NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED – How to Fix

8 votes, average: 3.00 out of 58 votes, average: 3.00 out of 58 votes, average: 3.00 out of 58 votes, average: 3.00 out of 58 votes, average: 3.00 out of 5 (8 votes, average: 3.00 out of 5, rated)
Loading...

“NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED” error in Google Chrome – Ultimate Guide to rid of this error

ERR_CERTIFICATE_TRANSPARENCY_REQUIRED” message occurs when you try to visit HTTPS websites that is having SSL/TLS certificate errors and creates issues with the connection between your device and the remote server. Most frequently, it is the result of an SSL certificate being corrupted, expired, or misconfigured.

Certificate Transparency (CT) is an internet security standard that mandates the practice of maintaining public logs of all the digital certificates that are issued by trusted certificate authorities (CAs). The log is used to detect SSL certificates that have been mistakenly or maliciously issued by a certificate authority without the domain owner’s knowledge. Since 2013, it’s compulsory to log the details of an issued digital certificate in CT logs.

“NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED” error in Google Chrome

There are two main reasons you’re seeing a “ERR_CERTIFICATE_TRANSPARENCY_REQUIRED” error message.

  • The SSL certificate of the website you’re trying to visit is not added to the Certificate Transparency log by the certificate authority (CA). This might indicate potential fraud or mere negligence on the part of the CA.
  • The website owner requested that the certificate authority not add their domain name and/or subdomains to the Certificate Transparency log to keep the certificate information private.

Solutions for Website Owners

Solution 1: Contact your CA and report the issue. Ask them to add your website to the CT log immediately. Ask them whether there is any technical error on their end; if so, reissue the SSL certificate and reinstall it. If you don’t get a prompt response from your current CA, don’t wait to change certificate authorities.

DigiCert was the first certificate authority that implemented Certificate Transparency. If you buy RapidSSL from DigiCert, you won’t face any such negligence — ever.

Solution 2: If you’ve intentionally chosen and requested that your CA not log your domain/subdomains in the Certificate Transparency log, apply the CT exemption policy to corporate-managed devices with Chrome/Chromium-based applications.

Solutions for Website Visitors

As we’ve mentioned, it’s the responsibility of the website owner and their certificate authority to eliminate the root cause of this SSL related error. The best thing you can do as a site visitor is to contact the site owner and ask them to resolve the issue.

But there are some things you can do from your end to access the page despite the error — and that involves ignoring the error. Although the following steps will not resolve the problem, they will allow you to access the site and ignore the error on a temporary basis.

You should employ one of these solutions only when you’re totally sure that the website is safe.

  • Some antivirus software and firewalls are highly sensitive to SSL errors if they have enabled “HTTPS protection” or “HTTPS scanning.” You can disable your antivirus program for a while to visit the website — just don’t forget to reactivate the antivirus once you’re done visiting the website!
  • Temporarily ignore the SSL error (not recommended)
    • Type “Chrome://flags” in Chrome’s address bar.
    • Locate the following option and select enable in the dropdown menu on the right side.
Insecure source setting in Google Chrome

Note: Disable this option as soon as you’re done working to return your browser to more secure settings.

  • Manually ignore certificate error (not recommended)
    • Right-click on the Chrome icon on your desktop — navigate to properties and select shortcut.
    • Type “-ignore-certificate-errors” after /chrome.exe in the target field. Press apply, and then OK. Restart the Chrome browser.
Google Chrome Properties Setting
  • If your web browser is outdated and doesn’t support the existing version of the SSL certificate’s encryption algorithm, update your browser. To update your Chrome browser:
    • Type chrome://settings/help in the Chrome address bar.
    • Chrome will automatically update itself.
    • Click Relaunch.
About Google Chrome Version
  • If the cookies in your browser are creating the issue:
    • Go to Chrome, click on the menu on the top right side of your screen.
    • Select new incognito window.
    • Go to Chrome. Click on the top-right menu.
    • Navigate to more tools.
    • Click on extensions.
    • Make your changes:
    • Turn on/off: Turn the extension off.

If the incognito page opens without an error, the issue is with a Chrome extension. You need to turn off the extensions.

  • Google Chrome Default Setting. Type Chrome://settings in Chrome Address bar.
    • Click on ‘Advanced’
    • Locate ‘Reset settings to their original defaults’ under Reset and clean up
    • Click on ‘Reset setting’ tab from the box.
  • If none of the other options work, you’ll want to try to clear your SSL state:
    • Go to your computer’s control panel; select Network and Internet and click on Internet Options.
    • In the Content tab,  click clear SSL state.
Computer Network and Internet Settings

Buy SSL Certificates – Save 79%

At RapidSSLOnline we offer the cheapest SSL certificates at an incredibly discounted rate, starting from only $12.42/yr. We offer a 30-day money back guarantee and 24/7 support to help you implement your SSL certificate.

Shop for RapidSSL Certificates

Shop for DV SSL Certificates