Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Google Chrome Client Certificate Popup

I'm implementing a mutual authentication for my client in order to solve not having to continually whitelist some of the agencies with a dynamic ip. The process works fine in all browsers that I've tried in the Windows environment (Windows 7).

The problem is that there is a popup for every time that the user goes to the site. On most browsers, this is a one time occurrence, when you first go to the site for the day. On Google Chrome, however, the popup occurs on what appears to be every POST/GET request. I found how to disable the popup for IE and FF with this link: http://docs.threerings.org.uk/wiki/Certificates_without_prompting, but there is still the problem with Chrome.

I've tried to install the certificate into the Trusted Root Certification Authorities, but I get an error message, "The import failed because the store was read-only, the store was full, or the store did not open correctly.".

If anyone has an idea on what I can do to get around the pop-up for Chrome, it would be greatly appreciated.

like image 781
CadmusPaladin Avatar asked Jan 10 '13 21:01

CadmusPaladin


People also ask

Why do I get Security certificate warnings Chrome?

These symbols let you know how safe it is to visit and use a site. They tell you if a site has a security certificate, if Chrome trusts that certificate and if Chrome has a private connection with a site. Information that you send or get through the site is private.

Why does my browser keep asking for certificates?

An SSL certificate error occurs when a web browser can't verify the SSL certificate installed on a site. Rather than connect users to your website, the browser will display an error message, warning users that the site may be insecure.

How do I disable the warning Chrome gives If a Security certificate is not trusted?

In Chrome, browse to: chrome://flags/ . Search for “insecure” and you should see the option to “Allow invalid certificates for resources loaded from localhost.” Enable that option and restart your browser.


1 Answers

This is what you're looking for: http://www.chromium.org/administrators/policy-list-3#AutoSelectCertificateForUrls

I could tell you how to do it exactly, but my honest opinion is that this is something you have to work out yourself. You need to know what is going on because you are more than likely to run into bugs (not bugs per-se but some undesired or unwanted results).

I have to admit that Google Chrome and Chromium are great browsers, but when it comes to client certificates, they have a lot of improvements to be made.

like image 67
zanbaldwin Avatar answered Oct 19 '22 04:10

zanbaldwin