Support Center > Search Results > SecureKnowledge Details
Certificates generated by HTTPS Inspection are not trusted in Chrome when a third-party subordinate CA is used Technical Level
Symptoms
  • The certificates generated by HTTPS Inspection are invalid to Chromium based browsers (Chrome, Chromium, Opera). The error message is: NET::ERR_CERT_INVALID.

    • Third-Party Subordinate CA / Intermediate CA is used for HTTPS Inspection.
    • The Subordinate CA / Intermediate CA has an Elliptic Curve public key (i.e., instead of RSA).
    • When the same type of Subordinate CA is generated with an RSA public key, the problem does not occur.
Cause

HTTPS Inspection certificates are not being generated and signed correctly when a Subordinate CA generated with an EC Public Key is used.


Solution
Note: To view this solution you need to Sign In .