For internal usage, we have a system using a self-signed insecure SSL certificate, making Chrome warn me on each session:
Your connection is not private
Attackers might be trying to steal your information from
log.hive.stage.dreamlines.nl (for example, passwords, messages, or
credit cards). NET::ERR_CERT_AUTHORITY_INVALID
I always have to click Advanced
and then Proceed to my-custom-site.foo (unsafe)
. I don't want to do this on every session. I know about the risks, I always want to trust an insecure certificate for a specific domain.
How can disable the warning for a specific URL in Chrome? I don't want to allow all insecure content, it should be a whitelist.
Best Answer
To allow insecure connection for a certain URL, you need to import their site certificate into your keychain and make it trusted for your HTTPS/SSL connection, so Chrome can understand that. To make it work for all web addresses, you need to import Root certificate instead.
In Chrome basically you've to click on padlock icon, then in Connection tab/Certificate Information find your insecure issuer and download CRT file which therefore can be imported into your system keychain.
or use the following command to save that file:
Then open the file and find the option to import the certificate and make it trusted for HTTPS/SSL.
For example on OS X you can double-click on the file or drag and drop in your Keychain Access, so it'll appear in login/Certificates. Then double-click on the imported certificated and make it Always Trust for SSL.