SSL 是Secure Sockets Layers的首字母缩写词。这是一个全球公认的安全协议,负责确保您在互联网上访问的网站是安全的。
证书颁发机构(Certificate Authorities)(CA) 向网站颁发SSL安全证书,让您知道 Web 服务器和您的 Internet 浏览器之间交换的数据是加密的。
(Websites with an HTTPS prefix)URL地址开头带有 HTTPS 前缀的网站具有SSL安全证书。另一个视觉线索是浏览器地址栏中网站URL左侧的锁定图标。这些迹象表明网站具有SSL安全证书,即网站是安全的。
在使用Chrome时,您一定会遇到一些SSL安全证书错误。有些特定于一个网站,而另一些则影响所有网站。有时,这些Google Chrome安全错误的发生是因为您的浏览器或网站服务器出现问题。其他时候,这些错误的原因很难确定。
SSL证书错误也有不同含义的唯一错误代码。在本故障排除指南中,我们将向您展示其中一些错误代码的含义、导致错误的因素以及如何修复它们。
在尝试以下任何解决方案之前,请重新加载受影响的网站或重新启动Chrome。Chrome中的(Chrome)安全(Security)证书错误有时是由于浏览器的临时故障造成的。如果是这种情况,重新加载页面或重新启动Chrome可能会解决问题。否则,请继续执行下一节中推荐的解决方案。
1. 更新计算机的日期和时间(1. Update Your Computer’s Date & Time)
如果您计算机的时间和日期设置不正确,当您浏览网页时, Chrome中可能会弹出以下SSL错误代码。(SSL)
- 网络::ERR_CERT_DATE_INVALID
- NET::ERR_CERT_AUTHORITY_INVALID
修复此错误并防止将来再次发生的一种方法是将您的计算机配置为自动更新其日期和时间设置。
在 Windows 上启用自动日期和时间更新(Enable Automatic Date & Time Update on Windows)
请按照以下步骤将您的 Windows 10 计算机设置为始终保持更新。
1. 启动Windows 设置(Windows Settings)应用程序并单击时间和语言(Time & Language)。
2. 检查自动设置时间和自动(Set time automatically)设置时区(Set time zone automatically)选项均已启用。
3. 滚动到同步(Synchronize)您的时钟部分,然后单击立即同步(Sync now)按钮。这将立即将您的 PC 的日期和时间配置与Window Time Server同步。
将您的时钟与 Windows 的时间(Time) 服务器(Server)同步是即时的。但是,它需要有效的互联网连接。因此,请确保将计算机连接到互联网,否则您可能会收到“时间(Time)同步失败”错误消息。
在 Mac 上启用自动日期和时间更新(Enable Automatic Date & Time Update on Mac)
以下是如何将 Mac 的日期和时间设置配置为自动更新。
1. 转到系统偏好设置(System Preferences)并选择日期和时间(Date & Time)。
2. 转到日期(Date)和时间(Time)选项卡,然后单击菜单左下角的锁定图标以编辑 Mac 的日期设置。(lock icon)
3. 输入您设备的密码或使用 Touch ID 进行身份验证。
4. 现在,选中自动设置日期和时间(Set date and time automatically)选项。
2. 在隐身模式下使用 Chrome(2. Use Chrome in Incognito Mode)
扩展非常棒,很有帮助,并且在它们正常工作时可以提高您的工作效率。但是,糟糕的构建可能会破坏您的互联网浏览体验。隐身模式(Incognito Mode)会暂时禁用所有第三方扩展。
这可以帮助确定恶意扩展程序是否对 Google Chrome 的安全错误负责。点击右上角的三点菜单图标,然后选择新建隐身窗口(New Incognito Window)。
如果您在隐身窗口中浏览受影响的网站时在Chrome(Chrome)中没有收到SSL安全证书错误,则您可能安装了错误的扩展程序。继续下一部分以了解如何删除错误的扩展名。
3. 删除 Chrome 扩展(3. Remove Chrome Extensions)
正如我们已经确定的那样,恶意扩展可能会导致Chrome中的(Chrome)SSL安全证书错误。如果这些证书错误在安装新扩展后开始出现,请禁用扩展并重试。
- 单击三点菜单图标(three-dotted menu icon)并选择更多工具(More Tools)。单击扩展程序(Extensions)以启动 Chrome 的扩展程序菜单。
- 关闭(Toggle)您认为导致问题的任何最近安装的扩展程序,并检查是否可以解决证书错误。
如果禁用扩展后错误停止,那么您已经找到了罪魁祸首。我们建议您从浏览器中卸载此类扩展程序。转到扩展(Extensions)设置页面,然后单击扩展下方的删除按钮。(Remove)最后,单击提示上的“删除(Remove)”按钮以卸载扩展程序。
有更多方法可以从浏览器中删除扩展。请参阅我们关于安装和卸载 Chrome 扩展程序的完整教程(full tutorial on installing and uninstalling Chrome extensions)以了解更多信息。
4. 清除网站 Cookie(4. Clear Website Cookies)
Chrome还会在(Chrome)隐身(Incognito)模式下阻止第三方 Cookie 。因此,如果禁用扩展不能解决问题,请尝试清除Chrome的 cookie 和缓存数据。
如果错误是特定网站特有的,请清除该网站的 cookie 和其他附属数据。
- 在地址栏中输入此地址(chrome://settings/siteData),然后按Enter。
- 选择受影响网站旁边的删除图标以清除其 cookie。您可以将网站的URL(URL)粘贴到搜索栏中以快速找到其 cookie。
- 要清除所有网站的 cookie,请点击全部删除(Remove All)按钮。
如果删除 cookie 不能解决问题,请尝试清除 Chrome 的缓存文件。
5.删除Chrome的缓存文件(5. Delete Chrome’s Cache Files)
Chrome将您访问的网站的数据存储在临时缓存文件中。这些数据有助于Chrome更快地加载您的网站。如果这些缓存文件损坏,您可能会在浏览某些网站时遇到困难。
Chrome会缓存某些网站的SSL证书。如果网站获得的新SSL证书与(SSL)Chrome内存中的证书不同,则可能会出现与SSL相关的错误。清除浏览器的缓存数据,看看是否能解决问题。
- 单击 Chrome 的菜单图标并选择更多工具(More Tools)。然后,从菜单中单击清除浏览数据。(Clear Browsing Data)或者,将此URL命令快捷方式 — chrome://settings/clearBrowserData — 粘贴到地址栏中,然后按键盘上的Enter 。当您可以清除 Chrome 的数据时,这会将您重定向到设置页面。
- 将时间范围设置为所有时间(All time),检查缓存的图像和文件(Cached images and files)选项,然后单击清除数据(Clear data)按钮继续。
6. 禁用防病毒软件的 SSL 扫描(6. Disable SSL Scanning from Antivirus)
许多防病毒软件具有互联网保护功能,可能会导致Chrome和其他浏览器出现SSL证书错误。例如, HTTPS(HTTPS)扫描是您可以在许多防病毒程序中找到的安全协议。此功能可保护您的计算机免受SSL加密网站带来的恶意软件和其他安全风险。
尽管HTTPS扫描会阻止恶意和不安全的网站,但它有时会错误地阻止安全和安全的网站。如果您仍然收到与Chrome上的(Chrome)SSL安全证书相关的错误,请禁用防病毒软件的SSL或HTTPS扫描功能,然后重试。
转到防病毒设置菜单并禁用HTTPS扫描或其他与互联网安全/保护相关的功能。如果错误仍然存在,请重新启用HTTPS扫描并尝试下面的下一个解决方案。
7. 重置谷歌浏览器设置(7. Reset Google Chrome Settings)
如果您可以在其他浏览器上访问受影响的网站,则您的Google Chrome(Google Chrome)可能存在问题。将浏览器恢复为默认设置可以解决此问题。
注意:(Note:)重置Chrome设置将禁用所有扩展程序;撤销网站权限和偏好;重置主页和启动选项卡;并清除您的浏览数据。以下内容不会被删除:浏览历史记录、书签和保存的密码。
要重置Chrome,请将此URL命令chrome://settings/resetProfileSettings )粘贴到地址栏中,然后按键盘上的Enter 。单击提示上的重置设置(Reset settings)以继续。
8. 联系网站管理员(8. Contact Website Administrator)
SSL证书是基于订阅的,这意味着它们通常需要定期更新。如果网站的SSL证书过期并且管理员未能更新身份验证许可证,您可能会在Chrome中遇到以下SSL安全错误:
- NET::ERR_CERT_AUTHORITY_INVALID
- NET::ERR_CERT_COMMON_NAME_INVALID
- NET::ERR_CERT_REVOKED
- NET::ERR_CERT_AUTHORITY_INVALID
- ERR_SSL_WEAK_EPHEMERAL_DH_KEY
- ERR_SSL_VERSION_OR_CIPHER_MISMATCH
如果网站使用过时的SSL(SSL)安全代码或Chrome不信任证书颁发机构(Certificate Authority)(CA)(即颁发SSL证书的实体),也有可能遇到这些错误。如果Chrome发现可疑证书,它将不会加载该网站。
如果您因Chrome(Chrome)或其他浏览器中的任何这些安全证书错误而无法访问网站,请通过电子邮件或社交媒体联系网站管理员。
作为网站所有者或管理员,检查您网站的SSL证书的状态和有效性(DigiCert(diagnostic tool by DigiCert)的这个诊断工具很棒)。如果过期,请更新SSL证书或安装新(install a new one)证书。
安全浏览互联网(Browse the Internet Securely)
为了在互联网上保持安全,我们建议在具有(stay safe on the internet)SSL安全证书的网站上共享机密信息(例如银行详细信息、信用卡号、社会保险号、地址等) 。这些网站是安全的。
如果Chrome(Chrome)无法验证网站的SSL证书以及其他原因,则会显示这些安全错误。本文中的至少一种解决方案应该可以修复该错误。如果您需要进一步帮助解决Chrome(Chrome)中的安全证书错误,请在下方留言;我们很乐意提供帮助。
How to Fix SSL Security Certificate Errors in Chrome
ЅSL is the acronym for Secure Sockets Layers. This is a globally-recognized security protocol responsible for ensuring that the websites that you visit on the internet are secure.
Certificate Authorities (CA) issue SSL security certificates to websites to let you know that the data exchanged between the web server and your internet browser is encrypted.
Websites with an HTTPS prefix at the beginning of the URL address have SSL security certificates. Another visual clue is the lock icon to the left of the website’s URL in your browser’s address bar. These are indications that a website has an SSL security certificate, i.e. the website is secure.
You’re bound to encounter some SSL security certificate errors when using Chrome. Some are specific to a website, while others affect all websites. Sometimes, these Google Chrome security errors occur because there’s a problem with your browser or the website’s server. Other times, the causes of these errors are difficult to ascertain.
SSL certificate errors also have unique error codes with different meanings. In this troubleshooting guide, we’ll show you what some of these error codes mean, the factors causing the errors, and how to get them fixed.
Before you try any of the solutions below, reload the affected website or restart Chrome. Security certificate errors in Chrome are sometimes due to temporary glitches with the browser. If that’s the case, reloading the page or restarting Chrome might fix the problem. Otherwise, proceed to the recommended solutions in the next section.
1. Update Your Computer’s Date & Time
If your computer’s time and date settings are incorrect, the following SSL error codes could pop-up in Chrome as you browse web pages.
- Net::ERR_CERT_DATE_INVALID
- NET::ERR_CERT_AUTHORITY_INVALID
One way to fix this error and prevent future occurrences is to configure your computer to automatically update its date and time settings.
Enable Automatic Date & Time Update on Windows
Follow the steps below to set your Windows 10 computer to always stay updated.
1. Launch the Windows Settings app and click Time & Language.
2. Check that the Set time automatically and Set time zone automatically options are both enabled.
3. Scroll to the Synchronize your clock section and click the Sync now button. That will immediately synchronize your PC’s date and time configuration with the Window Time Server.
Syncing your clock with Windows’ Time Server is instant. However, it requires an active internet connection. So, make sure you connect your computer to the internet otherwise you may get a “Time synchronization failed” error message.
Enable Automatic Date & Time Update on Mac
Here’s how to configure your Mac’s date & time settings to update automatically.
1. Go to System Preferences and select Date & Time.
2. Go to the Date & Time tab and click the lock icon at the bottom-left corner of the menu to edit your Mac’s date settings.
3. Enter your device’s password or use Touch ID to authenticate the process.
4. Now, check the Set date and time automatically option.
2. Use Chrome in Incognito Mode
Extensions are great, helpful, and can boost your productivity when they work correctly. However, the badly-built ones can ruin your internet browsing experience. Incognito Mode temporarily disables all third-party extensions.
That can help determine whether malicious extensions are responsible for Google Chrome’s security errors. Tap the three-dotted menu icon at the top-right corner and select New Incognito Window.
If you don’t get the SSL security certificate errors in Chrome while browsing the affected website(s) in an incognito window, you’ve probably installed a bad extension. Proceed to the next section to learn how to remove the erring extension(s).
3. Remove Chrome Extensions
As we’ve already established, malicious extensions can cause SSL security certificate errors in Chrome. If these certificate errors began to surface after installing a new extension, disable the extension and try again.
- Click the three-dotted menu icon and select More Tools. Click Extensions to launch Chrome’s Extension menu.
- Toggle off any recently-installed extension that you think is responsible for the problem and check if that resolves the certificate errors.
Should the error stop after disabling the extension, then you’ve found the culprit. We advise that you uninstall such extension(s) from your browser. Go to the Extensions settings page and click the Remove button below the extension. Finally, click the Remove button on the prompt to uninstall the extension.
There are more ways to remove extensions from the browser. Refer to our full tutorial on installing and uninstalling Chrome extensions to learn more.
4. Clear Website Cookies
Chrome also blocks third-party cookies in Incognito mode. So if disabling extensions doesn’t fix the issue, try clearing the Chrome’s cookies and cache data.
If the error is peculiar to a specific website, clear the site’s cookie and other affiliated data.
- Enter this address — chrome://settings/siteData — into the address bar and press Enter.
- Select the delete icon next to the affected website to clear its cookie. You can paste the website’s URL into the search bar to quickly locate its cookie.
- To clear the cookies for all websites, tap the Remove All button.
If deleting a cookie doesn’t fix the problem, try clearing Chrome’s cache files.
5. Delete Chrome’s Cache Files
Chrome stores data from websites you visit in temporary cache files. This data helps Chrome to load your website faster. Should these cache files get corrupt, you may encounter difficulties navigating certain websites.
Chrome caches the SSL certificates of some websites. If a website gets a new SSL certificate different from the one in Chrome’s memory, SSL-related errors may arise. Clear your browser’s cache data and see if that fixes the problem.
- Click Chrome’s menu icon and select More Tools. Afterward, click Clear Browsing Data from the menu. Alternatively, paste this URL command shortcut — chrome://settings/clearBrowserData — in the address bar and press Enter on your keyboard. That will redirect you to the settings page when you can clear Chrome’s data.
- Set the Time range to All time, check the Cached images and files option, and click the Clear data button to proceed.
6. Disable SSL Scanning from Antivirus
Many antivirus software have internet protection features that can result in SSL certificate errors in Chrome and other browsers. HTTPS scanning, for example, is a security protocol you’ll find in many antivirus programs. This feature protects your computer against malware and other security risks posed by SSL-encrypted websites.
Although HTTPS scanning blocks malicious and unsafe websites, it sometimes blocks safe and secure websites in error. If you’re still getting errors relating to SSL security certificates on Chrome, disable your antivirus’ SSL or HTTPs scanning feature and try again.
Go to the antivirus settings menu and disable HTTPS scanning or other features relating to internet security/protection. If the errors persist, re-enable HTTPS scanning and try the next solution below.
7. Reset Google Chrome Settings
If you can access the affected website(s) on a different browser, there’s probably a problem with your Google Chrome. Restoring the browser back to its default settings could fix this problem.
Note: Resetting Chrome settings will disable all extensions; revoke website permissions and preferences; reset homepage & startup tabs; and clear your browsing data. The following will not be deleted: browsing history, bookmarks, and saved passwords.
To reset Chrome, paste this URL command—chrome://settings/resetProfileSettings— in the address bar and press Enter on your keyboard. Click Reset settings on the prompt to proceed.
8. Contact Website Administrator
SSL certificates are subscription-based, meaning they often have to be renewed periodically. You may encounter the following SSL security errors in Chrome if a website’s SSL certificate expires and the administrator fails to renew the authentication license:
- NET::ERR_CERT_AUTHORITY_INVALID
- NET::ERR_CERT_COMMON_NAME_INVALID
- NET::ERR_CERT_REVOKED
- NET::ERR_CERT_AUTHORITY_INVALID
- ERR_SSL_WEAK_EPHEMERAL_DH_KEY
- ERR_SSL_VERSION_OR_CIPHER_MISMATCH
There’s also a possibility of getting hit with these errors if a website is using an outdated SSL security code or Chrome doesn’t trust the Certificate Authority (CA) — i.e. the entity that issued the SSL certificate. If Chrome finds a suspicious certificate, it won’t load the website.
If you cannot visit a website due to any of these security certificate errors in Chrome or other browsers, contact the website administrator— via email or social media.
As a website owner or administrator, check the status and validity of your site’s SSL certificate (this diagnostic tool by DigiCert is great). If expired, renew the SSL certificate or install a new one.
Browse the Internet Securely
To stay safe on the internet, we recommend sharing confidential information (e.g. bank details, credit card numbers, social security number, addresses, etc.) on websites with SSL security certificates. These websites are secure.
Chrome will present these security errors if it’s unable to verify a website’s SSL certificates among other reasons. At least one of the solutions in this article should fix the error. Drop a comment below if you need further assistance resolving a security certificate error in Chrome; we’re happy to help.