NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Bart Sipes · ‎Apr 09 2019

I'm getting a privacy error attempting to connect to a corporate intranet page. The specific error is NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

I have the domain added to the certificate transparency URL exclusion list as is specified in https://www.chromium.org/administrators/policy-list-3#CertificateTransparencyEnforcementDisabledForU... which works fine with Google Chrome. However it does not appear that it's working with Edge.

I'm using Version 74.1.96.24 (Official build) dev (64-bit).

Eric_Lawrence · ‎Apr 10 2019

@Bart Sipes Thanks for the report; please file this issue using the Feedback button for tracking.

The problem you're encountering at this time is that Edge's policies are not read from Chrome's policy location.

I am curious to learn more details of your issue, however-- What is the hostname and the CA in use? (Feel free to email me directly ericlaw@). It's unexpected that many environments will hit this issue. In most cases like this, the CA root certificate used by the enterprise is considered a "legacy" root and thus CT is not enforced. In contrast, public CAs working under the baseline requirements should be issuing with CT and will not issue to "dotless" hostnames. Rare exceptions include Microsoft (which has a CA that is both trusted by default and issues our intranet certificates).

Bart Sipes · ‎Apr 10 2019

@Eric_LawrenceThanks Eric. I submitted this via the feedback button and also sent you an email.

NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Re: NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Re: NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Products (50)

Special Topics (27)

Video Hub (462)

Most Active Hubs

Most Active Hubs

Video Hub

NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Re: NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED

Re: NET::ERR_CERTIFICATE_TRANSPARENCY_REQUIRED