Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

No “Proceed Anyway” option on NET::ERR_CERT_INVALID in Chrome on MacOS

Tags:

macos

google-chrome

ssl

localhost

macos-catalina

People also ask

How do I enable certificates in Chrome on Mac?

cer extension. In the Chrome menu, navigate to Preferences, Under the Hood, Security, Manage Certificates. Click on the plus “+” icon to add a certificate.

FYI: Chrome on MacOS treats this different than Windows. MacOS version won't see the proceed button even you click advanced button.

To still proceed the visit as you are sure this page is safe, here is a easy way to do:

There's a secret passphrase built into the error page. Just make sure the page is selected (click anywhere on the screen), and just type thisisunsafe.

Ref: https://twitter.com/zairwolf/status/1196878125734486021


There is a hidden way to bypass that error, even if no button allows it. Of course, this should be used for your own sites only – where you are perfectly sure that site is not hacked, but simply local and therefore without a valid internet certificate.

Simply click anywhere on the denial page and type “thisisunsafe”.

Sounds crazy, but works to bypass chrome’s supervision of your safety. Chrome should get kicked for not accepting the certificate of devices in my local network. This is not IoT, this is "Ny Net"!


This solution worked for me.

  • Right click, select inspect element
  • click on console tab
  • Copy paste sendCommand(SecurityInterstitialCommandId.CMD_PROCEED) press Enter

Boom! it should load the page :)


To make even macOS Chrome show the "Proceed" link under advanced, make sure to create the certificate with the TLS Web Server Authentication in the X509 extensions.

Here's a oneliner to create with that extension:

openssl req \
  -newkey rsa:2048 \
  -x509 \
  -new \
  -nodes \
  -keyout server.key \
  -out server.crt  \
  -subj /CN=test1   \
  -sha256  \
  -days 3650  \
  -addext "subjectAltName = DNS:foo.co.uk,IP:127.0.0.1,IP:192.168.1.1" \
  -addext "extendedKeyUsage = serverAuth"

If you MacOS openssl does not have addext option, then use this alternate form:

openssl req \
  -newkey rsa:2048 \
  -x509 \
  -nodes \
  -keyout server.key \
  -new \
  -out server.crt \
  -subj /CN=test1 \
  -extensions v3_new \
  -config <(cat /System/Library/OpenSSL/openssl.cnf \
  <(printf '[v3_new]\nsubjectAltName=DNS:a.spectrocloud.com\nextendedKeyUsage=serverAuth')) \
  -sha256 \
  -days 3650

The key being extendedKeyUsage=serverAuth.

Related questions

How do I create a nice-looking DMG for Mac OS X using command-line tools?
Where can I find "make" program for Mac OS X Lion?
Installing R on Mac - Warning messages: Setting LC_CTYPE failed, using "C"
How to copy a selection to the OS X clipboard
Linux equivalent of the Mac OS X "open" command [closed]
How do you update Xcode on OSX to the latest version?
Install / upgrade gradle on Mac OS X
"ERROR:root:code for hash md5 was not found" when using any hg mercurial commands
What is the difference between MacVim and regular Vim?
How do I upgrade to Python 3.6 with conda?
`date` command on OS X doesn't have ISO 8601 `-I` option?
How do I edit $PATH (.bash_profile) on OS X?
Easy way to see saved NSUserDefaults?
Finding Android SDK on Mac and adding to PATH
What kind of leaks does automatic reference counting in Objective-C not prevent or minimize?
Cannot install Lxml on Mac OS X 10.9
(Mac) -bash: __git_ps1: command not found
How can I use xargs to copy files that have spaces and quotes in their names?
Getting the difference between two Dates (months/days/hours/minutes/seconds) in Swift
Force DOM redraw/refresh on Chrome/Mac

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!