Quick Summary
The error "NET::ERR_CERT_AUTHORITY_INVALID" in Chrome indicates that the browser does not trust the SSL certificate presented by the website. This typically means that the certificate was not issued by a recognized Certificate Authority (CA) or that there are issues with the certificate chain.
Common Causes
- Untrusted Certificate Authority: The website's SSL certificate was issued by a Certificate Authority that Chrome does not recognize or trust. This can happen with self-signed certificates or if the CA is not widely accepted.
- Expired Certificate: The SSL certificate has expired, making it invalid. Browsers will refuse to trust expired certificates.
- Incorrect Date and Time on Your Computer: If your computer's date and time are incorrect, the browser may incorrectly assess the validity of the certificate, leading to this error.
- Certificate Chain Issues: The certificate chain is incomplete or broken. The browser cannot verify the certificate back to a trusted root CA.
- Man-in-the-Middle (MITM) Attack or Interception: In rare cases, this error can indicate a MITM attack, where a third party is attempting to intercept your connection. Security software might cause this too by intercepting and re-signing certificates.
- Local Security Software Interference: Antivirus programs, firewalls, or other security software may be interfering with the SSL handshake process and generating this error.
Step-by-Step Fixes
Method 1: Check Your Computer's Date and Time Show Steps ↓
Step 1: Verify that the date and time on your computer are correct. An incorrect date and time can cause certificate validation to fail.
Step 2: Adjust the date and time settings to the correct values. If necessary, synchronize with an internet time server to ensure accuracy.
Method 2: Clear Browser Cache and Cookies Show Steps ↓
Step 1: In Chrome, click the three vertical dots in the top-right corner to open the menu.
Step 2: Go to More tools > Clear browsing data...
Step 3: Select Cookies and other site data and Cached images and files. Make sure the time range is set to All time.
Step 4: Click Clear data.
Method 3: Disable Antivirus/Firewall Temporarily Show Steps ↓
Step 1: Temporarily disable your antivirus or firewall software.
Step 2: Try accessing the website again. If the error disappears, the antivirus/firewall is likely interfering with the connection. Reconfigure your security software to allow connections to the website or exclude it from scanning.
Step 3: Re-enable your antivirus/firewall after testing.
Method 4: Proceed with Caution (Advanced - Not Recommended for Sensitive Data) Show Steps ↓
Step 1: (Use with Extreme Caution and only if you understand the risks involved!) Chrome allows you to proceed to the website despite the certificate error. This should NEVER be done if you are entering sensitive information like passwords or credit card details.
Step 2: On the error page, click on Advanced.
Step 3: Click on Proceed to [website address] (unsafe). This adds an exception for the specific website, but it does not fix the underlying problem and leaves you vulnerable to potential security risks.
Method 5: Check Certificate Details and Trust (Advanced) Show Steps ↓
Step 1: On the error page, click on Advanced and then investigate the certificate details link (usually part of the advanced information displayed).
Step 2: Examine the certificate to see if it is self-signed or the issuer is unknown. Examine the dates of validity. If the certificate is self-signed and you trust the source distributing it (e.g. local private equipment) you can explicitly trust this certificate in your operating system's trust store. However, this is an advanced technique and should only ever be used if you completely trust the certificate, and you should understand that trusting such a certificate does pose a security risk.