Google Chrome limits the validity of SSL Certificates to one year

Dear Edge developers Google has recently announced to limit the validity of certificate to one year (398 days) starting in September 2020 (see https://www.certisur.com/en/google-chrome-limits-the...

certificate

https

validity

Eric_Lawrence
Jul 02, 2020
stesch79 These changes apply to certificates that are rooted to a public CA trust anchor. Certificates that are rooted to a private PKI CA (“locally-trusted anchor”) are not limited this way.

See also https://source.chromium.org/chromium/chromium/src/+/master:net/docs/certificate_lifetimes.md?q=certificate%20lifetime&ss=chromium&originalUrl=https:%2F%2Fcs.chromium.org%2F

DarrenRD

Copper Contributor

Eric_Lawrence I have a similar question . We also use Cisco AnyConnect using Internal CA and issued User certificate EKU client authentication (User Template) and our VPN appliances uses internal CA as well EKU server authentication certificate (WebServer template) . Can you please confirm what happens with the validity check in this case?

Thanks

Eric_Lawrence

Microsoft

Sep 18, 2020

Internal CAs not chained to a public root do not change.
Client authentication certificates do not change.

Forum Discussion

Google Chrome limits the validity of SSL Certificates to one year

Share

Resources