Websites need to implement a few stringent security measures to safeguard user data and respect their privacy. These include adopting the HTTPS Protocol as well as using the SSL Certificate. The latter, also known as the Secure Socket Layer, creates an encrypted pathway for the transfer of data between the client and the server.
However, there could still be some sites that haven’t yet incorporated SSL security on their sites. Likewise, some websites might be having the certificate, but they could be using an outdated version, or even worse, an expired SSL certificate.
Sensing the danger of browsing such websites, Chrome will straightaway show you the ERR_CERT_AUTHORITY_INVALID error. Along the same lines, you might also get the “Your connection is not private” error message.
In this regard, the sole responsibility lies in the hand of website owners to keep their SSL certificates up to date. Likewise, a few things could be done from our end as well. Though the webmaster has updated the certificate, we may still encounter this error due to outdated cache storage. And in this guide, I have shared just to fix the SSL certificate error.
Disable Firewall’s SSL Check
Most antivirus programs come embedded with the Firewall app as well. The major function is to prevent the user from accessing sites that don’t follow the SSL protocol. At the same time, they also give users the flexibility to temporarily disable this setting.
As far as the aforementioned error is concerned, it might be the case that the Firewall isn’t letting you access the non-SSL websites. To bypass this restriction, you might need to disable this functionality of your Firewall/Antivirus app. Here’s how it could be done:
- BitDefender: Settings > Privacy Control > Antiphishing > Set Scan SLL to Off.
- Kaspersky: Settings > Extend > Network Settings > Disable SSL Settings.
- Avast: Settings > Active Protection > Web Shield > Customize > Untick the Enable HTTPS Scanning option.
On the other hand, there isn’t any option to disable SSL on Windows Firewall. You could instead temporarily disable the Firewall while you are browsing the site.
- Open the Start menu and search for Windows Defender Firewall.
- Click on Turn Windows Defender Firewall On or Off from the left menu bar.
- Enable checkbox Turn off Windows Defender Firewall under both the Public and Private networks.
Do keep in mind that browsing the web while keeping the Firewall disabled might prove to be quite risky. So only do so if visiting that website is of paramount importance and there are no alternatives around.
Delete Chrome’s Cache
In some instances, the website might have already updated its SSL certificate but your browser would still show the ERR_CERT_AUTHORITY_INVALID error. The reason could be attributed to the fact that rather than loading that website from the scratch, the browser is still showing the cached copy of the site. To fix this issue, you would have to delete the browser’s cache files.
Here are the steps to clear browser cache data from chrome:
- Launch the Chrome browser and head over to its Settings page.
- Then scroll to the Privacy and Security section and click on Clear Browsing Data.
- Select Cookies and other related data and Cached images and files.
- Likewise, also change the Time Range to All Time.
- Finally, hit the
Once the temporary files have been deleted, relaunch Chrome and check if the error has been rectified or not.
Deleting the cache might slow down the starting of the website when it loads for the first time. However if it manages to fix the underlying issue, then it is worth the wait.
Delete System’s SSL Cached Files (Windows)
Verifying each time if the Secure Socket Layer is implemented in the websites might slow down the entire load time of the concerned sites. In this regard, the system saves the SSL state for each website that you visit. So rather than performing the SSL check repeatedly, the browser simply picks up this information from the system’s cached SSL files.
However, if the concerned site has just added or updated its SSL, then it wouldn’t be reflected in your browser (since it is still picking up the older cached files). So to rectify this issue, you should consider deleting the system’s preserved SSL states.
Here are the steps to delete cached SSL certificate from Windows OS:
- Launch Control Panel via the Start menu.
- Change its View by menu to Large Icons and select Internet Options.
The Internet Properties window will open.
- Switch to the Content tab and hit on the Clear SSL State command.
- Once that is done, click and then .
Now reopen Chrome and see if the ERR_CERT_AUTHORITY_INVALID error has been fixed or not.
The biggest drawback with this method is it ends up deleting the stored SSL state of all the websites (rather than giving us the option to do so for the site of our choice). As a result, the next time you browse any site via Chrome, it will first perform the SSL check from scratch which in turn might consume your few valuable seconds.
But again, I would like to reiterate the same statement — if this waiting time gives out fruitful results, then it’s worth the wait.
Bottom Line: Fix Chrome Invalid Certificate
So these were the various methods to fix Chrome’s ERR_CERT_AUTHORITY_INVALID error. With the risks of online privacy at an all-time high, it is always a safe idea to only browse sites that provide a safe and secure environment.
In this regard, the HTTPS protocol and the SSL Certificate proves to be among the most important prerequisites. Any issues with its authentication might lead to the aforementioned error. Fortunately, you are now pretty much aware of the methods to rectify it.
With that said, the second method in my case gave out desirable results. The website that I was browsing had just renewed its SSL certificate but the browser was still loading the cached data of that site. Upon deleting those cache files and reloading the site, the issue was rectified.
On that note, we conclude this guide. Do let us know in the comments which method managed to spell out success for you.
FAQs: Fix: ERR_CERT_AUTHORITY_INVALID in Chrome
Now, let us go through frequently asked questions regarding how to fix ERR_CERT_AUTHORITY_INVALID in Chrome.
What are the major fixes for ERR_CERT_AUTHORITY_INVALID in Chrome?
The major fixes for ERR_CERT_AUTHORITY_INVALID in Chrome include disabling Firewall’s SSL Check, deleting System’s SSL Cached Files, and deleting Chrome’s Cache.
How to delete Chrome’s Cache?
Launch the Chrome Browser and head over to its Settings Page. Now, scroll to the Privacy and Security section and click on Clear Browsing Data. Select Cookies and other related data and Cached images and files. Likewise, also change the Time Range to All Time. Finally, hit the Clear Data button.
How to delete System’s SSL Cached Files?
Launch Control Panel via the Start menu and change its View by menu to Large Icons and select Internet Options. Now, switch to the Content tab and hit on the Clear SSL State command. Once that is done, click Apply and then OK.