE
    • Go to the security report (View > Security Report) and click 'View certificates'
    • In the Certificate Import Wizard press 'Next' and select 'Place all certificates in the following store'
    • Then choose Trusted Root Certification Authorities
    After that, you simply finish up the wizard and you're all done! Chrome will now see the certificate in the Trusted Root Certification Authorities and will stop throwing up the Certificate Not Trusted screen on any pages that use that certificate. This is very handy for those of us who use many intranet sites that are self signed.
    I imagine there are other, probably better ways so please let me know in the comments if there is an easier way.

    *edit* For those of you wondering if that first picture is a screenshot from my computer, I assure you it is not . I have not updated to Vista nor do I plan on updating to Vista.


    1. Sam

      I too am having problems as you described but your fix doesn't do the job for me. I have the required certificate in the Windows Certificate Manager (Run > certmgr.msc), however, it doesn't appear in the list of certificates that is populated in Settings > Options > "Manage certificates" in Chrome. Is this something new then?

    2. Thanks. Just has been saved a couple of hours trying to resolve this.

    3. This is great. And has saved me a lot of time messing about with Chrome. I also found useful for website security and SSL certificates in general too.

    4. I just finished up reading your blog the first time so I thought I should comment to let you know your stuff is great and you have another follower! Keep the posts coming!

      We just bought a wildcard ssl certificate at ClickSSL. As a first time customer of ClickSSL we are very happy with the service and support.

    5. Your blog has new for SSL certificate. It's really nice information. Thank you so much for sharing it.

      Recent Announcement of RapidSSLonline for Multi Domain SSL at the lowest price and we bought it for first time and we really glad with their support and service value.