SharePoint Online, Chrome, and "Insecure" sites

MVP

An update to SharePoint Online for some Office 365 tenants clashed with Google’s determination to move from SHA-1 to SHA-2 as the basis for securing web sites. The symptom is that Chrome flags SharePoint sites as “Not Secure”, which is a pretty worrying thing for an Office 365 administrator to see. Fortunately, Microsoft is reversing the update out to fix the problem. https://www.petri.com/chrome-makes-sharepoint-look-insecure

7 Replies

 @Tony Redmond Looks like this is happening again. Any update?

@Maridee26 Possibly due to the recent Chrome 80 release. https://office365itpros.com/2020/01/27/office-365-ok-chrome-80-samesite-update/  I haven't seen any problems.

@Tony Redmond My site is marked "Not secure". Is there anything I can do about it?

 

1.png

@Maridee26  Sure. File a support ticket with Microsoft.

Darn I was trying to avoid that :(

@Tony Redmond After talking to support (who was of no help), I realized that the issue is due to having installed Chrome Beta according to Microsoft instructions when I tested for the new Chrome release earlier this month. If anyone else is having this issue, this may be why. Resolution is to uninstall Chrome Beta and reinstall Chrome.

1.png

@Maridee26 That's reasonable.